精睿样本测试（16.1.16）

显示全部楼层 · 发表于 2016-1-16 09:42:06

地址：

http://kuai.xunlei.com/d/zuh.ATKniIWZVgQA679

http://pan.baidu.com/s/1gdMJ9kR 提取密码 kx8z

密码：bbs.vc52.cn
数量：50

显示全部楼层 · 发表于 2016-1-16 09:44:53

KIS

显示全部楼层 · 发表于 2016-1-16 09:47:52

本帖最后由 windows7爱好者于 2016-1-16 14:48 编辑

后缀为vir时
为EXE时补杀
为zip时补杀
剩下10个，其中两个已经修复
总共检出42个，修复2个，删除40个

显示全部楼层 · 发表于 2016-1-16 09:48:21

本帖最后由 MXCERILYF! 于 2016-1-16 10:21 编辑

360杀毒（自主引擎）
文件后缀为vir时：杀21个

文件后缀为zip时：补杀3个

文件后缀为exe时：补杀10个

文件后缀为vbs时：补杀1个

共查杀35个，剩余15个

显示全部楼层 · 发表于 2016-1-16 10:15:11

显示全部楼层 · 发表于 2016-1-16 10:15:17

Mcafee 剩39x，这货疯了

显示全部楼层 · 发表于 2016-1-16 10:16:40

本帖最后由欧阳宣于 2016-1-16 10:19 编辑

norton
扫描检测22，修复2个。
[mw_shl_code=css,true]Resolved Threats:
Infostealer.Limitail
Type: Compressed
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
- Deleted

Trojan.Maljava
Type: Compressed
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
- Deleted

Risks in compressed file "12.vir"
Type: Compressed
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
[vk locker 0.1b.exe] inside of [d:\virus\2016.1.16\12.vir] - Fully Resolved

W97M.Downloader
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
5 Files
d:\virus\2016.1.16\22.vir - Deleted
d:\virus\2016.1.16\38.vir - Deleted
d:\virus\2016.1.16\11.vir - Deleted
d:\virus\2016.1.16\04.vir - Deleted
d:\virus\2016.1.16\02.vir - Deleted
1 Browser Cache

Trojan Horse
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
4 Files
d:\virus\2016.1.16\18.vir - Deleted
d:\virus\2016.1.16\07.vir - Deleted
d:\virus\2016.1.16\19.vir - Deleted
d:\virus\2016.1.16\35.vir - Deleted
1 Browser Cache

Downloader
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
2 Files
d:\virus\2016.1.16\21.vir - Deleted
d:\virus\2016.1.16\08.vir - Deleted
1 Browser Cache

Infostealer.Limitail
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
8 Registry Entries
HKEY_USERS\S-1-5-21-1523581685-1367262481-2280446090-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\->NofolderOptions:0 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sr\Parameters\->FirstRun:0 - Repaired
HKEY_USERS\S-1-5-21-1523581685-1367262481-2280446090-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:0 - Repaired
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:0 - Repaired
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:0 - Repaired
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\->ShowSuperHidden:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->AntiVirusDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->AntiVirusDisableNotify:0 - Repaired
1 File
d:\virus\2016.1.16\17.vir - Deleted
1 Browser Cache

Infostealer.Mysayad
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\2016.1.16\31.vir - Deleted
1 Browser Cache

Trojan.Cryptlock.N!g2
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\2016.1.16\32.vir - Deleted
1 Browser Cache

Trojan.Gen
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\2016.1.16\32.vir - No Action Required
1 Browser Cache

Packed.Vmpbad!gen4
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\2016.1.16\25.vir - Deleted
1 Browser Cache

Linux.Kaiten.B
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\2016.1.16\44.vir - Deleted
1 Browser Cache

Infostealer.Dyre
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\2016.1.16\27.vir - Deleted
1 Browser Cache

SAPE.Heur.D4873
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
d:\virus\2016.1.16\42.vir - Deleted
1 Browser Cache

Backdoor.Proxyback
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
d:\virus\2016.1.16\43.vir - Deleted
1 Browser Cache[/mw_shl_code]

显示全部楼层 · 发表于 2016-1-16 10:37:25

CIS 4x

显示全部楼层 · 发表于 2016-1-16 11:51:55

本帖最后由 nick20010117 于 2016-1-16 14:03 编辑

蜘蛛扫描kill27x

DPH杀掉40以及32的衍生物（母体不杀）
32是勒索木马，电脑上1、2个文件被加密，不过电脑仍然受到保护
一共29x

显示全部楼层 · 发表于 2016-1-16 12:00:49

本帖最后由 Microsoftheihei 于 2016-1-16 12:22 编辑

fs

扫描报告
2016年1月16日 12:18:16 - 12:18:25
扫描类型：选择的文件和文件夹
目标： "C:\Users\acer\Desktop\2016.1.16"
结果

已扫描项目： 100
找到的恶意项目： 47
详细信息

Trojan.VBS.Downloader.KA
C:\Users\acer\Desktop\2016.1.16\02.vir: 无法清理
Trojan:W97M/MaliciousMacro.GEN
C:\Users\acer\Desktop\2016.1.16\04.vir: 无法清理
Trojan.VBS.Downloader.JX
C:\Users\acer\Desktop\2016.1.16\03.vir: 已清除
Trojan:W97M/MaliciousMacro.GEN
C:\Users\acer\Desktop\2016.1.16\01.vir: 无法清理
Trojan.GenericKD.2988274
C:\Users\acer\Desktop\2016.1.16\07.vir: 无法清理
Trojan:W97M/MaliciousMacro.GEN
C:\Users\acer\Desktop\2016.1.16\09.vir: 无法清理
Gen:Trojan.Heur.GM.0140416032
C:\Users\acer\Desktop\2016.1.16\08.vir: 已清除
Trojan.GenericKD.2983931
C:\Users\acer\Desktop\2016.1.16\14.vir: 已清除
Trojan.GenericKD.2986882
C:\Users\acer\Desktop\2016.1.16\18.vir: 已清除
Gen:Variant.Strictor.101069
C:\Users\acer\Desktop\2016.1.16\19.vir: 已清除
Trojan:W97M/MaliciousMacro.GEN
C:\Users\acer\Desktop\2016.1.16\20.vir: 无法清理
Trojan.VBS.Downloader.JO
C:\Users\acer\Desktop\2016.1.16\21.vir\H.vbe: 已跳过
Trojan.GenericKD.2902048
C:\Users\acer\Desktop\2016.1.16\17.vir: 已清除
Trojan:W32/Qhost.WE
C:\Users\acer\Desktop\2016.1.16\12.vir\VK Locker 0.1b.exe: 已跳过
Trojan:W97M/MaliciousMacro.GEN
C:\Users\acer\Desktop\2016.1.16\22.vir: 无法清理
Gen:Variant.Barys.2440
C:\Users\acer\Desktop\2016.1.16\05.vir\PbCash.exe: 已跳过
Trojan.GenericKD.2988515
C:\Users\acer\Desktop\2016.1.16\24.vir: 已清除
Trojan.Generic.15489091
C:\Users\acer\Desktop\2016.1.16\25.vir: 已清除
Gen:Heur.SMHeist.2
C:\Users\acer\Desktop\2016.1.16\12.vir: 已清除
Trojan:W97M/MaliciousMacro.GEN
C:\Users\acer\Desktop\2016.1.16\28.vir: 无法清理
Trojan:W97M/MaliciousMacro.GEN
C:\Users\acer\Desktop\2016.1.16\29.vir: 无法清理
Trojan.GenericKD.2982147
C:\Users\acer\Desktop\2016.1.16\30.vir: 已清除
Gen:Variant.Kazy.455544
C:\Users\acer\Desktop\2016.1.16\31.vir: 已清除
Trojan.Lethic.Gen.13
C:\Users\acer\Desktop\2016.1.16\32.vir: 已清除
Gen:Variant.Kazy.792321
C:\Users\acer\Desktop\2016.1.16\33.vir: 已清除
Trojan.Generic.15653747
C:\Users\acer\Desktop\2016.1.16\35.vir: 已清除
Gen:Variant.Graftor.255253
C:\Users\acer\Desktop\2016.1.16\34.vir: 已清除
Trojan.Generic.15468447
C:\Users\acer\Desktop\2016.1.16\36.vir: 已清除
Trojan.GenericKD.2986875
C:\Users\acer\Desktop\2016.1.16\38.vir: 已清除
Trojan.GenericKD.2984067
C:\Users\acer\Desktop\2016.1.16\39.vir: 已清除
Trojan.GenericKD.2984272
C:\Users\acer\Desktop\2016.1.16\40.vir: 已清除
Exploit.CVE-2010-3333.Gen
C:\Users\acer\Desktop\2016.1.16\41.vir: 已清除
Gen:Variant.Symmi.53786
C:\Users\acer\Desktop\2016.1.16\43.vir: 已清除
Backdoor.Linux.Tsunami.CO
C:\Users\acer\Desktop\2016.1.16\44.vir: 已清除
Generic.XPL.ADODB.227177AB
C:\Users\acer\Desktop\2016.1.16\45.vir: 已清除
Trojan.GenericKD.2989228
C:\Users\acer\Desktop\2016.1.16\46.vir: 已清除
Application.Generic.1559195
C:\Users\acer\Desktop\2016.1.16\42.vir: 已跳过
Trojan.Java.Adwind.BM
C:\Users\acer\Desktop\2016.1.16\47.vir\javas\??????????????????????auX.class: 已跳过
Trojan.Java.Adwind.BM
C:\Users\acer\Desktop\2016.1.16\47.vir\javas\??????????????????????cON.class: 已跳过
W97M.Downloader.AOI
C:\Users\acer\Desktop\2016.1.16\48.vir: 已清除
Trojan.Java.Adwind.BM
C:\Users\acer\Desktop\2016.1.16\47.vir\javas\??????????????????????con.class: 已跳过
Trojan.GenericKD.2702466
C:\Users\acer\Desktop\2016.1.16\27.vir: 已清除
Trojan.Java.Adwind.BM
C:\Users\acer\Desktop\2016.1.16\47.vir\javas\??????????????????????NUl.class: 已跳过
Trojan.Generic.15638853
C:\Users\acer\Desktop\2016.1.16\37.vir\dhl-pdf.exe: 已跳过
Trojan.Java.Adwind.BM
C:\Users\acer\Desktop\2016.1.16\47.vir\javas\??????????????????????coN.class: 已跳过
Trojan.Java.Adwind.BM
C:\Users\acer\Desktop\2016.1.16\47.vir\javas\??????????????????????Prn.class: 已跳过
Trojan.Java.Adwind.BM
C:\Users\acer\Desktop\2016.1.16\47.vir: 已清除
版本信息

病毒定义数据库：

2016-01-16_02
扫描引擎：

F-Secure Aquarius: 11.00.01, 2016-01-16
F-Secure Gemini: 3.02.384, 2016-01-15
F-Secure Hydra: 5.15.21, 2016-01-15
F-Secure Online: 15.10.194
F-Secure USS: 5.08.181, 2016-01-12

[病毒样本] 精睿样本测试（16.1.16）

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块