小毒一枚，不知道好不好玩

sanhu35

驭龙 发表于 2015-11-21 21:16
是啊，不好玩，现在的APC没有入文件监控，无奈啊

只有双击、执行时的加成。

不过安全性和病毒响应还是有所提升的。

就是不利于测试

诸葛亮

aboringman 发表于 2015-11-21 21:17
不只是监控，连扫描也没入

扫描是有的，但是仅限于快速扫描。
比如刚才我快速扫描了一次，可以看一下日志，有不少APC验证的。

Configuration settings for the scan:
Jobname.............................: Quick scan
Configuration file..................: C:\program files (x86)\avira\antivirus\quicksysscan.avp
Reporting...........................: default
Primary action......................: Interactive
Secondary action....................: Ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Process scan........................: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Limit recursion depth...............: 20
Smart extensions....................: on
Macrovirus heuristic................: on
File heuristic......................: Complete
Deviating risk categories...........: +APPL,+GAME,+JOKE,+SPR,

Start of the scan: 2015年11月21日  21:19

Start scanning boot sectors:

The scan of running processes will be started:
Scan process 'svchost.exe' - '80' Module(s) have been scanned
Scan process 'svchost.exe' - '32' Module(s) have been scanned
Scan process 'dwm.exe' - '57' Module(s) have been scanned
Scan process 'svchost.exe' - '198' Module(s) have been scanned
Scan process 'svchost.exe' - '105' Module(s) have been scanned
Scan process 'nvvsvc.exe' - '33' Module(s) have been scanned
Scan process 'svchost.exe' - '42' Module(s) have been scanned
Scan process 'svchost.exe' - '80' Module(s) have been scanned
Scan process 'svchost.exe' - '121' Module(s) have been scanned
Scan process 'nvxdsync.exe' - '67' Module(s) have been scanned
Scan process 'nvvsvc.exe' - '62' Module(s) have been scanned
Scan process 'svchost.exe' - '47' Module(s) have been scanned
Scan process 'igfxCUIService.exe' - '37' Module(s) have been scanned
Scan process 'SbieSvc.exe' - '46' Module(s) have been scanned
Scan process 'IntelCpHeciSvc.exe' - '31' Module(s) have been scanned
Scan process 'svchost.exe' - '73' Module(s) have been scanned
Scan process 'spoolsv.exe' - '75' Module(s) have been scanned
Scan process 'OfficeClickToRun.exe' - '102' Module(s) have been scanned
Scan process 'svchost.exe' - '85' Module(s) have been scanned
Scan process 'svchost.exe' - '38' Module(s) have been scanned
Scan process 'QQProtect.exe' - '92' Module(s) have been scanned
Scan process 'CxAudMsg64.exe' - '33' Module(s) have been scanned
Scan process 'SynTPEnhService.exe' - '29' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '61' Module(s) have been scanned
Scan process 'SynTPEnh.exe' - '78' Module(s) have been scanned
Scan process 'sihost.exe' - '60' Module(s) have been scanned
Scan process 'taskhostw.exe' - '52' Module(s) have been scanned
Scan process 'igfxEM.exe' - '51' Module(s) have been scanned
Scan process 'RuntimeBroker.exe' - '109' Module(s) have been scanned
Scan process 'igfxHK.exe' - '28' Module(s) have been scanned
Scan process 'Explorer.EXE' - '259' Module(s) have been scanned
Scan process 'SkypeHost.exe' - '127' Module(s) have been scanned
Scan process 'RemindersServer.exe' - '54' Module(s) have been scanned
Scan process 'SYNTPHELPER.EXE' - '17' Module(s) have been scanned
Scan process 'ShellExperienceHost.exe' - '104' Module(s) have been scanned
Scan process 'SearchUI.exe' - '137' Module(s) have been scanned
Scan process 'svchost.exe' - '125' Module(s) have been scanned
Scan process 'PalmInputGuard.exe' - '48' Module(s) have been scanned
Scan process 'SettingSyncHost.exe' - '106' Module(s) have been scanned
Scan process 'CAudioFilterAgent64.exe' - '45' Module(s) have been scanned
Scan process 'OneDrive.exe' - '112' Module(s) have been scanned
Scan process 'SbieCtrl.exe' - '89' Module(s) have been scanned
Scan process 'PalmInputService.exe' - '59' Module(s) have been scanned
Scan process 'QQ.exe' - '217' Module(s) have been scanned
Scan process 'TXPlatform.exe' - '30' Module(s) have been scanned
Scan process 'ApplicationFrameHost.exe' - '47' Module(s) have been scanned
Scan process 'CSISYNCCLIENT.EXE' - '126' Module(s) have been scanned
Scan process 'ChsIME.exe' - '53' Module(s) have been scanned
Scan process 'SbieSvc.exe' - '26' Module(s) have been scanned
Scan process 'avguard.exe' - '131' Module(s) have been scanned
Scan process 'avshadow.exe' - '20' Module(s) have been scanned
Scan process 'sched.exe' - '78' Module(s) have been scanned
Scan process 'avwebg7.exe' - '53' Module(s) have been scanned
Scan process 'avmailc7.exe' - '56' Module(s) have been scanned
Scan process 'avgnt.exe' - '121' Module(s) have been scanned
Scan process 'svchost.exe' - '36' Module(s) have been scanned
Scan process 'SearchProtocolHost.exe' - '38' Module(s) have been scanned
Scan process 'svchost.exe' - '29' Module(s) have been scanned
Scan process 'Thunder.exe' - '172' Module(s) have been scanned
Scan process 'thunderplatform.exe' - '125' Module(s) have been scanned
Scan process 'svchost.exe' - '82' Module(s) have been scanned
Scan process 'XLUEOPS.exe' - '68' Module(s) have been scanned
Scan process 'dashost.exe' - '26' Module(s) have been scanned
Scan process 'chrome.exe' - '119' Module(s) have been scanned
Scan process 'chrome.exe' - '69' Module(s) have been scanned
Scan process 'chrome.exe' - '49' Module(s) have been scanned
Scan process 'chrome.exe' - '49' Module(s) have been scanned
Scan process 'chrome.exe' - '49' Module(s) have been scanned
Scan process 'chrome.exe' - '51' Module(s) have been scanned
Scan process 'chrome.exe' - '49' Module(s) have been scanned
Scan process 'SearchFilterHost.exe' - '20' Module(s) have been scanned
Scan process 'avcenter.exe' - '160' Module(s) have been scanned
Scan process 'avscan.exe' - '66' Module(s) have been scanned
Scan process 'avscan.exe' - '113' Module(s) have been scanned
Scan process 'winlogon.exe' - '32' Module(s) have been scanned
Scan process 'lsass.exe' - '95' Module(s) have been scanned

Starting to scan executable files (registry):
The file 'C:\Program Files\Sandboxie\SbieCtrl.exe' was found in the cache; the Protection Cloud scan was skipped. SHA256 = 7126635F6D9295178966949FA1E91E4B6F83040095F5346729EBEF0657FCFED2
The file 'C:\Program Files (x86)\Tencent\QQLite\Bin\QQ.exe' was found in the cache; the Protection Cloud scan was skipped. SHA256 = 8B9108AE1F5B7C462247DFC4FB96C1A68AEE8897323C37E9E5818AB2E60C24BB
The file 'C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe' was scanned with the Protection Cloud. SHA256 = 7DC1FEB90AFC08C829001849985C7B20CB782F05CD9C000C6C9D42D3FDB1DDF4
The file 'C:\Program Files\CONEXANT\SAII\SACpl.exe' was scanned with the Protection Cloud. SHA256 = 6CED9332100CA71FB17930AAC4ED1798E6F3A83CEBEE0A3412EFA01F6F1A6F22
The file 'C:\Users\L\AppData\Local\Microsoft\OneDrive\OneDrive.exe' was scanned with the Protection Cloud. SHA256 = 476EE2929901CD43F15869B763376393AA0942A3B934532055E037C6DCE3CD2D
The file 'C:\Program Files (x86)\PalmInput\2.3.0.1302\PalmInputStartUp.exe' was scanned with the Protection Cloud. SHA256 = 2AB984E07A6A07D2284C489BBCEC12615DC1B0493FEBBA617141A772DAEB6097
The file 'C:\Users\L\AppData\Roaming\Lantern\lantern.exe' was scanned with the Protection Cloud. SHA256 = DDF7B299960C7D32952D74EC07CCB5C19BBF5861AF41BA0AEE57A94B0945C92F
The file 'C:\Program Files\7-Zip\7-zip.dll' was found in the cache; the Protection Cloud scan was skipped. SHA256 = C06CEED48DF1C75B6C517AEAC630524E0AFD823A07E376A2CBE83489AF25A36B
The file 'C:\Program Files (x86)\Tencent\QQLite\ShellExt\QQShellExt64.dll' was found in the cache; the Protection Cloud scan was skipped. SHA256 = 4BC07E0A336092859467C47CA095A1AF117CB8B464BE911FC9D9053F9FFD4123
The file 'C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL' was found in the cache; the Protection Cloud scan was skipped. SHA256 = 4035E02E96DAACC4B41B2967783DAAD1297D3B92A9D8D08E0F9706EED4BC87D4
The file 'C:\Program Files (x86)\Thunder Network\Thunder\Thunder BHO Platform\np_tdieplat.dll' was found in the cache; the Protection Cloud scan was skipped. SHA256 = 3D5DD368E26019A53EB15B8665E5F3DE4230BB70218827452FE01E81E7839DB9
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL' was scanned with the Protection Cloud. SHA256 = 2BE3C4A6DF76B5953574BCD1559FBA58FE35D9E335B6F2CEC329BD122235A453
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\VISSHE.DLL' was scanned with the Protection Cloud. SHA256 = 36B6126BBE8FEFAE50E320E5448959028B5C2CBF86521416052901E076B0D484
The file 'C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\VISSHE.DLL' was scanned with the Protection Cloud. SHA256 = 2DF54B0ADE21D407AD7F30649423C3A08FA4FF333AAC8E4774B31183EFC5E563
The file 'C:\Program Files\7-Zip\7-zip32.dll' was scanned with the Protection Cloud. SHA256 = 972BE5DEAEE207881AD6285927005C8F1B07EA67FAEA2C8751F06B274E4E00E2
The file 'C:\Program Files (x86)\Tencent\QQLite\ShellExt\QQShellExt.dll' was scanned with the Protection Cloud. SHA256 = B65245A56B285E28263A73D935A2D2008D6B2BC33CF0C0B1204E31DBC20012C3
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL' was scanned with the Protection Cloud. SHA256 = 47D68B82B5E6FDEB43D20392D456B299F610954E491795219A29624E3D2D7468
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll' was scanned with the Protection Cloud. SHA256 = 6D00DD4D5DD5B9057C08C187B7DED47D2C57AECC153A4CD46022C8DB2EB95D34
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll' was scanned with the Protection Cloud. SHA256 = EF95E5F41A20B390FEEB9E6AFB443407BF375907A4CC647C8B56DB14395104A4
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll' was scanned with the Protection Cloud. SHA256 = BFF625B5D92E0CA4AB8D3DD1D7D94A2C0CA393D7BF028BCB8B6B8A52F39F4E54
The file 'C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIE.dll' was scanned with the Protection Cloud. SHA256 = E71D1B3608930753E46ECD51CEFE2C01BA73DBB7A4262459619C1996E87CC591
The file 'C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll' was scanned with the Protection Cloud. SHA256 = D42C417305A142B1527068EDBD25A5B8E0A982ABAB352FAB97FF79F9C345DE19
The file 'C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIELinkedNotes.dll' was scanned with the Protection Cloud. SHA256 = E80D3070678FCA251D5B6E270880AD7F55AB239EA2CBFB9AC36731D57E39F722
The file 'C:\Users\L\AppData\Roaming\Tencent\QQ\QQAntiPhishing\AccountProtect.dll' was scanned with the Protection Cloud. SHA256 = 96EAACAD5E9DE94446F03E8C3515895ED926A16376FDCEC1089F07A03FB5D751
The file 'C:\Program Files (x86)\Thunder Network\Thunder\BHO\XunleiBHO647.10.32.350.dll' was scanned with the Protection Cloud. SHA256 = 36DA649760F085BEBE1F04DB38A48B7EF92EC7567219B28A3F0C5587CD7E4350
The file 'C:\Users\L\AppData\Roaming\Lantern\uninstall.exe' was scanned with the Protection Cloud. SHA256 = EDBCB71F3E292DE823A7C6E8E45332A52ED3A38FCC5C7385DEBFE26FF5238B83
The file 'C:\Program Files (x86)\360AP\360AP.exe' was scanned with the Protection Cloud. SHA256 = FD2108928DC7253627C19ACF4B80C538D101F3E0EF620CF305130911426032B9
The file 'C:\Program Files (x86)\360AP\Uninst.exe' was scanned with the Protection Cloud. SHA256 = 1C3FCA40B4F745257B162D1C965F06549007C320255DCCBD2809CFD98DC95E6C
The file 'C:\Program Files\7-Zip\7zFM.exe' was scanned with the Protection Cloud. SHA256 = 4DE89270CBC161101522B2DF2194C3FA2702D1EE918781AF8CAB6C5127EB4CA3
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\MSACCESS.EXE' was scanned with the Protection Cloud. SHA256 = 07BC53D4C3C8F6084A12B9B2A6066EF804FC72378E73DF9552CC063AB24B3E3C
The file 'C:\Program Files\CCleaner\CCleaner64.exe' was scanned with the Protection Cloud. SHA256 = 074E7F84C64B6BB54EE3F1BA4EF1804FA33A21ADB1E80904BF56706AA5EB457D
The file 'C:\Program Files\CONEXANT\SAII\SmartAudio.exe' was scanned with the Protection Cloud. SHA256 = 696B5C1A9E816F2210DB1C18DA0ED596502FC3DC8B4D9E35FE3B21257F19977C
The file 'C:\Program Files\DAUM\PotPlayer\PotPlayerMini64.exe' was scanned with the Protection Cloud. SHA256 = F232BFE2AEE97654B570B63C48BCE502AB934AE40F8CD4FF5B6AB7155CDEF54F
The file 'C:\Program Files\DAUM\PotPlayer\uninstall.exe' was scanned with the Protection Cloud. SHA256 = 9D0857908A803F55CECFFC64DBA4E94E4CD60A1796E68C65C571DF9C761196D5
The file 'C:\Program Files (x86)\Microsoft Office\root\client\AppVLP.exe' was scanned with the Protection Cloud. SHA256 = ED65E29CFFE133C320D7438B76F0434D35FB7D8C6287D56F9B0BEFECF08380AE
The file 'C:\Program Files (x86)\Microsoft Office\Root\Office16\DCF\DATABASECOMPARE.EXE' was scanned with the Protection Cloud. SHA256 = F73AAF49977B24311FEE13C4EFEF3CB8F46BCB2579D3CA83229652728084B8C3
The file 'C:\Program Files (x86)\Microsoft Office\Root\Office16\MSOUC.EXE' was scanned with the Protection Cloud. SHA256 = 550BB08683611824978E9E71480E205FAD899AB5263DCDFE8599AEBAC2545188
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\SETLANG.EXE' was scanned with the Protection Cloud. SHA256 = 43AB0099FC0E5DDDB22F6BB34E7B966EC2B6A51C17DF11F968049E897179E4AA
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\msotd.exe' was scanned with the Protection Cloud. SHA256 = 61F217166BE09467FDA15E3CFF63961576B09E2BAB3CA552DF1454C77819D4C7
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\msoev.exe' was scanned with the Protection Cloud. SHA256 = 27F0E5E58A2855D8403CCEAB0D947BA2EC54387922DA713B9E7DBAB029DEEA0F
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\OcPubMgr.exe' was scanned with the Protection Cloud. SHA256 = 1228832C3555F1E8522222E04C7B823DEC0CCBB5E5E5E7F0B46F716103CCA251
The file 'C:\Program Files (x86)\Microsoft Office\Root\Office16\DCF\SPREADSHEETCOMPARE.EXE' was scanned with the Protection Cloud. SHA256 = BDD1AE50EB0C1D0B54AD6D942D6C7611F5757392F909EBEA2C284BFFE8473314
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVE.EXE' was scanned with the Protection Cloud. SHA256 = CF0435929A16AA7FEA2FE6CFB5A793A3BFB7D178CF94E8EA5B729425D050B293
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE' was scanned with the Protection Cloud. SHA256 = D1B604BEFF9CF58DBB269E78A2C4515C6A8840119E106777D0DE9E3B762F8830
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE' was scanned with the Protection Cloud. SHA256 = 284962E967B43B2968350BDB038F55D263511A9598536EF687CDEC375B345645
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE' was scanned with the Protection Cloud. SHA256 = 11FF12D26F626E4D53F120C925FBE3AB45ABE45F848198EF35C1550EFC20BAE1
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\MSPUB.EXE' was scanned with the Protection Cloud. SHA256 = DEC4CD8397590E326F1E9D79AAA4165D728D39E0BB332D2EDA49EBF74490B8DA
The file 'C:\Program Files\Sandboxie\Start.exe' was scanned with the Protection Cloud. SHA256 = BBB1CBF639156EC8B92CE69240A68EDD71B60F126F3D422D3796348C38848AF6
The file 'C:\Windows\Installer\SandboxieInstall64.exe' was scanned with the Protection Cloud. SHA256 = 6D64CB6684AEA3207B4B01D210873CDC40B8A39CAE5B1BDACA75FAC1EEE3F98C
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe' was scanned with the Protection Cloud. SHA256 = 8ACA86BFA2286F09DAA309EB719F102080A088CC87489A643EBDCBC7B2C2872A
The file 'C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE' was scanned with the Protection Cloud. SHA256 = 6D78D9AB562ED2627FB9DC6260F9C5A74E0C9B3CCE16EF90A33E0EC5EFA469A6
The file 'C:\Program Files (x86)\PalmInput\2.3.0.1302\Uninst.exe' was scanned with the Protection Cloud. SHA256 = 7CDF8743CFE1975F85726932336D8A005907EB75BE51FAC6B8E998B98B774C11
The file 'C:\Program Files (x86)\PalmInput\2.3.0.1302\PalmInputSkin.exe' was scanned with the Protection Cloud. SHA256 = CFF99BB05F180E36F043B7E8C97C8D8E885809AD19C5021498A13D7FE6228354
The file 'C:\Program Files (x86)\PalmInput\2.3.0.1302\PalmInputSymbol.exe' was scanned with the Protection Cloud. SHA256 = 91B1F40DDBA0339A4FE398B363DAFA6CD00F71E9CA339E7F3B230C528C9BE74B
The file 'C:\Program Files (x86)\PalmInput\2.3.0.1302\PalmInputConfig.exe' was scanned with the Protection Cloud. SHA256 = DF5CC4F6DB1F3D0062E2391B9BE37EE1D65046C7D0694212523592FCCE86DF8E
The file 'C:\Program Files (x86)\Tencent\QQLite\QQUninst.exe' was scanned with the Protection Cloud. SHA256 = 37B51665C5F80DCC03E97211DDAD0EB708321ECC5F089F337F98833350F4882A
The file 'C:\Program Files (x86)\Tencent\QQLite\Bin\QQScLauncher.exe' was scanned with the Protection Cloud. SHA256 = 5A7D3FD28EFA53E01FA70792957D5F54DE1AEE24A5912EDEE9BA0456C50C207C
The file 'C:\Program Files (x86)\Thunder Network\Thunder\ThunderUninstall.exe' was scanned with the Protection Cloud. SHA256 = 267B929F0C697AA32EC81CC5E806E2CFD44945F06CB4FBC4A7362CC6750CBBC8
The file 'C:\Program Files (x86)\Thunder Network\Thunder\Program\Thunder.exe' was scanned with the Protection Cloud. SHA256 = 7B299A7F61FB8D0779B7F1F75B02D4EB90F6E9B15DE0AFDD002361F0E9876A35
The file 'C:\WINDOWS\system32\Drivers\360WiFiNAT64.sys' was scanned with the Protection Cloud. SHA256 = A4EE093ED8CEFABD6BDBE29B36E2952AF4865CEB217FB3640CD5C5DDA44A081C
The file 'C:\WINDOWS\system32\drivers\3ware.sys' was scanned with the Protection Cloud. SHA256 = 19E16F9144FE3E33B5FF248CF0040AB079ACAE22290B1369CC72AE4CB5FE3A90
The file 'C:\WINDOWS\System32\drivers\AcpiVpc.sys' was scanned with the Protection Cloud. SHA256 = 9FCCC90DEF6BE83F8C41D4552D235A7BB5534954D2E7CB7B1C336A31FCCAB3AD
The file 'C:\WINDOWS\system32\drivers\ADP80XX.SYS' was scanned with the Protection Cloud. SHA256 = 03183F90A994D69066F15C3DFC1D7D7514AEAF46A5AAC059B1FB327F8C30A35C
The file 'C:\WINDOWS\system32\drivers\amdsata.sys' was scanned with the Protection Cloud. SHA256 = 9901DB728885CE36911F79998629B2DD42D56AF9633B5277834F498CC59B0346
The file 'C:\WINDOWS\system32\drivers\amdsbs.sys' was scanned with the Protection Cloud. SHA256 = 695A5BC1F18B65992EB06A202AD3CBFA17228E76DDFD1AE6977FD315724F75C2
The file 'C:\WINDOWS\system32\drivers\amdxata.sys' was scanned with the Protection Cloud. SHA256 = 14476A04CC64E7A0F1BBFDACCBD7A87F384BE1877C27656DBB973AF3975D4AE2
The file 'C:\WINDOWS\system32\drivers\arcsas.sys' was scanned with the Protection Cloud. SHA256 = 0E18542CF2095A9ADA1759AB8F986E78B0A50A3C6B2AD4EACD80A23D832A2C6D
The file 'C:\WINDOWS\System32\drivers\athwbx.sys' was scanned with the Protection Cloud. SHA256 = 53ABFCE11485E307D56598BF03121DDCD8D3E75FE2D85E513252C5A649D7EBAD
The file 'C:\WINDOWS\system32\drivers\bxvbda.sys' was scanned with the Protection Cloud. SHA256 = 549DDCEAD93DF333F6BBD56A9258A867E4DA219741C00D48C68F8F230A87B11A
The file 'C:\WINDOWS\System32\drivers\bcmfn.sys' was scanned with the Protection Cloud. SHA256 = CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D
The file 'C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe' was found in the cache; the Protection Cloud scan was skipped. SHA256 = E93E8362FB1D173D8F15C753190CF41474C183A667AF90378389563A70D93864
The file 'C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe' was found in the cache; the Protection Cloud scan was skipped. SHA256 = 2C168F48A68644AA3CB6167BEC2A260E3E9C78D0766A15AA0FAA39CDBD7FA040
The file 'C:\WINDOWS\system32\CxAudMsg64.exe' was found in the cache; the Protection Cloud scan was skipped. SHA256 = 2DB940EBBA971B3801E273B80D8CBD975040A8B87908E7E0733E4DBB0EFC2611
The file 'C:\WINDOWS\system32\igfxCUIService.exe' was found in the cache; the Protection Cloud scan was skipped. SHA256 = F81D0F949F1F01D09C91735C79288395B82C27B8FB78804752E5A678D7EF3860
The file 'C:\WINDOWS\System32\drivers\bcmfn2.sys' was scanned with the Protection Cloud. SHA256 = 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F
The file 'C:\WINDOWS\System32\drivers\capimg.sys' was scanned with the Protection Cloud. SHA256 = 157D13EA72A04BC7EAFD3866DFC56DAFDAF0CC6B5983034382E5653A81FE61D0
The file 'C:\WINDOWS\system32\drivers\CHDRT64.sys' was scanned with the Protection Cloud. SHA256 = 12A98BE314733DF27BE1FB0848D6BBB49FD4CF7B3764393715070A58E3D91480
The file 'C:\WINDOWS\system32\drivers\evbda.sys' was scanned with the Protection Cloud. SHA256 = B4849400C3F819CF7809A2001EA2ECB527022483F7DFE31C3930F951EAFE50CE
The file 'C:\WINDOWS\system32\drivers\HpSAMD.sys' was scanned with the Protection Cloud. SHA256 = A239414E97B310C9545995B0E723B5E792B08D71F651450EB006AD4D1765E4F7
The file 'C:\WINDOWS\System32\drivers\iai2c.sys' was scanned with the Protection Cloud. SHA256 = 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463
The file 'C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys' was scanned with the Protection Cloud. SHA256 = E27B7389C9D123CDDA4EC9CBDB06C4AA5000012391F940EE1492419B593608FE
The file 'C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys' was scanned with the Protection Cloud. SHA256 = F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0
The file 'C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys' was scanned with the Protection Cloud. SHA256 = 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547
The file 'C:\WINDOWS\system32\drivers\iaStorA.sys' was scanned with the Protection Cloud. SHA256 = 4A9DAC2B56389C5955C343E202C6E81CD3A608E78A4BB7E6ED560719DF02C955
The file 'C:\WINDOWS\system32\drivers\iaStorAV.sys' was scanned with the Protection Cloud. SHA256 = E33AD69644E1683A971DA1169B704FBCFD9F715E9550816058E420BB5DE4D946
The file 'C:\WINDOWS\system32\drivers\iaStorV.sys' was scanned with the Protection Cloud. SHA256 = 72F8C4A49B874226DEE9B7C9704F0E0A98DAA2DF4EAE2F2258E8324ACBD242E4
The file 'C:\WINDOWS\System32\drivers\ibbus.sys' was scanned with the Protection Cloud. SHA256 = FCF5A5595E8C9C937BE9F1C3AB5D9BD0EFE82DE1298D12085E0CCD84A186D2F2
The file 'C:\WINDOWS\system32\DRIVERS\igdkmd64.sys' was scanned with the Protection Cloud. SHA256 = 0FE78AEFA9A75B4A99AD6B73AC3252E4C6DFA9D306FEC02D26C1FD574108BFBA
The file 'C:\WINDOWS\system32\drivers\intelaud.sys' was scanned with the Protection Cloud. SHA256 = 408E98D9C8ABB928090DD9E5D1BB227EFBC997BF168437BAEF0461EB0D1DAE3D
The file 'C:\WINDOWS\System32\drivers\iwdbus.sys' was scanned with the Protection Cloud. SHA256 = 9DE2BA80B315E56DF2E74EAA65F4ECB8324DFC19E30EB56EDDF08340AB100E87
The file 'C:\WINDOWS\System32\drivers\L1C63x64.sys' was scanned with the Protection Cloud. SHA256 = A24A334955FB98D0903971454FADAC639D535BD32BB48964BD95019C7F6C454E
The file 'C:\WINDOWS\system32\drivers\lsi_sas.sys' was scanned with the Protection Cloud. SHA256 = F9931A436651F695B746BC0C07E833D9C9F64126746DF976E691E6CAE26DAC9B
The file 'C:\WINDOWS\system32\drivers\lsi_sas2i.sys' was scanned with the Protection Cloud. SHA256 = DE0818DCC0D8D1D30A29AB167C65461A78100ABE2368637CEB9D0ED2B4E88D8E
The file 'C:\WINDOWS\system32\drivers\lsi_sas3i.sys' was scanned with the Protection Cloud. SHA256 = CA0015E87A3962611DBF714253FA618A6568346BAE640884432C1D44DE4C8684
The file 'C:\WINDOWS\system32\drivers\lsi_sss.sys' was scanned with the Protection Cloud. SHA256 = 4303C772366065885C5D937B2E9AC0BF80C84BFB2737716055AD57BF6AADD673
The file 'C:\WINDOWS\system32\nvvsvc.exe' was found in the cache; the Protection Cloud scan was skipped. SHA256 = E587A629B894EE6A16AC414747D492FFC6B6E9F051B40F7D25F0D4406E2FF919
The file 'C:\Program Files (x86)\Common Files\Tencent\QQProtect\Bin\QQProtect.exe' was found in the cache; the Protection Cloud scan was skipped. SHA256 = 75DB976ED07E67EAAEC99BF3FD9EF25A822B97D91099132EF6D9928BC807EFE4
The file 'C:\Program Files\Sandboxie\SbieSvc.exe' was found in the cache; the Protection Cloud scan was skipped. SHA256 = BBCC7BA27A305E4E07F82AF11FF8A0E258DDB67E36BE5E74389A27A7D2DD5A05
The file 'C:\WINDOWS\system32\drivers\megasas.sys' was scanned with the Protection Cloud. SHA256 = F70CC20B98C2DBCD13B0D509D92B3BC3828D1B88F3ACD60C860E163064844181
The file 'C:\WINDOWS\system32\drivers\megasr.sys' was scanned with the Protection Cloud. SHA256 = 5FA5A8EFBA117089CFDBE09743A16BC3A7CC2042C96ABA1F57901747493106BF
The file 'C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys' was scanned with the Protection Cloud. SHA256 = 8E00E8975BD3ABDD7F774E76FE33024EE09755DFC3C46F880E4EAA7F7D8393B6
The file 'C:\WINDOWS\System32\drivers\mlx4_bus.sys' was scanned with the Protection Cloud. SHA256 = E66218A8303422EA10C19BA12343740B9A1A70B11B39E185E805B4F74CD2B75E
The file 'C:\WINDOWS\system32\drivers\mvumis.sys' was scanned with the Protection Cloud. SHA256 = 3D92925867B6B8FFAF78E4080139DCB3D45E1E6E1D0AFB6A4FE248B002BD8471
The file 'C:\WINDOWS\System32\drivers\ndfltr.sys' was scanned with the Protection Cloud. SHA256 = F7F45DB6D306060F0FE0E59F39C3B95F6A9B6173930F22C5C41B2003895D6642
The file 'C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys' was scanned with the Protection Cloud. SHA256 = 64CC3201FA903E0EC9C99BE167C439C14A4C9AC2A88898B64789EEB381DB97B6
The file 'C:\WINDOWS\system32\DRIVERS\nvpciflt.sys' was scanned with the Protection Cloud. SHA256 = 361A3D2FDE53F5EAF3068A64F7848020C62B256C3F08BE5F863544A0747DD2D6
The file 'C:\WINDOWS\system32\drivers\nvraid.sys' was scanned with the Protection Cloud. SHA256 = EF5E5759CCF16DD97271C82DAF47FB2086EBCA5DE7D05177B70CA1197B95F41E
The file 'C:\WINDOWS\system32\drivers\nvstor.sys' was scanned with the Protection Cloud. SHA256 = 36036130DD46D9BF105AC7176E219F3BE7D1168A660A0F8DFF76F61FBFA4B417
The file 'C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE' was scanned with the Protection Cloud. SHA256 = 03AF40570DD8F8326EAF2A18227280DF0CEFFF1E12966E2829839C4B1E7F700E
The file 'C:\WINDOWS\system32\drivers\percsas2i.sys' was scanned with the Protection Cloud. SHA256 = E3609F183068BFAED756B2F9237181D60A6F6D78691248B8BF5B0AEB6A367E3D
The file 'C:\WINDOWS\system32\drivers\percsas3i.sys' was scanned with the Protection Cloud. SHA256 = EE713E33688E74C5A2546CC58EBD8EA8F8116F25E42DCF8DA21DCBC7C7590E0E
The file 'C:\WINDOWS\system32\Drivers\RtsUer.sys' was scanned with the Protection Cloud. SHA256 = 62FC3306F19B55B28E39A3625A466E87A975560C6B9B9F20832128A90F9C0FFB
The file 'C:\WINDOWS\system32\DRIVERS\rtwlane.sys' was scanned with the Protection Cloud. SHA256 = 36CC2B15C0400AA3B9C74BD5F13C90B9A5951BA9EE41FCB1DC7B885E06F518E3
The file 'C:\Program Files\Sandboxie\SbieDrv.sys' was scanned with the Protection Cloud. SHA256 = 009D273CFA4B2D7BBBFB69C7F722DC5F7AB3AA2562A66695ECAE6D30D5B997CD
The file 'C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe' was found in the cache; the Protection Cloud scan was skipped. SHA256 = E9FA0DB094E7B2129ABD325BC91A48D6646380D6AA97BE6233C220E0C98637AF
The file 'C:\WINDOWS\system32\drivers\SiSRaid2.sys' was scanned with the Protection Cloud. SHA256 = 5009F489F7A6D66628C23A0FA3D7632399D0AD72BD11A1B70D7E768ED507377D
The file 'C:\WINDOWS\system32\drivers\sisraid4.sys' was scanned with the Protection Cloud. SHA256 = 0E18EF8EC589841BC319C17FBABA7383FD247C9441ABF64A0D830976F3E611AE
The file 'C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys' was scanned with the Protection Cloud. SHA256 = 78A12B58D129D5B2017C9A94734656B9F1ED41345DF1D01F82702D4D95C1BE3F
The file 'C:\WINDOWS\system32\drivers\stexstor.sys' was scanned with the Protection Cloud. SHA256 = 622599AA35ACFF0375DA252210BE42E7E90F30EDFEFF2F62FDB14AE6E45B5F88
The file 'C:\WINDOWS\System32\drivers\Synth3dVsc.sys' was scanned with the Protection Cloud. SHA256 = 3979006EB22489D1AAD2EC2E9F32C286EEDCDB83B37B97E58BA831263EC33B84
The file 'C:\WINDOWS\system32\DRIVERS\SynTP.sys' was scanned with the Protection Cloud. SHA256 = 60EF12A8824384DD88D9C5D188E8FB137F0F85A63C06AAF720CB2D616EB847F4
The file 'C:\WINDOWS\system32\drivers\vsmraid.sys' was scanned with the Protection Cloud. SHA256 = 6CA7580878D3893E14B4938023A00CDFC9BE215A0CE4ED59A94F95DFD9FDF4D8
The file 'C:\WINDOWS\system32\drivers\vstxraid.sys' was scanned with the Protection Cloud. SHA256 = 9B8F99A035188FD96BA79E935E8EF387BEA2223ECA0B74CF64AB993DABAA5722
The file 'C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys' was scanned with the Protection Cloud. SHA256 = E47C1D76CBFD2A382C3A7BB048D752FB6DD4616FADDEB1C3ADD5DDAE149742AF
The file 'C:\WINDOWS\System32\drivers\winmad.sys' was scanned with the Protection Cloud. SHA256 = C221E74491E6FD2AF472B53876B46788D5CF62F4E645457F3B3816FD0ED2BAA1
The file 'C:\WINDOWS\System32\drivers\winverbs.sys' was scanned with the Protection Cloud. SHA256 = CD42FFC138969EF8C9588FD113F0B9A98FBA282D46A5B6BCFA765F55ED6E97A1
The file 'C:\WINDOWS\system32\drivers\xlwfp.sys' was scanned with the Protection Cloud. SHA256 = 81C0BE248BB12804DC28F2EB49CA1007147752EC4F9F30DA86937AA27233B0A4
The file 'C:\Program Files (x86)\Common Files\Thunder Network\ServicePlatform\XLSP.dll' was found in the cache; the Protection Cloud scan was skipped. SHA256 = 7AB19E38099A27024DEC217D002F77BD98AAA0E5DDA524EE4FCF09703291F74D
The file 'C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll' was scanned with the Protection Cloud. SHA256 = 2CD6DA9778EA36FA0B4080F6DB1C634712238E014E47546403CD3CDB35A1DCA8
The file 'C:\Program Files\CCleaner\CCleaner.exe' was scanned with the Protection Cloud. SHA256 = 4708898D8920EC8F1356BFE8308E31BC6C1ACE69B824822681176B2EC7A0C41C
The registry was scanned ( '1730' files ).



End of the scan: 2015年11月21日  21:22
Used time: 03:11 Minute(s)

The scan has been done completely.

      0 Scanned directories
   3137 Files were scanned
      0 Viruses and/or unwanted programs were found
      0 Files were classified as suspicious
      0 Files were deleted
      0 Viruses and unwanted programs were repaired
      0 Files were moved to quarantine
      0 Files were renamed
      0 Files cannot be scanned
   3137 Files not concerned
     22 Archives were scanned
      0 Warnings

aboringman

诸葛亮 发表于 2015-11-21 21:26
扫描是有的，但是仅限于快速扫描。
比如刚才我快速扫描了一次，可以看一下日志，有不少APC验证的。

还是没有加进自定义扫描里面，并没有什么大用啊

诸葛亮

aboringman 发表于 2015-11-21 21:28
还是没有加进自定义扫描里面，并没有什么大用啊

的确没有多少作用，，我只是纠正一下。。

yuzhi3366853

avast

aboringman

yuzhi3366853 发表于 2015-11-21 21:30
avast

老兄，敢不敢试试小a的主防（我开玩笑的，哈哈）

aboringman

诸葛亮 发表于 2015-11-21 21:30
的确没有多少作用，，我只是纠正一下。。

不，我并没有什么意思，哈哈

yuzhi3366853

aboringman 发表于 2015-11-21 21:32
老兄，敢不敢试试小a的主防（我开玩笑的，哈哈）

小A的主防是依赖于文件监控的吧（HIPS设置是个文件监控一起的），貌似关了文件监控不会触发？
加强模式还有点用，未知文件基本都报，HIPS要很敏感的动作才报的
基本上没怎么见过

aboringman

yuzhi3366853 发表于 2015-11-21 21:36
小A的主防是依赖于文件监控的吧，貌似关了文件监控不会触发？
加强模式还有点用，未知文件基本都报，HIP ...

不，其实我不建议你测试小a的主防（上面我已经说是开玩笑的了），因为你会后悔的（没入沙的情况下，就准备重装系统吧）。。。。。。

每顿需吃三大碗

ESET9解压秒