精睿样本测试（15.10.2）

aboringman

地址：http://kuai.xunlei.com/d/zuh.AcYCai8NVgQA92e

            http://pan.baidu.com/s/1gdnnHVd 提取密码  kz3e

密码：bbs.vc52.cn

数量：50

MXCERILYF!

金山毒霸-检出19个

aboringman

Avira kill 30 files
[mw_shl_code=css,true]Start of the scan: 2015年10月2日  11:04

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\2015.10.2'
C:\Documents and Settings\Administrator\桌面\2015.10.2\01.vir
    [0] Archive type: ACE
    --> OORDER.exe
        [DETECTION] Is the TR/AD.NetInject.Y.165 Trojan
        [WARNING]   Infected files in archives cannot be repaired
C:\Documents and Settings\Administrator\桌面\2015.10.2\02.vir
    [0] Archive type: ZIP
    --> CBA Third Party Payment 910569812.scr
        [DETECTION] Is the TR/Rogue.aiojaa.29 Trojan
        [WARNING]   Infected files in archives cannot be repaired
C:\Documents and Settings\Administrator\桌面\2015.10.2\03.vir
    [0] Archive type: ZIP
    --> CBA Third Party Payment 510569701.scr
        [DETECTION] Is the TR/AD.Yarwi.Y.1372 Trojan
        [WARNING]   Infected files in archives cannot be repaired
C:\Documents and Settings\Administrator\桌面\2015.10.2\06.vir
  [DETECTION] Is the TR/Dropper.MSIL.205899 Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\07.vir
  [DETECTION] Is the TR/NetSeal.181760 Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\11.vir
  [DETECTION] Contains the SWF/CVE-2015-0311.48104 SWF virus
C:\Documents and Settings\Administrator\桌面\2015.10.2\12.vir
  [DETECTION] Is the TR/Dldr.Agent.222720.7 Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\14.vir
  [DETECTION] Contains code of the ANDROID/FakeGuard.E.Gen virus
C:\Documents and Settings\Administrator\桌面\2015.10.2\16.vir
  [DETECTION] Is the TR/Crypt.ZPACK.183764 Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\17.vir
  [DETECTION] Is the TR/Patched.Ren.Gen Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\18.vir
    [0] Archive type: OLE
    --> AV0000002a.AV$
        [1] Archive type: ZIP
      --> In59169-0237.exe
          [DETECTION] Is the TR/Upatre.3022 Trojan
          [WARNING]   Infected files in archives cannot be repaired
C:\Documents and Settings\Administrator\桌面\2015.10.2\20.vir
    [0] Archive type: ZIP
    --> In97719-2945.exe
        [DETECTION] Is the TR/AD.Yarwi.Y.1294 Trojan
        [WARNING]   Infected files in archives cannot be repaired
C:\Documents and Settings\Administrator\桌面\2015.10.2\21.vir
  [DETECTION] Contains recognition pattern of the W32/Jadtre.B Windows virus
C:\Documents and Settings\Administrator\桌面\2015.10.2\24.vir
    [0] Archive type: ZIP
    --> PO#0100.exe
        [DETECTION] Is the TR/Dropper.MSIL.205853 Trojan
        [WARNING]   Infected files in archives cannot be repaired
C:\Documents and Settings\Administrator\桌面\2015.10.2\25.vir
  [DETECTION] Is the TR/Bublik.I Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\26.vir
  [DETECTION] Is the TR/Crypt.ZPACK.Gen4 Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\30.vir
  [DETECTION] Is the TR/Crypt.EPACK.Gen2 Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\31.vir
  [DETECTION] Is the TR/Crypt.FKM.Gen Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\32.vir
  [DETECTION] Contains patterns of software PUA/Techsnab.onemb
C:\Documents and Settings\Administrator\桌面\2015.10.2\33.vir
  [DETECTION] Is the TR/Agent.598016 Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\34.vir
  [DETECTION] Is the TR/Downloader.Gen Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\36.vir
  [DETECTION] Contains code of the WM/Bartallex.oiup Word macro virus
C:\Documents and Settings\Administrator\桌面\2015.10.2\39.vir
  [DETECTION] Is the TR/Crypt.XPACK.Gen8 Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\42.vir
  [DETECTION] Is the TR/Patched.Ren.Gen Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\44.vir
    [0] Archive type: ZIP
    --> word/embeddings/oleObject1.bin
        [1] Archive type: OLE
      --> Object
          [DETECTION] Is the TR/Crypt.ZPACK.180534 Trojan
          [WARNING]   Infected files in archives cannot be repaired
C:\Documents and Settings\Administrator\桌面\2015.10.2\46.vir
    [0] Archive type: ZIP
    --> VoiceMessage.exe
        [DETECTION] Is the TR/Rogue.AI.12021 Trojan
        [WARNING]   Infected files in archives cannot be repaired
C:\Documents and Settings\Administrator\桌面\2015.10.2\47.vir
    [0] Archive type: RAR
    --> BCS_ECS9522015072317260027_1943_952.exe
        [DETECTION] Is the TR/Dropper.VB.37075 Trojan
        [WARNING]   Infected files in archives cannot be repaired
C:\Documents and Settings\Administrator\桌面\2015.10.2\48.vir
  [DETECTION] Contains recognition pattern of the WORM/Autorun.27136 worm
C:\Documents and Settings\Administrator\桌面\2015.10.2\49.vir
  [DETECTION] Is the TR/Dropper.MSIL.Gen Trojan
C:\Documents and Settings\Administrator\桌面\2015.10.2\50.vir
    [0] Archive type: ZIP
    --> STATEMNT-E_FF5039457304574230530914758303654534783458173204712-37407658458674.pdf.exe
        [DETECTION] Is the TR/Dldr.Small.berb Trojan
        [WARNING]   Infected files in archives cannot be repaired

Beginning disinfection:
[ERROR] RepairMalware: Not able to Repair Malware PUA/Techsnab.onemb
C:\Documents and Settings\Administrator\桌面\2015.10.2\50.vir
  [DETECTION] Is the TR/Dldr.Small.berb Trojan
  [NOTE]      The detection was classified as suspicious.
  [NOTE]      The file was moved to the quarantine directory under the name '4a0f7fc6.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\49.vir
  [DETECTION] Is the TR/Dropper.MSIL.Gen Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '18502538.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\48.vir
  [DETECTION] Contains recognition pattern of the WORM/Autorun.27136 worm
  [NOTE]      The file was moved to the quarantine directory under the name '7e676af5.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\47.vir
  [DETECTION] Is the TR/Dropper.VB.37075 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '3be347ca.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\46.vir
  [DETECTION] Is the TR/Rogue.AI.12021 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '44f875a8.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\44.vir
  [DETECTION] Is the TR/Crypt.ZPACK.180534 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '084059e3.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\42.vir
  [DETECTION] Is the TR/Patched.Ren.Gen Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '745819b5.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\39.vir
  [DETECTION] Is the TR/Crypt.XPACK.Gen8 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '590236f3.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\36.vir
  [DETECTION] Contains code of the WM/Bartallex.oiup Word macro virus
  [NOTE]      The file was moved to the quarantine directory under the name '406a0d66.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\34.vir
  [DETECTION] Is the TR/Downloader.Gen Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '2c362154.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\33.vir
  [DETECTION] Is the TR/Agent.598016 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '5d8f18c1.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\32.vir
  [DETECTION] Contains patterns of software PUA/Techsnab.onemb
  [NOTE]      The file was moved to the quarantine directory under the name '53952806.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\31.vir
  [DETECTION] Is the TR/Crypt.FKM.Gen Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '16bc5143.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\30.vir
  [DETECTION] Is the TR/Crypt.EPACK.Gen2 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '1fb755e9.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\26.vir
  [DETECTION] Is the TR/Crypt.ZPACK.Gen4 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '47f64c8a.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\25.vir
  [DETECTION] Is the TR/Bublik.I Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '6b023546.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\24.vir
  [DETECTION] Is the TR/Dropper.MSIL.205853 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '55fc5593.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\21.vir
  [DETECTION] Contains recognition pattern of the W32/Jadtre.B Windows virus
  [NOTE]      The file was moved to the quarantine directory under the name '36f27ee3.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\20.vir
  [DETECTION] Is the TR/AD.Yarwi.Y.1294 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '103a3ef9.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\18.vir
  [DETECTION] Is the TR/Upatre.3022 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '22ae4553.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\17.vir
  [DETECTION] Is the TR/Patched.Ren.Gen Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '28eb6e2a.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\16.vir
  [DETECTION] Is the TR/Crypt.ZPACK.183764 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '17b80a6e.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\14.vir
  [DETECTION] Contains code of the ANDROID/FakeGuard.E.Gen virus
  [NOTE]      The file was moved to the quarantine directory under the name '6994064b.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\12.vir
  [DETECTION] Is the TR/Dldr.Agent.222720.7 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '3cec028f.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\11.vir
  [DETECTION] Contains the SWF/CVE-2015-0311.48104 SWF virus
  [NOTE]      The file was moved to the quarantine directory under the name '317a73a6.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\07.vir
  [DETECTION] Is the TR/NetSeal.181760 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '2d2767a5.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\06.vir
  [DETECTION] Is the TR/Dropper.MSIL.205899 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '1cf42a6b.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\03.vir
  [DETECTION] Is the TR/AD.Yarwi.Y.1372 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '70a23e58.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\02.vir
  [DETECTION] Is the TR/Rogue.aiojaa.29 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '39381b5e.qua'!
C:\Documents and Settings\Administrator\桌面\2015.10.2\01.vir
  [DETECTION] Is the TR/AD.NetInject.Y.165 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '62ad138f.qua'!


End of the scan: 2015年10月2日  11:05
Used time: 00:08 Minute(s)

The scan has been done completely.

      1 Scanned directories
    151 Files were scanned
     30 Viruses and/or unwanted programs were found
      0 Files were classified as suspicious
      0 Files were deleted
      0 Viruses and unwanted programs were repaired
     30 Files were moved to quarantine
      0 Files were renamed
      0 Files cannot be scanned
    121 Files not concerned
     22 Archives were scanned
     10 Warnings
     30 Notes[/mw_shl_code]

毛豆新人

CIS kill 16x

MXCERILYF!

360 Total Security（只开启自主引擎）
文件后缀为vir时：杀23个

文件后缀为exe时：补杀5个

文件后缀为zip时：补杀8个

无后缀：补杀2个

共查杀38个，(排除2个修复)剩余12个

温馨小屋

Symantec Norton
杀22个，其中修复4个
SONAR杀08,21个不能运行，miss7个，有一部分注册机

MXCERILYF!

360卫士领航版（只开启自主引擎）
文件后缀为vir时：杀19个

文件后缀为exe时：补杀4个

文件后缀为zip时：补杀9个

无后缀：补杀2个

共查杀34个，(排除2个修复)剩余16个

断簪

avast
26

MXCERILYF!

瑞星杀毒软件-检出22个

碧水金江

MXCERILYF! 发表于 2015-10-2 09:37
360 Total Security（只开启自主引擎）
文件后缀为vir时：杀23个

宇宙第一每次都得改后缀还真是奇葩，平时遇到一病毒后缀不对是不是就杀不了了