精睿样本测试（16.6.14）

显示全部楼层 · 发表于 2016-6-14 09:21:13

地址：

http://pan.baidu.com/s/1coiprS 提取密码 tatn

密码：bbs.vc52.cn
数量：50

显示全部楼层 · 发表于 2016-6-14 09:27:26

微软

[mw_shl_code=css,true]Scan started on Tue Jun 14 09:25:56 2016

C:\Users\XuanXia\Desktop\2016.6.14\01.vir                                                                      Infected: VirTool:Win32/Injector.gen!AG [generic]
C:\Users\XuanXia\Desktop\2016.6.14\02.vir                                                                      Infected: TrojanDownloader:Win32/Skidlo
C:\Users\XuanXia\Desktop\2016.6.14\04.vir                                                                      Infected: Backdoor:Win32/Kirts.A
C:\Users\XuanXia\Desktop\2016.6.14\06.vir                                                                      Infected: TrojanSpy:Win32/Skeeyah.A!rfn
C:\Users\XuanXia\Desktop\2016.6.14\07.vir                                                                      Infected: Backdoor:MSIL/Noancooe.C
C:\Users\XuanXia\Desktop\2016.6.14\09.vir->word/vbaProject.bin                                                 Infected: TrojanDownloader:O97M/Donoff
C:\Users\XuanXia\Desktop\2016.6.14\10.vir->123587MV UNITY_SPIRITpdf.exe                                        Infected: Trojan:Win32/Dacic.A!rfn
C:\Users\XuanXia\Desktop\2016.6.14\11.vir->word/vbaProject.bin                                                 Infected: TrojanDownloader:W97M/Ursnif.A
C:\Users\XuanXia\Desktop\2016.6.14\12.vir                                                                      Infected: Worm:Win32/Gamarue
C:\Users\XuanXia\Desktop\2016.6.14\14.vir                                                                      Infected: Backdoor:MSIL/Noancooe.C
C:\Users\XuanXia\Desktop\2016.6.14\15.vir                                                                      Infected: TrojanDropper:Win32/Zeqbeq
C:\Users\XuanXia\Desktop\2016.6.14\19.vir->[RtfMso]->(ActiveMime)                                              Infected: TrojanDownloader:O97M/Adnel.D [non_writable_container]
C:\Users\XuanXia\Desktop\2016.6.14\22.vir                                                                      Infected: Trojan:Win32/Skeeyah.A!rfn
C:\Users\XuanXia\Desktop\2016.6.14\26.vir                                                                      Infected: Ransom:Win32/Exxroute.C
C:\Users\XuanXia\Desktop\2016.6.14\29.vir->word/vbaProject.bin                                                 Infected: TrojanDownloader:O97M/Donoff
...uanXia\Desktop\2016.6.14\30.vir->xl/embeddings/oleObject1.bin->(Ole Stream 0)->rvtcrextrexter_Num_68815.exe  Infected: Trojan:Win32/Dynamer!ac [non_writable_container]
C:\Users\XuanXia\Desktop\2016.6.14\33.vir                                                                      Infected: Trojan:Win32/Skeeyah.A!rfn
C:\Users\XuanXia\Desktop\2016.6.14\36.vir                                                                      Infected: TrojanSpy:MSIL/Omaneat.B
C:\Users\XuanXia\Desktop\2016.6.14\37.vir->word/vbaProject.bin                                                 Infected: TrojanDownloader:O97M/Donoff
C:\Users\XuanXia\Desktop\2016.6.14\39.vir                                                                      Infected: Worm:Win32/Gamarue
C:\Users\XuanXia\Desktop\2016.6.14\41.vir                                                                      Infected: TrojanDownloader:Win32/Banload
C:\Users\XuanXia\Desktop\2016.6.14\42.vir                                                                      Infected: Trojan:Win32/Kovter
C:\Users\XuanXia\Desktop\2016.6.14\43.vir                                                                      Infected: Ransom:Win32/Exxroute.C
C:\Users\XuanXia\Desktop\2016.6.14\46.vir                                                                      Infected: Backdoor:MSIL/Bladabindi
C:\Users\XuanXia\Desktop\2016.6.14\49.vir->word/vbaProject.bin                                                 Infected: TrojanDownloader:O97M/Donoff

Successfully checked: C:\Users\XuanXia\Desktop\2016.6.14

Scan ended on Tue Jun 14 09:26:08 2016[/mw_shl_code]

显示全部楼层 · 发表于 2016-6-14 09:36:49

火绒 17/50

显示全部楼层 · 发表于 2016-6-14 09:40:35

本帖最后由狐狸糊涂于 2016-6-14 09:50 编辑

BD杀39,余11

[mw_shl_code=css,true]C:\Users\QIU\Desktop\2016.6.14\42.vir Trojan.GenericKD.3305650 Deleted
C:\Users\QIU\Desktop\2016.6.14\09.vir=>word/vbaProject.bin w97m.Downloader.DAG Disinfected
C:\Users\QIU\Desktop\2016.6.14\24.vir w97m.Downloader.DAE Disinfected
C:\Users\QIU\Desktop\2016.6.14\06.vir Trojan.GenericKD.3301208 Deleted
C:\Users\QIU\Desktop\2016.6.14\38.vir Trojan.GenericKD.3300825 Deleted
C:\Users\QIU\Desktop\2016.6.14\12.vir Trojan.GenericKD.3299653 Deleted
C:\Users\QIU\Desktop\2016.6.14\44.vir Trojan.GenericKD.3300285 Deleted
C:\Users\QIU\Desktop\2016.6.14\26.vir Gen:Variant.Razy.63302 Deleted
C:\Users\QIU\Desktop\2016.6.14\08.vir Trojan.VBS.Downloader.PK Deleted
C:\Users\QIU\Desktop\2016.6.14\29.vir=>word/vbaProject.bin w97m.Downloader.DAG Disinfected
C:\Users\QIU\Desktop\2016.6.14\43.vir Trojan.GenericKD.3301809 Deleted
C:\Users\QIU\Desktop\2016.6.14\07.vir Trojan.GenericKD.3299078 Deleted
C:\Users\QIU\Desktop\2016.6.14\37.vir=>word/vbaProject.bin W97M.Downloader.CZI Disinfected
C:\Users\QIU\Desktop\2016.6.14\13.vir Trojan.GenericKD.3301261 Deleted
C:\Users\QIU\Desktop\2016.6.14\31.vir Trojan.GenericKD.3303906 Deleted
C:\Users\QIU\Desktop\2016.6.14\03.vir Gen:Trojan.Heur.BuX@!tK@g3i Deleted
C:\Users\QIU\Desktop\2016.6.14\21.vir Gen:Heur.MSIL.Krypt.2 Deleted
C:\Users\QIU\Desktop\2016.6.14\17.vir Gen:Variant.Symmi.30884 Deleted
C:\Users\QIU\Desktop\2016.6.14\49.vir=>word/vbaProject.bin w97m.Downloader.DAG Disinfected
C:\Users\QIU\Desktop\2016.6.14\46.vir Trojan.GenericKD.3302195 Deleted
C:\Users\QIU\Desktop\2016.6.14\28.vir Trojan.Linux.Xorddos.D Deleted
C:\Users\QIU\Desktop\2016.6.14\33.vir Trojan.GenericKD.3300072 Deleted
C:\Users\QIU\Desktop\2016.6.14\15.vir Trojan.GenericKD.3298894 Deleted
C:\Users\QIU\Desktop\2016.6.14\27.vir=>MV HAEYANG_PDF.exe Trojan.Zmutzy.802 Moved to Quarantine
C:\Users\QIU\Desktop\2016.6.14\45.vir w97m.Downloader.DAM Deleted
C:\Users\QIU\Desktop\2016.6.14\39.vir Gen:Trojan.Heur.TP.biX@bKlK3Tl Deleted
C:\Users\QIU\Desktop\2016.6.14\14.vir Gen:Variant.Barys.50840 Deleted
C:\Users\QIU\Desktop\2016.6.14\04.vir Trojan.GenericKD.3277201 Deleted
C:\Users\QIU\Desktop\2016.6.14\22.vir Trojan.GenericKD.3300445 Deleted
C:\Users\QIU\Desktop\2016.6.14\02.vir Trojan.GenericKD.3298347 Deleted
C:\Users\QIU\Desktop\2016.6.14\20.vir Trojan.VBS.Downloader.PX Moved to Quarantine
C:\Users\QIU\Desktop\2016.6.14\36.vir Trojan.GenericKD.3299954 Deleted
C:\Users\QIU\Desktop\2016.6.14\41.vir Trojan.GenericKD.3301997 Deleted
C:\Users\QIU\Desktop\2016.6.14\05.vir Trojan.GenericKD.3297666 Deleted
C:\Users\QIU\Desktop\2016.6.14\11.vir=>word/vbaProject.bin W97M.Downloader.CZH Disinfected
C:\Users\QIU\Desktop\2016.6.14\34.vir=>ENQUIRY.exe Trojan.GenericKD.3300614 Deleted
C:\Users\QIU\Desktop\2016.6.14\10.vir=>123587MV UNITY_SPIRITpdf.exe Trojan.GenericKD.3300091 Deleted
C:\Users\QIU\Desktop\2016.6.14\19.vir=>(application)=>(Active Mime) W97M.Downloader.ZY Disinfected
C:\Users\QIU\Desktop\2016.6.14\01.vir Gen:Trojan.Heur.xm1@rLMSj7l Deleted
[/mw_shl_code]

显示全部楼层 · 发表于 2016-6-14 09:42:05

卡巴23个，修复6个

显示全部楼层 · 发表于 2016-6-14 09:47:25

显示全部楼层 · 发表于 2016-6-14 10:08:11

"外壳扩展扫描（Shell Extension Scan）"
"高严重性";"34";"34";"0"
"中等严重性";"2";"2";"0"
"通知";"6";"0";"6"
"已扫描：";"C:\360极速浏览器下载\2016.6.14"
"已启动：";"2016/6/14, 10:03:03"
"已完成：";"2016/6/14, 10:03:06"
"项目数：";"155"
"启动者：";"woshi"

"名称";"说明";"状态";"状态";"优先级"
"C:\360极速浏览器下载\2016.6.14\33.vir";"特洛伊木马 Generic37.BZAG";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\24.vir";"包含宏";"通知";"未解决";"消息"
"C:\360极速浏览器下载\2016.6.14\02.vir";"发现 Luhe.Fiha.A";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\21.vir";"特洛伊木马 Bladabindi2.AZPV";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\12.vir";"特洛伊木马 Pakes2_c.CJAW";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\15.vir";"特洛伊木马 Generic15_c.ASAP";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\46.vir";"可能是特洛伊木马 PSW.ILUSpy";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\08.vir";"发现病毒 VBS/Downloader.Agent";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\39.vir";"特洛伊木马 Generic_r.HER";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\25.vir";"特洛伊木马 Dropper.Generic9.AHWN";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\09.vir";"包含宏";"通知";"未解决";"消息"
"C:\360极速浏览器下载\2016.6.14\49.vir";"包含宏";"通知";"未解决";"消息"
"C:\360极速浏览器下载\2016.6.14\10.vir";"特洛伊木马 MSIL10.ZLJ";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\44.vir";"特洛伊木马 Inject3.ATLI";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\20.vir";"发现病毒 VBS/Downloader.Agent";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\07.vir";"特洛伊木马 Atros3.BHBA";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\43.vir";"特洛伊木马 Inject_s.PR";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\32.vir";"特洛伊木马 Downloader.Java_c.FE";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\14.vir";"特洛伊木马 Generic15_c.ATWY";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\37.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\41.vir";"特洛伊木马 Downloader.Banload2.ARQN";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\26.vir";"特洛伊木马 Inject_s.OG";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\45.vir";"包含宏";"通知";"未解决";"消息"
"C:\360极速浏览器下载\2016.6.14\11.vir";"包含宏";"通知";"未解决";"消息"
"C:\360极速浏览器下载\2016.6.14\48.vir";"特洛伊木马 Downloader.Generic_c.ALTQ";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\06.vir";"特洛伊木马 Zbot.AOHD";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\05.vir";"特洛伊木马 Atros3.BGTA";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\27.vir";"特洛伊木马 MSIL10.YZE";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\30.vir";"特洛伊木马 Crypt_s.LCY";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\38.vir";"特洛伊木马 Downloader.MSIL.BHEE";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\19.vir";"特洛伊木马 Generic13_c.RAH";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\03.vir";"可能不需要的应用程序 Crack.MG";"已保护";"已修复";"中等"
"C:\360极速浏览器下载\2016.6.14\29.vir";"包含宏";"通知";"未解决";"消息"
"C:\360极速浏览器下载\2016.6.14\23.vir";"特洛伊木马 Downloader.Java_c.FE";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\04.vir";"发现 MalSign.Leak.4A9";"已保护";"已修复";"中等"
"C:\360极速浏览器下载\2016.6.14\47.vir";"特洛伊木马 Crypt_s.LCY";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\34.vir";"可能是特洛伊木马 Autoit";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\36.vir";"特洛伊木马 Atros3.BGXI";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\42.vir";"特洛伊木马 Crypt_vb.JBE";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\13.vir";"特洛伊木马 Inject3.ATMT";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\28.vir";"特洛伊木马 Linux/DDoS.XOR";"已保护";"已修复";"高"
"C:\360极速浏览器下载\2016.6.14\01.vir";"特洛伊木马 Dropper.Msil.CN";"已保护";"已修复";"高"

AVG无赖模式下对宏病毒的防御大大提高，41X

显示全部楼层 · 发表于 2016-6-14 10:24:16

[mw_shl_code=shell,true] * 恶软签名库加载成功，发布序号为 166
* 读取恶软签名库配置 ...
* 初始化云引擎组件 ...
* 初始化引擎环境 ...
* 预热云引擎 ...
* 扫描目标 : (1) D:\Temp\2016.6.14

扫描开始: Tue Jun 14 10:22:32 2016

D:\Temp\2016.6.14\01.vir ...  Trojan.MSIL.Runp!1.9DFA-nK7K79GjNyO <cloud>
D:\Temp\2016.6.14\02.vir ...  Ransom.Foreign!8.292-q8KZt5PwsZI <cloud>
D:\Temp\2016.6.14\03.vir ...
D:\Temp\2016.6.14\04.vir ...  Backdoor.Kirts!8.5853-4sKvYtsCQnP <cloud>
D:\Temp\2016.6.14\05.vir ...  Dropper.Generic!8.35E-BAFGAlohpcF <cloud>
D:\Temp\2016.6.14\06.vir ...  Stealer.Fareit!8.170-POhQKBZlXeF <cloud>
D:\Temp\2016.6.14\07.vir ...  Trojan.MSIL.Injector!1.9E1B-eORdffMjDED <cloud>
D:\Temp\2016.6.14\08.vir ...  Downloader.Agent!8.B23-Hm5E4rvGfPC <cloud>
D:\Temp\2016.6.14\09.vir ...  Trojan.Obfus/VBA!1.A5A5 <classic>
D:\Temp\2016.6.14\10.vir ...  Trojan.Injector!8.C4-p7ZwCXPo8uT <cloud>
D:\Temp\2016.6.14\11.vir ...  Trojan.Obfus/VBA@DT!1.A540 <classic>
D:\Temp\2016.6.14\12.vir ...  Worm.Gamarue!8.13B-Dk6fJ8VWEvO <cloud>
D:\Temp\2016.6.14\13.vir ...  Trojan.SelfDel!8.275-26Z8lp0DEkG <cloud>
D:\Temp\2016.6.14\14.vir ...  Backdoor.Noancooe!8.176-YbD4xdd1L6 <cloud>
D:\Temp\2016.6.14\15.vir ...  Ransom.Zerber!8.518C-P1G1w89WIaD <cloud>
D:\Temp\2016.6.14\16.vir ...  Malware.Generic!QL7pivXbPWC@d <thunder>
D:\Temp\2016.6.14\17.vir ...
D:\Temp\2016.6.14\18.vir ...
D:\Temp\2016.6.14\19.vir ...  Trojan.Obfus/VBA@DT!1.A540 <classic>
D:\Temp\2016.6.14\20.vir ...  Downloader.Ransomware!8.625A-QnMZvinSKdM <cloud>
D:\Temp\2016.6.14\21.vir ...  Worm.Bladabindi!8.29B-pSHpmaiWOgM <cloud>
D:\Temp\2016.6.14\22.vir ...  Trojan.Skeeyah!8.3A6-YfseGWt1pmC <cloud>
D:\Temp\2016.6.14\23.vir ...
D:\Temp\2016.6.14\24.vir ...  Heur.Macro.Downloader.a <classic>
D:\Temp\2016.6.14\25.vir ...  Dropper.Agent!8.2F-S2hvKbfUViN <cloud>
D:\Temp\2016.6.14\26.vir ...  Ransom.Exxroute!8.5790-bhgJduSMOyV <cloud>
D:\Temp\2016.6.14\27.vir ...  Trojan.Injector!8.C4-uLNr2sHBRaN <cloud>
D:\Temp\2016.6.14\28.vir ...  Trojan.DDoS-Xor/Linux!1.A3E4 <classic>
D:\Temp\2016.6.14\29.vir ...  Trojan.Obfus/VBA!1.A5A5 <classic>
D:\Temp\2016.6.14\30.vir ...
D:\Temp\2016.6.14\31.vir ...
D:\Temp\2016.6.14\32.vir ...
D:\Temp\2016.6.14\33.vir ...  Trojan.Skeeyah!8.3A6-2AFc2ktgX5V <cloud>
D:\Temp\2016.6.14\34.vir ...  Trojan.Injector!8.C4-mBbIiVqvjLH <cloud>
D:\Temp\2016.6.14\35.vir ...
D:\Temp\2016.6.14\36.vir ...  Trojan.Kryptik!8.8-CqYXElq9GKV <cloud>
D:\Temp\2016.6.14\37.vir ...  Trojan.Obfus/VBA@DT!1.A540 <classic>
D:\Temp\2016.6.14\38.vir ...  Downloader.Small!8.B41-vnjUleKzJMJ <cloud>
D:\Temp\2016.6.14\39.vir ...  Worm.Gamarue!8.13B-4sn28RMBUCT <cloud>
D:\Temp\2016.6.14\40.vir ...  PUA.HostsChanger!8.4B8-SSGnZc7w7SO <cloud>
D:\Temp\2016.6.14\41.vir ...  Downloader.Banload!8.15B-QG4PzFyzIBG <cloud>
D:\Temp\2016.6.14\42.vir ...  Malware.XPACK-HIE/Heur!1.9C48-NJEOVq3nV1N <cloud>
D:\Temp\2016.6.14\43.vir ...  Ransom.Exxroute!8.5790-vtHCW0jQTYT <cloud>
D:\Temp\2016.6.14\44.vir ...  Ransom.Zerber!8.518C-33dq7lOcJYS <cloud>
D:\Temp\2016.6.14\45.vir ...
D:\Temp\2016.6.14\46.vir ...  Backdoor.Bladabindi!8.B1F-gRSRKHLrGCT <cloud>
D:\Temp\2016.6.14\47.vir ...
D:\Temp\2016.6.14\48.vir ...  Downloader.Agent!8.B23-F70tq7E6ZXD <cloud>
D:\Temp\2016.6.14\49.vir ...  Trojan.Obfus/VBA!1.A5A5 <classic>
D:\Temp\2016.6.14\50.vir ...

扫描结束: Tue Jun 14 10:22:40 2016

总共耗时: 0:8:215(m:s:ms)
总文件数: 50
总感染数: 39
威胁占比: 78.00 %
[/mw_shl_code]

瑞星扫描器39X

显示全部楼层 · 发表于 2016-6-14 11:33:39

小红伞pro 13

显示全部楼层 · 发表于 2016-6-14 11:34:28

norton 22.6检测22，修复了挺多，七八个吧

[病毒样本] 精睿样本测试（16.6.14）

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块