精睿样本测试（16.8.18）

msswenqing

日期/時間,安全威脅,來源類型,受影響的檔案,處理行動,偵測方式

2016/8/18 13:27,W2KM_DLOADER.BVFS,安全威脅,C:\Users\泰\Downloads\2016.8.18\07.vir,已移除,即時掃瞄
2016/8/18 13:27,W2KM_DLOADR.YYSQD,安全威脅,C:\Users\泰\Downloads\2016.8.18\23.vir\NONAMEFL,已移除,即時掃瞄
2016/8/18 13:27,W2KM_DLOADR.YYSRI,安全威脅,C:\Users\泰\Downloads\2016.8.18\25.vir,已移除,即時掃瞄
2016/8/18 13:27,JS_NEMUCOD.SMJ11,安全威脅,C:\Users\泰\Downloads\2016.8.18\34.vir,已移除,即時掃瞄
2016/8/18 13:27,W2KM_CERBER.DLDU,安全威脅,C:\Users\泰\Downloads\2016.8.18\28.vir,已移除,即時掃瞄
2016/8/18 13:27,JS_NEMUCOD.SMK2,安全威脅,C:\Users\泰\Downloads\2016.8.18\37.vir,已移除,即時掃瞄
2016/8/18 13:27,HTML_ADOPHISH.SM,安全威脅,C:\Users\泰\Downloads\2016.8.18\40.vir,已移除,即時掃瞄
2016/8/18 13:27,TROJ_GEN.R00XC0VHE16,病毒,C:\Users\泰\Downloads\2016.8.18\42.vir\晙\Perl.dll,已移除,即時掃瞄
2016/8/18 13:27,JAVA_ADWIND.YYKN,安全威脅,C:\Users\泰\Downloads\2016.8.18\45.vir\plugins\Server.class,已移除,即時掃瞄
2016/8/18 13:27,JAVA_ADWIND.YYKN,安全威脅,C:\Users\泰\Downloads\2016.8.18\45.vir\LoadStub.class,已移除,即時掃瞄
2016/8/18 13:27,JAVA_ADWIND.YYKN,安全威脅,C:\Users\泰\Downloads\2016.8.18\45.vir\LoadStubDecrypted.class,已移除,即時掃瞄
2016/8/18 13:27,JAVA_ADWIND.YYKN,安全威脅,C:\Users\泰\Downloads\2016.8.18\45.vir\LoadPassword.class,已移除,即時掃瞄
2016/8/18 13:27,JAVA_ADWIND.YYKN,安全威脅,C:\Users\泰\Downloads\2016.8.18\45.vir\DecryptStub.class,已移除,即時掃瞄
2016/8/18 13:27,JS_NEMUCOD.SMK2,安全威脅,C:\Users\泰\Downloads\2016.8.18\47.vir,已移除,即時掃瞄
2016/8/18 13:27,JAVA_ADWIND.YYKN,安全威脅,C:\Users\泰\Downloads\2016.8.18\45.vir\ClassLoaders.class,已移除,即時掃瞄
2016/8/18 13:29,W2KM_LOCKY.DLDVFA,安全威脅,C:\Users\泰\Downloads\2016.8.18\21.vir\word\vbaProject.bin,已移除,手動掃瞄
2016/8/18 13:29,W2KM_DLOADER.BVFM,安全威脅,C:\Users\泰\Downloads\2016.8.18\44.vir\word\vbaProject.bin,已移除,手動掃瞄
2016/8/18 13:29,W2KM_LOCKY.DLDVFA,安全威脅,C:\Users\泰\Downloads\2016.8.18\20.vir\word\vbaProject.bin,已移除,手動掃瞄
2016/8/18 13:29,W2KM_LOCKY.DLDVEW,安全威脅,C:\Users\泰\Downloads\2016.8.18\43.vir\word\vbaProject.bin,已移除,手動掃瞄
2016/8/18 13:29,W2KM_LOCKY.DLDVEU,安全威脅,C:\Users\泰\Downloads\2016.8.18\05.vir\word\vbaProject.bin,已移除,手動掃瞄
2016/8/18 13:29,W2KM_LOCKY.DLDVFA,安全威脅,C:\Users\泰\Downloads\2016.8.18\14.vir\word\vbaProject.bin,已移除,手動掃瞄
2016/8/18 13:29,W2KM_LOCKY.DLDVEZ,安全威脅,C:\Users\泰\Downloads\2016.8.18\27.vir\word\vbaProject.bin,已移除,手動掃瞄
2016/8/18 13:29,W2KM_DONOFF.YAN,安全威脅,C:\Users\泰\Downloads\2016.8.18\39.vir\word\vbaProject.bin,已移除,手動掃瞄
2016/8/18 13:29,ANDROIDOS_SMSSENDER.VTD,安全威脅,C:\Users\泰\Downloads\2016.8.18\46.vir\classes.dex,已移除,手動掃瞄
2016/8/18 13:29,W2KM_DLOADR.YYSRN,安全威脅,C:\Users\泰\Downloads\2016.8.18\03.vir\word\vbaProject.bin,已移除,手動掃瞄
趋势香港繁体中文版共检出25个。今天挺给力de啊

alfred0156

T.Yoshiyuki 发表于 2016-8-18 09:55
我猜AVG查杀率又要今天第一了

感觉今天AVG跟打了鸡血一样

dsb2466

ysj963 发表于 2016-8-18 12:52
不知道安全狗怎么样 ，在个人电脑上试了下 ，2015版红伞。。。  云倒是连上了 ，不知道和数字哪家强

安全狗是做服务器安全的。。

tomochan

毛豆纯云杀软（CCAV） 检出0个

tomochan

360_HBM 发表于 2016-8-18 09:26
360修正后缀，OEM全关，37X

修改扩展名为exe扫描，除OEM引擎外全开
卫士只有19X，能上一份你的扫描日志么

僵尸爱上猫

TP X40
[mw_shl_code=css,true]C:\Users\Thinkpad\Desktop\New folder\2016.8.18\03.vir\word\vbaProject.bin Infected! W97M.Downloader.EDZ (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\03.vir Infected! W97M.Downloader.EDZ (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\04.vir Infected! Trojan.JS.Downloader.FFX (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\05.vir\word\vbaProject.bin Infected! W97M.Downloader.ECT (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\05.vir Infected! W97M.Downloader.ECT (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\06.vir Infected! Trojan.JS.Downloader.FGG (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\08.vir Infected! Trojan.GenericKD.3471455 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\09.vir Infected! Trojan.JS.Downloader.FFX (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\10.vir Infected! Trojan.GenericKD.3471514 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\11.vir Infected! Trojan.GenericKD.3472484 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\12.vir Infected! Trojan.JS.Downloader.FFX (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\14.vir\word\vbaProject.bin Infected! W97M.Downloader.EDR (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\14.vir Infected! W97M.Downloader.EDR (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\15.vir Infected! Trojan.GenericKD.3472443 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\18.vir Infected! Gen:Variant.Barys.2196 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\17.vir Infected! Gen:Variant.Symmi.67418 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\19.vir Infected! Gen:Variant.MSILPerseus.46852 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\20.vir\word\vbaProject.bin Infected! W97M.Downloader.EDR (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\20.vir Infected! W97M.Downloader.EDR (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\22.vir\(INFECTED_JS) Infected! JS:Trojan.JS.Agent.PH (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\21.vir\word\vbaProject.bin Infected! W97M.Downloader.EDR (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\22.vir Infected! JS:Trojan.JS.Agent.PH (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\21.vir Infected! W97M.Downloader.EDR (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\24.vir Infected! Trojan.GenericKD.3458707 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\25.vir Infected! W97M.Downloader.EDH (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\26.vir Infected! Generic24.OML (Argon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\27.vir\word\vbaProject.bin Infected! W97M.Downloader.EDD (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\27.vir Infected! W97M.Downloader.EDD (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\28.vir Infected! W97M/Downloader.AV (Argon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\33.vir Infected! Trojan.JS.Downloader.FEB (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\34.vir Infected! Generic.JS.DownloaderAG.58AB03F5 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\35.vir Infected! Trojan.Script.Agent.HX (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\36.vir Infected! Trojan.JS.Agent.LID (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\37.vir Infected! Trojan.JS.Downloader.FEG (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\38.vir Infected! Trojan.GenericKD.3429744 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\39.vir\word\vbaProject.bin Infected! W97M.Downloader.Donoff.J (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\39.vir Infected! W97M.Downloader.Donoff.J (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\41.vir\word\media\image1.eps\(Embedded EXE) Infected! Trojan.Generic.17051138 (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\41.vir\word\media\image1.eps\(dummy) Infected! Exploit.CVE-2015-2545.Gen (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\41.vir Infected! Trojan.Generic.17051138 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\42.vir Infected! Trojan.GenericKD.3459853 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\40.vir Infected! JS/Phish (Argon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\44.vir Infected! Trojan.Agent.BXJJ (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\43.vir\word\vbaProject.bin Infected! W97M.Downloader.EDD (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\43.vir Infected! W97M.Downloader.EDD (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\45.vir\plugins\Server.class Infected! Java.Trojan.Adwind.BR (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\45.vir\LoadStub.class Infected! Java.Trojan.Adwind.AY (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\45.vir\LoadStubDecrypted.class Infected! Java.Trojan.Adwind.AW (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\45.vir\LoadPassword.class Infected! Java.Trojan.Adwind.AY (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\46.vir\META-INF\CERT.RSA Infected! Android.Trojan.Roidsec.A (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\45.vir\DecryptStub.class Infected! Java.Trojan.Adwind.AW (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\46.vir Infected! Android.Trojan.Roidsec.A (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\45.vir\ClassLoaders.class Infected! Java.Trojan.Adwind.AW (Xenon) Quarantine
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\47.vir Infected! Trojan.JS.Downloader.FEG (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\45.vir Infected! Java.Trojan.Adwind.BR (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\48.vir Infected! Trojan.JS.Downloader.FFR (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\49.vir Infected! Trojan.GenericKD.3459716 (Xenon) Quarantined
C:\Users\Thinkpad\Desktop\New folder\2016.8.18\50.vir Infected! Trojan.GenericKD.3461242 (Xenon) Quarantined
[/mw_shl_code]

T.Yoshiyuki

tomochan 发表于 2016-8-18 14:31
修改扩展名为exe扫描，除OEM引擎外全开
卫士只有19X，能上一份你的扫描日志么

后缀并不只有exe吧 用论坛里的小软件可以自动改
虽然杀那么多我也是不信的

tomochan

T.Yoshiyuki 发表于 2016-8-18 14:38
后缀并不只有exe吧 用论坛里的小软件可以自动改
虽然杀那么多我也是不信的

我就是想看看日志里都是啥扩展名....360不开OEM 37X有点太玄学了，还是360的卫士跟杀毒就真差那么多么

ELOHIM

tomochan 发表于 2016-8-18 14:41
我就是想看看日志里都是啥扩展名....360不开OEM 37X有点太玄学了，还是360的卫士跟杀毒就真差那 ...

在超市见两个男孩在买饮料，其中一个夺过另一个手中的可乐放回货架上说：不许喝可乐，你喝可乐我喝什么？！

这是什么意思？

360正常水平断网可以杀多少？？

540923555

来晚了。。。WD联网扫描查杀+修复=31个，未处理样本19个