精睿样本测试（16.6.28）

显示全部楼层 · 发表于 2016-6-28 09:50:28

地址：

https://pan.baidu.com/s/1kUBWWon 提取密码 q9bn

密码：bbs.vc52.cn
数量：50

显示全部楼层 · 发表于 2016-6-28 09:54:06

mcafee 35X

显示全部楼层 · 发表于 2016-6-28 09:59:47

火绒 31/50

显示全部楼层 · 发表于 2016-6-28 10:13:32

Avira 42X

[mw_shl_code=css,true]Start of the scan: Tuesday, 28 June, 2016  10:03

Starting the file scan:

Begin scan in 'C:\Users\User\Desktop\2016.6.28'
C:\Users\User\Desktop\2016.6.28\01.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\02.vir
  [DETECTION] Contains code of the W2000M/Dldr.Agent.CG.941 macro virus
C:\Users\User\Desktop\2016.6.28\04.vir
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/ZeroAccess.xcyt back-door program
C:\Users\User\Desktop\2016.6.28\05.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\06.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\07.vir
  [DETECTION] Contains code of the W2000M/Dldr.Agent.CG.951 macro virus
C:\Users\User\Desktop\2016.6.28\08.vir
  [DETECTION] Is the TR/Dropper.Gen7 Trojan
C:\Users\User\Desktop\2016.6.28\09.vir
  [DETECTION] Contains code of the W2000M/Agent.adgag macro virus
C:\Users\User\Desktop\2016.6.28\11.vir
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/ZeroAccess.orgs back-door program
C:\Users\User\Desktop\2016.6.28\12.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\13.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\15.vir
  [DETECTION] Is the TR/Crypt.Xpack.ftti Trojan
C:\Users\User\Desktop\2016.6.28\16.vir
  [DETECTION] Contains recognition pattern of the EXP/FLASH.Pubenush.O.Gen exploit
C:\Users\User\Desktop\2016.6.28\17.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\18.vir
  [DETECTION] Contains recognition pattern of the EXP/FLASH.Lodabytor.M.Gen exploit
C:\Users\User\Desktop\2016.6.28\20.vir
  [DETECTION] Is the TR/Dldr.Small.vgkj Trojan
C:\Users\User\Desktop\2016.6.28\22.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\23.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\24.vir
  [DETECTION] Is the TR/Dropper.VB.thka Trojan
C:\Users\User\Desktop\2016.6.28\25.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\26.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\27.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.225019 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\28.vir
  [DETECTION] Contains code of the W2000M/Agent.225034 macro virus
C:\Users\User\Desktop\2016.6.28\29.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.225019 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\30.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains suspicious code HEUR/Macro.Downloader
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\31.vir
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/ZeroAccess.zybe back-door program
C:\Users\User\Desktop\2016.6.28\32.vir
[0] Archive type: ZIP
--> BS1523420DC01M_2016-06-22pdf.exe
      [DETECTION] Is the TR/Dropper.MSIL.edzl Trojan
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\33.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\34.vir
  [DETECTION] Contains recognition pattern of the EXP/CVE-2010-3333 exploit
C:\Users\User\Desktop\2016.6.28\35.vir
  [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
C:\Users\User\Desktop\2016.6.28\36.vir
  [DETECTION] Contains code of the W2000M/Agent.225034 macro virus
C:\Users\User\Desktop\2016.6.28\38.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\40.vir
[0] Archive type: Portable Executable Resource
--> CABINET
      [1] Archive type: CAB (Microsoft)
   --> @.cmd
      [DETECTION] Is the TR/Crypt.ZPACK.usfo Trojan
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\42.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\43.vir
  [DETECTION] Contains patterns of software PUA/IStartSurf.208897
C:\Users\User\Desktop\2016.6.28\45.vir
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/ZeroAccess.vgcd back-door program
C:\Users\User\Desktop\2016.6.28\46.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\47.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\48.vir
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/ZeroAccess.tcqn back-door program
C:\Users\User\Desktop\2016.6.28\49.vir
[0] Archive type: ZIP
--> word/vbaProject.bin
      [DETECTION] Contains code of the W2000M/Agent.00951 macro virus
      [WARNING] Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.6.28\50.vir
  [DETECTION] Is the TR/Dropper.MSIL.veeu Trojan
C:\Users\User\Desktop\2016.6.28\37.vir
  [DETECTION] Contains recognition pattern of the JS/Nemucod.aipfwa Java script virus[/mw_shl_code]

显示全部楼层 · 发表于 2016-6-28 10:19:07

本帖最后由 540923555 于 2016-6-28 11:22 编辑

windows defender占位，今天基准线有点高

联网：查杀+修复=40，

显示全部楼层 · 发表于 2016-6-28 10:20:35

540923555 发表于 2016-6-28 10:19
windows defender占位

MSE，今天跳过，没网升级失败

显示全部楼层 · 发表于 2016-6-28 10:38:49

本帖最后由 900703 于 2016-6-28 10:47 编辑

ESET Kill 44

F-Secure Protection Kill 23

KIS Kill 36

avast! Kill 33

Webroot Kill 10

Bitdefender Kill 37

显示全部楼层 · 发表于 2016-6-28 10:43:53

AVG kill 44 暂时领先

20个宏病毒也是醉了...

显示全部楼层 · 发表于 2016-6-28 10:45:45

T.Yoshiyuki 发表于 2016-6-28 10:43
AVG kill 44 暂时领先

Avira占第二位嗎？

显示全部楼层 · 发表于 2016-6-28 10:52:14

F-secure 36x，和估计的值一点不差

[mw_shl_code=css,true]扫描报告

2016年6月28日 10:50:22 - 10:50:46

计算机名称: SHILOH-PC
扫描类型: 扫描目标
目标: C:\Users\Shiloh\Desktop\2016.6.28

结果: 找到 57 恶意软件

W97M.Downloader.DML (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\06.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\06.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\01.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\01.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\05.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\05.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\12.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\12.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\13.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\13.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\05.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\01.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\06.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\12.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\17.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\17.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\13.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\22.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\22.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\23.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\23.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\25.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\25.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\26.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\26.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\17.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\22.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\33.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\33.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\23.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\26.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\25.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\38.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\38.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\42.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\42.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\33.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\46.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\46.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\47.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\47.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\38.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\49.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\49.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\42.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\46.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\47.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\49.vir 操作：已隔离
W97M.Downloader.DMS (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\02.vir 操作：已杀毒
Gen:Variant.Barys.51267 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\08.vir 操作：已隔离
Trojan.Agent.BUFS (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\04.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\45.vir 操作：已隔离
C:\Users\Shiloh\Desktop\2016.6.28\48.vir 操作：已隔离
Trojan:W97M/Fareit.F (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\09.vir
Trojan.GenericKD.3341788 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\11.vir 操作：已隔离
Trojan:W32/Gamarue.E (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\15.vir\stream_93.bin
Gen:Variant.Symmi.66174 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\14.vir 操作：已隔离
Trojan.Generic.17341001 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\15.vir\stream_95.bin
C:\Users\Shiloh\Desktop\2016.6.28\15.vir\stream_95.bin
C:\Users\Shiloh\Desktop\2016.6.28\15.vir\stream_95.bin
Script.SWF.C282 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\18.vir 操作：已隔离
JS:Trojan.Crypt.OJ (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\21.vir 操作：已隔离
Trojan.GenericKD.3339381 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\20.vir 操作：已隔离
Trojan.GenericKD.3339557 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\15.vir 操作：已隔离
Trojan.GenericKD.3336518 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\24.vir 操作：已隔离
W97M.Downloader.DKV (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\30.vir\word\vbaProject.bin
C:\Users\Shiloh\Desktop\2016.6.28\30.vir 操作：已杀毒
Trojan.GenericKD.3338514 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\32.vir\BS1523420DC01M_2016-06-22pdf.exe
Trojan.GenericKD.3341796 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\31.vir 操作：已隔离
Generic.JS.DownloaderAG.F7E5185C (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\37.vir 操作：已隔离
Trojan.Generic.17356790 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\40.vir\@.cmd
Gen:Trojan.Heur.GZ.aeX@bi!RgSm (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\35.vir 操作：已隔离
Trojan.Exploit.ANVX (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\39.vir 操作：已隔离
Trojan.GenericKD.3342679 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\50.vir 操作：已隔离
Dropped:Trojan.Generic.17356790 (病毒)
C:\Users\Shiloh\Desktop\2016.6.28\40.vir 操作：已隔离
找到危险软件

Application.Agent.QL (危险软件)
C:\Users\Shiloh\Desktop\2016.6.28\43.vir 操作：已隔离
统计信息

已扫描:
文件: 450
未扫描: 0
结果:
病毒: 57
间谍软件: 0
可疑项目: 0
危险软件: 1
操作:
已杀毒: 2
已重命名: 0
删除: 0
已隔离: 34
失败: 0
启动扇区:
已扫描: 0
受感染: 0
可疑项目: 0
已杀毒: 0
选项

定义版本:
病毒: 2016-06-28_01
间谍软件: 2016-06-28_01
扫描引擎：
F-Secure Aquarius: 11.00.01, 2016-06-28
F-Secure Hydra: 5.15.96, 2016-06-27
F-Secure Online: 16.00.17, 0-00-00
F-Secure Gemini: 3.02.414, 2016-06-27
扫描选项：
扫描所有文件
扫描内部存档
操作:
病毒: 对受感染文件进行杀毒
间谍软件: 隔离和删除[/mw_shl_code]

[病毒样本] 精睿样本测试（16.6.28）

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块