精睿样本测试（15.9.27）

显示全部楼层 · 发表于 2015-9-27 09:48:55

本帖最后由挥泪斩情思于 2015-9-27 09:55 编辑

http://kuai.xunlei.com/d/zuh.Af.OoqQGVgQA8b6

http://pan.baidu.com/s/1i31wxJR 提取密码 ji8n

密码：bbs.vc52.cn
数量：50

显示全部楼层 · 发表于 2015-9-27 09:49:28

本帖最后由 MXCERILYF! 于 2015-9-27 10:48 编辑

金山毒霸-检出30个

显示全部楼层 · 发表于 2015-9-27 09:54:32

本帖最后由毛豆新人于 2015-9-27 10:00 编辑

CIS kill 13x，分别为01，02，06，08，09，12，13，18，19，26，27，28，44

显示全部楼层 · 发表于 2015-9-27 10:02:32

本帖最后由 MXCERILYF! 于 2015-9-27 10:22 编辑

360TS（只开启自主引擎）
文件后缀为vir时：杀31个

文件后缀为exe时：补杀1个

文件后缀为zip时：补杀3个

共查杀35个，剩余15个

显示全部楼层 · 发表于 2015-9-27 10:03:42

NANO.KILL 21X

显示全部楼层 · 发表于 2015-9-27 10:19:41

本帖最后由 aboringman 于 2015-9-27 10:45 编辑

KSOS kill 22 files and fix 3 files

[mw_shl_code=css,true]27.09.2015 10.42.59;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\31.vir;F:\样本库(高危）\精睿样本包\2015.9.27\31.vir;UDS:DangerousObject.Multi.Generic
27.09.2015 10.42.58;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\31.vir;F:\样本库(高危）\精睿样本包\2015.9.27\31.vir;UDS:DangerousObject.Multi.Generic
27.09.2015 10.42.58;Custom Scan;Task completed;09/27/2015 10:42:58
27.09.2015 10.42.58;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\48.vir;F:\样本库(高危）\精睿样本包\2015.9.27\48.vir;Trojan.Win32.Agent.nesxfj
27.09.2015 10.42.57;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\48.vir;F:\样本库(高危）\精睿样本包\2015.9.27\48.vir;Trojan.Win32.Agent.nesxfj
27.09.2015 10.42.57;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\44.vir;F:\样本库(高危）\精睿样本包\2015.9.27\44.vir;HEUR:Trojan.Win32.Generic
27.09.2015 10.42.57;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\44.vir;F:\样本库(高危）\精睿样本包\2015.9.27\44.vir;HEUR:Trojan.Win32.Generic
27.09.2015 10.42.56;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\35.vir;F:\样本库(高危）\精睿样本包\2015.9.27\35.vir;Trojan.Win32.Inject.vicb
27.09.2015 10.42.56;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\35.vir;F:\样本库(高危）\精睿样本包\2015.9.27\35.vir;Trojan.Win32.Inject.vicb
27.09.2015 10.42.54;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\30.vir;F:\样本库(高危）\精睿样本包\2015.9.27\30.vir;HEUR:Trojan.Win32.Generic
27.09.2015 10.42.54;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\30.vir;F:\样本库(高危）\精睿样本包\2015.9.27\30.vir;HEUR:Trojan.Win32.Generic
27.09.2015 10.42.54;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\29.vir;F:\样本库(高危）\精睿样本包\2015.9.27\29.vir;Trojan.MSIL.Inject.cvdm
27.09.2015 10.42.53;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\29.vir;F:\样本库(高危）\精睿样本包\2015.9.27\29.vir;Trojan.MSIL.Inject.cvdm
27.09.2015 10.42.53;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\28.vir;F:\样本库(高危）\精睿样本包\2015.9.27\28.vir;not-a-virus:HEUR:AdWare.Script.Generic
27.09.2015 10.42.53;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\28.vir;F:\样本库(高危）\精睿样本包\2015.9.27\28.vir;not-a-virus:HEUR:AdWare.Script.Generic
27.09.2015 10.42.53;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\25.vir;F:\样本库(高危）\精睿样本包\2015.9.27\25.vir;UDS:DangerousObject.Multi.Generic
27.09.2015 10.42.52;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\25.vir;F:\样本库(高危）\精睿样本包\2015.9.27\25.vir;UDS:DangerousObject.Multi.Generic
27.09.2015 10.42.52;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\27.vir;F:\样本库(高危）\精睿样本包\2015.9.27\27.vir;Trojan.Win32.Agent.adcyv
27.09.2015 10.42.52;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\27.vir;F:\样本库(高危）\精睿样本包\2015.9.27\27.vir;Trojan.Win32.Agent.adcyv
27.09.2015 10.42.51;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\26.vir;F:\样本库(高危）\精睿样本包\2015.9.27\26.vir;Email-Worm.Win32.Pepex.o
27.09.2015 10.42.51;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\26.vir;F:\样本库(高危）\精睿样本包\2015.9.27\26.vir;Email-Worm.Win32.Pepex.o
27.09.2015 10.42.49;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\24.vir;F:\样本库(高危）\精睿样本包\2015.9.27\24.vir;Trojan-Dropper.Win32.Injector.nksr
27.09.2015 10.42.49;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\24.vir;F:\样本库(高危）\精睿样本包\2015.9.27\24.vir;Trojan-Dropper.Win32.Injector.nksr
27.09.2015 10.42.48;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\23.vir;F:\样本库(高危）\精睿样本包\2015.9.27\23.vir;Trojan.Win32.StartPage.fsfq
27.09.2015 10.42.48;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\23.vir;F:\样本库(高危）\精睿样本包\2015.9.27\23.vir;Trojan.Win32.StartPage.fsfq
27.09.2015 10.42.47;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\21.vir;F:\样本库(高危）\精睿样本包\2015.9.27\21.vir;HEUR:Trojan.Win32.Generic
27.09.2015 10.42.47;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\21.vir;F:\样本库(高危）\精睿样本包\2015.9.27\21.vir;HEUR:Trojan.Win32.Generic
27.09.2015 10.42.47;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\20.vir;F:\样本库(高危）\精睿样本包\2015.9.27\20.vir;Trojan-Downloader.Win32.Upatre.ewvg
27.09.2015 10.42.47;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\20.vir;F:\样本库(高危）\精睿样本包\2015.9.27\20.vir;Trojan-Downloader.Win32.Upatre.ewvg
27.09.2015 10.42.46;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\18.vir;F:\样本库(高危）\精睿样本包\2015.9.27\18.vir;Trojan.MSIL.Disfa.bqg
27.09.2015 10.42.46;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\18.vir;F:\样本库(高危）\精睿样本包\2015.9.27\18.vir;Trojan.MSIL.Disfa.bqg
27.09.2015 10.42.41;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\17.vir;F:\样本库(高危）\精睿样本包\2015.9.27\17.vir;Trojan-Downloader.MSIL.Banload.cfg
27.09.2015 10.42.41;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\17.vir;F:\样本库(高危）\精睿样本包\2015.9.27\17.vir;Trojan-Downloader.MSIL.Banload.cfg
27.09.2015 10.42.41;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\15.vir;F:\样本库(高危）\精睿样本包\2015.9.27\15.vir;not-a-virus:Downloader.NSIS.Agent.xa
27.09.2015 10.42.39;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\13.vir//Factuur83351.scr;F:\样本库(高危）\精睿样本包\2015.9.27\13.vir//Factuur83351.scr;Trojan-Ransom.NSIS.Onion.zf
27.09.2015 10.42.39;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\13.vir//Factuur83351.scr;F:\样本库(高危）\精睿样本包\2015.9.27\13.vir//Factuur83351.scr;Trojan-Ransom.NSIS.Onion.zf
27.09.2015 10.42.37;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\10.vir;F:\样本库(高危）\精睿样本包\2015.9.27\10.vir;Trojan-Downloader.VBS.Agent.ate
27.09.2015 10.42.37;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\10.vir;F:\样本库(高危）\精睿样本包\2015.9.27\10.vir;Trojan-Downloader.VBS.Agent.ate
27.09.2015 10.42.37;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\09.vir;F:\样本库(高危）\精睿样本包\2015.9.27\09.vir;Net-Worm.Win32.Morto.a
27.09.2015 10.42.37;Object (file) not processed.;F:\样本库(高危）\精睿样本包\2015.9.27\09.vir;F:\样本库(高危）\精睿样本包\2015.9.27\09.vir;Net-Worm.Win32.Morto.a;Disinfection impossible
27.09.2015 10.42.35;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\09.vir;F:\样本库(高危）\精睿样本包\2015.9.27\09.vir;Net-Worm.Win32.Morto.a
27.09.2015 10.42.34;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\08.vir//Loader.vbe;F:\样本库(高危）\精睿样本包\2015.9.27\08.vir//Loader.vbe;Trojan-Downloader.VBS.Agent.asv
27.09.2015 10.42.34;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\08.vir//Loader.vbe;F:\样本库(高危）\精睿样本包\2015.9.27\08.vir//Loader.vbe;Trojan-Downloader.VBS.Agent.asv
27.09.2015 10.42.34;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\07.vir;F:\样本库(高危）\精睿样本包\2015.9.27\07.vir;Trojan.Win32.StartPage.fsfq
27.09.2015 10.42.33;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\07.vir;F:\样本库(高危）\精睿样本包\2015.9.27\07.vir;Trojan.Win32.StartPage.fsfq
27.09.2015 10.42.27;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\02.vir;F:\样本库(高危）\精睿样本包\2015.9.27\02.vir;UDS:DangerousObject.Multi.Generic
27.09.2015 10.42.27;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\02.vir;F:\样本库(高危）\精睿样本包\2015.9.27\02.vir;UDS:DangerousObject.Multi.Generic
27.09.2015 10.42.23;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\06.vir//envex_international_oy.zip//envex_international_oy.scr;F:\样本库(高危）\精睿样本包\2015.9.27\06.vir//envex_international_oy.zip//envex_international_oy.scr;Trojan-Downloader.Win32.Cabby.cekz
27.09.2015 10.42.23;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\06.vir//envex_international_oy.zip//envex_international_oy.scr;F:\样本库(高危）\精睿样本包\2015.9.27\06.vir//envex_international_oy.zip//envex_international_oy.scr;Trojan-Downloader.Win32.Cabby.cekz
27.09.2015 10.42.21;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\01.vir//word/vbaProject.bin//ThisDocument;F:\样本库(高危）\精睿样本包\2015.9.27\01.vir//word/vbaProject.bin//ThisDocument;Trojan-Downloader.VBS.Agent.asu
27.09.2015 10.42.11;Object (file) detected.;F:\样本库(高危）\精睿样本包\2015.9.27\01.vir//word/vbaProject.bin//ThisDocument;F:\样本库(高危）\精睿样本包\2015.9.27\01.vir//word/vbaProject.bin//ThisDocument;Trojan-Downloader.VBS.Agent.asu
27.09.2015 10.43.14;Detected object (file) was deleted.;F:\样本库(高危）\精睿样本包\2015.9.27\15.vir;F:\样本库(高危）\精睿样本包\2015.9.27\15.vir;not-a-virus:Downloader.NSIS.Agent.xa;Legitimate software that can be used by intruders to damage your computer or personal data;09/27/2015 10:43:14
27.09.2015 10.42.11;Custom Scan;Task started;09/27/2015 10:42:11
[/mw_shl_code]

显示全部楼层 · 发表于 2015-9-27 10:32:51

本帖最后由 wsdmhy 于 2015-9-27 10:37 编辑

显示全部楼层 · 发表于 2015-9-27 11:15:41

红伞31

显示全部楼层 · 发表于 2015-9-27 11:53:03

norton
检测16个，修复2
[mw_shl_code=css,true]Resolved Threats:
Downloader.Ponik!gen11
Type: Compressed
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
- Deleted

Trojan Horse
Type: Compressed
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
- Deleted

Trojan Horse
Type: Compressed
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
- Deleted

Backdoor.Trojan
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
3 Registry Entries
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\->EnableLUA:1 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->DoNotAllowExceptions:1 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->DoNotAllowExceptions:1 - Repaired
1 File
d:\virus\huge\2015.9.27\09.vir - Deleted
1 Browser Cache

Trojan.Gen
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
4 Files
d:\virus\huge\2015.9.27\09.vir - No Action Required
d:\virus\huge\2015.9.27\26.vir - Deleted
d:\virus\huge\2015.9.27\27.vir - Deleted
d:\virus\huge\2015.9.27\45.vir - Deleted
1 Browser Cache

Backdoor.Ratenjay
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
2 Files
d:\virus\huge\2015.9.27\18.vir - Deleted
d:\virus\huge\2015.9.27\30.vir - Deleted
1 Browser Cache

Backdoor.Sdbot
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
12 Registry Entries
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control->WaitToKillServiceTimeout:20000 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon->Shell:Explorer.exe - Repaired
HKEY_USERS\S-1-5-21-1932995650-4060317268-1514903915-1001\Software\Microsoft\Windows\CurrentVersion\Policies\System\->DisableRegistryTools:0 - Repaired
HKEY_USERS\S-1-5-21-1932995650-4060317268-1514903915-1001\Software\Microsoft\Windows\CurrentVersion\Policies\System\->DisableTaskMgr:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->UacDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system->EnableLUA:1 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->AntiVirusOverride:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->FirewallOverride:0 - Repaired
HKEY_USERS\S-1-5-21-1932995650-4060317268-1514903915-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->Hidden:1 - Repaired
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->Hidden:1 - Repaired
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->Hidden:1 - Repaired
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->Hidden:1 - Repaired
1 File
d:\virus\huge\2015.9.27\12.vir - Deleted
1 Browser Cache

Downloader.Upatre!gen9
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\huge\2015.9.27\20.vir - Deleted
1 Browser Cache

W97M.Downloader
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
2 Files
d:\virus\huge\2015.9.27\34.vir - Deleted
d:\virus\huge\2015.9.27\01.vir - Deleted
1 Browser Cache

Trojan.Gen.2
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
2 Files
d:\virus\huge\2015.9.27\16.vir - Deleted
d:\virus\huge\2015.9.27\02.vir - Deleted
1 Browser Cache

Trojan.Dropper
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\huge\2015.9.27\08.vir - Deleted
1 Browser Cache

Infostealer.Limitail
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
8 Registry Entries
HKEY_USERS\S-1-5-21-1932995650-4060317268-1514903915-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\->NofolderOptions:0 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sr\Parameters\->FirstRun:0 - Repaired
HKEY_USERS\S-1-5-21-1932995650-4060317268-1514903915-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:0 - Repaired
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:0 - Repaired
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:0 - Repaired
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->AntiVirusDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->AntiVirusDisableNotify:0 - Repaired
1 File
d:\virus\huge\2015.9.27\48.vir - Deleted
1 Browser Cache

Suspicious.Cloud.2
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
d:\virus\huge\2015.9.27\48.vir - No Action Required
1 Browser Cache[/mw_shl_code]

显示全部楼层 · 发表于 2015-9-27 11:53:33

Mcafee antivirus 28 其中修复2

[病毒样本] 精睿样本测试（15.9.27）

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块