收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 精睿样本测试(16.7.20)
123下一页
返回列表 发新帖
楼主: 轩夏
 收起左侧

[病毒样本] 精睿样本测试(16.7.20)

  [复制链接]
540923555
发表于 2016-7-20 11:06:35 | 显示全部楼层
本帖最后由 540923555 于 2016-7-20 11:12 编辑

wd占位

联网查杀+修复=37个。。。
回复

举报

Llano_心情
发表于 2016-7-20 11:25:25 | 显示全部楼层
百度国内【关闭大B引擎

断网 kill x 29
[mw_shl_code=css,true]扫描结果
扫描文件数:50
发现风险数:29
已处理风险数:0


风险情况详情:

病毒木马名:JS.Trojan.Nemucod.ew.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\04.vir  病毒木马类型:恶意木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\07.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\08.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\10.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\11.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\12.vir  病毒木马类型:下载者木马 未处理
病毒木马名:JS.Trojan-Downloader.Iframe.ej.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\14.vir  病毒木马类型:下载者木马 未处理
病毒木马名:JS.Trojan-Downloader.Nemucod.bv.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\17.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.aoh.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\15.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\19.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\23.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\27.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\34.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.aoh.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\35.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\41.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\42.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\44.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.aoh.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\45.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.aoh.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\47.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\48.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.anv.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\49.vir  病毒木马类型:下载者木马 未处理
病毒木马名:MSIL.Backdoor.Bladabindi.a.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\05.vir  病毒木马类型:后门程序 未处理
病毒木马名:Win32.Trojan.WisdomEyes.150615.9950.9999.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\16.vir  病毒木马类型:恶意木马 未处理
病毒木马名:Win32.Trojan.WisdomEyes.150615.9950.9999.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\18.vir  病毒木马类型:恶意木马 未处理
病毒木马名:Win32.Trojan.WisdomEyes.150615.9950.9999.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\20.vir  病毒木马类型:恶意木马 未处理
病毒木马名:Win32.Trojan.Kryptik.alz.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\43.vir  病毒木马类型:恶意木马 未处理
病毒木马名:Win32.Trojan.WisdomEyes.150615.9950.9986.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\46.vir  病毒木马类型:恶意木马 未处理
病毒木马名:MSIL.Trojan-Downloader.Agent.a.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\09.vir  病毒木马类型:下载者木马 未处理
病毒木马名:Win32.Trojan.WisdomEyes.150615.9950.9999.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\37.vir  病毒木马类型:恶意木马 未处理[/mw_shl_code]

联网 kill x 34
[mw_shl_code=css,true]扫描结果
扫描文件数:50
发现风险数:34
已处理风险数:0


风险情况详情:

病毒木马名:JS.Trojan.Nemucod.ew.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\04.vir  病毒木马类型:恶意木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\07.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\08.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\10.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\11.vir  病毒木马类型:下载者木马 未处理
病毒木马名:Win32.Trojan-Downloader.Agent.jf.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\01.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\12.vir  病毒木马类型:下载者木马 未处理
病毒木马名:JS.Trojan-Downloader.Iframe.ej.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\14.vir  病毒木马类型:下载者木马 未处理
病毒木马名:MSIL.Backdoor.Bladabindi.a.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\05.vir  病毒木马类型:后门程序 未处理
病毒木马名:MSIL.Trojan-Downloader.Agent.a.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\09.vir  病毒木马类型:下载者木马 未处理
病毒木马名:JS.Trojan-Downloader.Nemucod.bv.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\17.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.aoh.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\15.vir  病毒木马类型:下载者木马 未处理
病毒木马名:Win32.Trojan.Confuser.dki.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\13.vir  病毒木马类型:恶意木马 未处理
病毒木马名:Win32.Trojan.Delf.yyb.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\16.vir  病毒木马类型:恶意木马 未处理
病毒木马名:Win32.Trojan-Dropper.Agent.ccqh.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\18.vir  病毒木马类型:释放者木马 未处理
病毒木马名:Win32.Trojan.Kryptik.wct.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\20.vir  病毒木马类型:恶意木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\19.vir  病毒木马类型:下载者木马 未处理
病毒木马名:Win32.Trojan.Kryptik.p.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\36.vir  病毒木马类型:恶意木马 未处理
病毒木马名:Win32.Trojan.Injector.ra.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\37.vir  病毒木马类型:恶意木马 未处理
病毒木马名:Win32.Trojan.Kryptik.alz.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\43.vir  病毒木马类型:恶意木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\23.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\27.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\34.vir  病毒木马类型:下载者木马 未处理
病毒木马名:Win32.Trojan.Injector.fg.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\28.vir  病毒木马类型:恶意木马 未处理
病毒木马名:Win32.Trojan.Kryptik.aac.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\33.vir  病毒木马类型:恶意木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.aoh.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\35.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\41.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\42.vir  病毒木马类型:下载者木马 未处理
病毒木马名:Win32.Trojan.ATM.zaga.cav  路径:C:\Users\魔法llano\Desktop\2016.7.20\46.vir  病毒木马类型:恶意木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\44.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.aoh.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\45.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.aoh.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\47.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.amj.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\48.vir  病毒木马类型:下载者木马 未处理
病毒木马名:VBA.Trojan-Downloader.Agent.anv.bav  路径:C:\Users\魔法llano\Desktop\2016.7.20\49.vir  病毒木马类型:下载者木马 未处理[/mw_shl_code]


顺便说一下,开不开B引擎,对于百度来说,蛋的用都没有
回复

举报

好想用EMSI
发表于 2016-7-20 11:58:16 | 显示全部楼层
"外壳扩展扫描(Shell Extension Scan)"
"高严重性";"34";"34";"0"
"中等严重性";"14";"2";"12"
"已扫描:";"C:\Users\Me\Desktop\2016.7.19"
"已启动:";"2016/7/19, 18:36:53"
"已完成:";"2016/7/19, 18:38:53"
"项目数:";"5936"
"启动者:";"Me"

"名称";"说明";"状态";"状态";"优先级"
"C:\Users\Me\Desktop\2016.7.19\42.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\30.vir";"发现病毒 BAT/Disabler.dropper";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\37.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"c:\Users\Me\AppData\Roaming\pcmaster\winguard\winguard_x64.dll";"发现 MalSign.Ruanmei.91B";"需要重新启动才能完成操作";"已修复";"中等"
"C:\Users\Me\Desktop\2016.7.19\11.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\06.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\35.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\39.vir";"特洛伊木马 Generic_vb.MGZ";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\46.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\33.vir";"发现病毒 JS/Downloader.Agent.41_1";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\34.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\04.vir";"特洛伊木马 Exploit.Java_c.RLV";"已保护";"已修复";"高"
"c:\Users\Me\AppData\Roaming\pcmaster\winguard\winguard_x64.dll";"发现 MalSign.Ruanmei.91B";"需要重新启动才能完成操作";"已修复";"中等"
"C:\Users\Me\Desktop\2016.7.19\41.vir";"发现病毒 JS/Downloader.Agent";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\36.vir";"发现病毒 JS/Downloader.Agent";"已保护";"已修复";"高"
"c:\Users\Me\AppData\Roaming\pcmaster\winguard\winguard_x64.dll";"发现 MalSign.Ruanmei.91B";"需要重新启动才能完成操作";"已修复";"中等"
"C:\Users\Me\Desktop\2016.7.19\10.vir";"特洛伊木马 Generic37.CGYE";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\03.vir";"特洛伊木马 Ransom_r.TA";"已保护";"已修复";"高"
"C:\WINDOWS\System32\Drivers\pcmastercoredrv.sys";"发现 MalSign.Ruanmei.866";"需要重新启动才能完成操作";"已修复";"中等"
"c:\Users\Me\AppData\Roaming\pcmaster\winguard\winguard_x64.dll";"发现 MalSign.Ruanmei.91B";"需要重新启动才能完成操作";"已修复";"中等"
"C:\Users\Me\Desktop\2016.7.19\13.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\44.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\29.vir";"特洛伊木马 Downloader.Generic_c.AMFF";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\28.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\43.vir";"可能不需要的应用程序 Skodna.GameHack.XGR";"已保护";"已修复";"中等"
"C:\Users\Me\Desktop\2016.7.19\05.vir";"特洛伊木马 Generic15_c.CCTH";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\50.vir";"特洛伊木马 Downloader.Generic_c.AMFF";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\23.vir";"可能不需要的应用程序 BitCoinMiner.D";"已保护";"已修复";"中等"
"c:\Users\Me\AppData\Roaming\pcmaster\winguard\winguard_x64.dll";"发现 MalSign.Ruanmei.91B";"需要重新启动才能完成操作";"已修复";"中等"
"c:\Users\Me\AppData\Roaming\pcmaster\winguard\winguard_x64.dll";"发现 MalSign.Ruanmei.91B";"需要重新启动才能完成操作";"已修复";"中等"
"C:\Users\Me\Desktop\2016.7.19\07.vir";"发现病毒 JS/Downloader.Agent";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\02.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\15.vir";"特洛伊木马 BackDoor.Generic_c.RMY";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\16.vir";"特洛伊木马 Downloader.Generic_c.AMFF";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\32.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"c:\Users\Me\AppData\Roaming\pcmaster\winguard\winguard_x64.dll";"发现 MalSign.Ruanmei.91B";"需要重新启动才能完成操作";"已修复";"中等"
"C:\Users\Me\Desktop\2016.7.19\20.vir";"特洛伊木马 Exploit.Java_c.RYB";"已保护";"已修复";"高"
"c:\Users\Me\AppData\Roaming\pcmaster\winguard\winguard_x64.exe";"发现 MalSign.Ruanmei.91B";"需要重新启动才能完成操作";"已修复";"中等"
"C:\Users\Me\Desktop\2016.7.19\31.vir";"特洛伊木马 Backdoor.Java_c.OT";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\19.vir";"特洛伊木马 MSIL10.AOAQ";"已保护";"已修复";"高"
"c:\Users\Me\AppData\Roaming\pcmaster\winguard\winguard_x64.dll";"发现 MalSign.Ruanmei.91B";"需要重新启动才能完成操作";"已修复";"中等"
"C:\Users\Me\Desktop\2016.7.19\27.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"
"c:\Users\Me\AppData\Roaming\pcmaster\winguard\winguard_x64.dll";"发现 MalSign.Ruanmei.91B";"需要重新启动才能完成操作";"已修复";"中等"
"C:\Users\Me\Desktop\2016.7.19\22.vir";"特洛伊木马 Generic37.CFZY";"已保护";"已修复";"高"
"c:\Users\Me\AppData\Roaming\pcmaster\winguard\winguard_x64.dll";"发现 MalSign.Ruanmei.91B";"需要重新启动才能完成操作";"已修复";"中等"
"C:\Users\Me\Desktop\2016.7.19\48.vir";"发现病毒 JS/Downloader.Agent.41_1";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\01.vir";"发现病毒 JS/Downloader.Agent";"已保护";"已修复";"高"
"C:\Users\Me\Desktop\2016.7.19\47.vir";"发现病毒 W97M/Downloader";"已保护";"已修复";"高"

还不错
回复

举报

Yuri1st
发表于 2016-7-20 12:00:23 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

km2002
发表于 2016-7-20 12:11:26 | 显示全部楼层
费尔扫描7X

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

水墨静音
发表于 2016-7-20 12:36:21 | 显示全部楼层
Llano_心情 发表于 2016-7-20 11:25
百度国内【关闭大B引擎

断网 kill x 29

跟管家国内版一样,BD引擎永远是摆设,库估计是去年的,管家国际版的BD引擎跟BD自己几乎同步
回复

举报

傻猪猪米走鸡
发表于 2016-7-20 13:37:14 | 显示全部楼层
Log
Scan Log
Version of virus signature database: 13830 (20160720)
Date: 2016/7/20  Time: 13:36:41
Scanned disks, folders and files: C:\Users\Galaxy\Downloads\2016.7.20
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\03.vir - JS/TrojanDownloader.Nemucod.AKM trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\05.vir - a variant of MSIL/Bladabindi.BB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\06.vir - JS/TrojanDownloader.Nemucod.AKI trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\07.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\08.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\09.vir - a variant of MSIL/TrojanDownloader.Agent.BLM trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\10.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\11.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\12.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\13.vir - a variant of MSIL/Packed.Confuser.J suspicious application - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\14.vir - JS/TrojanDownloader.Iframe.EY trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\15.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKN trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\16.vir - a variant of Win32/Delf.THF trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\17.vir - JS/TrojanDownloader.Nemucod.AKH trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\18.vir - a variant of MSIL/TrojanDropper.Agent.AKH trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\19.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\20.vir - a variant of MSIL/Kryptik.BIK trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\21.vir - VBA/TrojanDownloader.Agent.BKJ trojan - cleaned
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\22.vir - JS/TrojanDownloader.Nemucod.AKM trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\23.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\24.vir - VBA/TrojanDropper.Agent.LU trojan - cleaned
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\25.vir - Win32/Sredstva.A potentially unwanted application - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\26.vir - JS/TrojanDownloader.Nemucod.AKM trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\27.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\28.vir - a variant of Win32/Injector.DCFD trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\29.vir » ZIP » word/embeddings/oleObject1.bin » OLEDATA » digitec_ch_quittung.js - is OK
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\30.vir - JS/TrojanDownloader.Nemucod.AKM trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\32.vir - JS/TrojanDownloader.Nemucod.AKI trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\33.vir - a variant of Win32/Kryptik.EYSW trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\34.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\35.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKN trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\36.vir - a variant of Win32/Kryptik.EZWB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\37.vir - a variant of MSIL/Injector.NMH trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\38.vir - JS/TrojanDownloader.Nemucod.AKM trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\39.vir - JS/TrojanDownloader.Nemucod.AKI trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\40.vir - JS/TrojanDownloader.Nemucod.AKF trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\41.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\42.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\43.vir - a variant of Win32/Kryptik.FCMQ trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\44.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\45.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKN trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\46.vir - a variant of Win32/ATM.B trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\47.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKN trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\48.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\49.vir » ZIP » xl/vbaProject.bin - VBA/TrojanDownloader.Agent.AZE trojan - action selection postponed until scan completion
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/??AUX.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/??NUL.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/??coN.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/Start.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/??nUl.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/??con.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/??aux.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/??Prn.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/??nUL.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/??Nul.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/??cON.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/??cOn.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » main/??CoN.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/??AUX.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/??NUL.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/??coN.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/Start.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/??nUl.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/??con.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/??aux.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/??Prn.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/??nUL.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/??Nul.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/??cON.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/??cOn.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\50.vir » ZIP » 986005950-4 PAYOUT CONFIRMATIONS2.jar » ZIP » main/??CoN.class - Java/Adwind.RB trojan - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\07.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\08.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\10.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\11.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\12.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\15.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKN trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\19.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\23.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\25.vir - Win32/Sredstva.A potentially unwanted application - cleaned by deleting [1]
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\27.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\34.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\35.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKN trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\41.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\42.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\44.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\45.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKN trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\47.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKN trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\48.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.BKP trojan - deleted
C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\49.vir » ZIP » xl/vbaProject.bin - VBA/TrojanDownloader.Agent.AZE trojan - deleted
Number of scanned objects: 357
Number of threats found: 70
Number of cleaned objects: 70
Time of completion: 13:36:49  Total scanning time: 8 sec (00:00:08)

Notes:
[1] Object has been deleted as it only contained the virus body.
回复

举报

傻猪猪米走鸡
发表于 2016-7-20 13:37:39 | 显示全部楼层
ysj963 发表于 2016-7-20 10:53
eset 45X

有没有上报?
回复

举报

傻猪猪米走鸡
发表于 2016-7-20 14:07:12 | 显示全部楼层
Time;Module;Event;User
2016/7/20 13:39:58;ESET Kernel;File  'C:\Users\Galaxy\Downloads\2016.7.20\2016.7.20\2016.7.20.rar' was sent to ESET for analysis.;
回复

举报

aboringman
发表于 2016-7-20 14:55:13 | 显示全部楼层
AVG:kill 26 files and fix 19 files

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

下一页 »
123下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-14 09:53 , Processed in 0.169234 second(s), 15 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表