收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 精睿样本测试(16.10.17)
12345下一页
返回列表 发新帖
查看: 8998|回复: 42
收起左侧

[病毒样本] 精睿样本测试(16.10.17)

  [复制链接]
linzh
发表于 2016-10-17 09:33:00 | 显示全部楼层 |阅读模式
地址:

http://pan.baidu.com/s/1i4H6E3r 提取密码  b7kp

http://www.vdisk.cn/down/index/19739033

  
密码:bbs.vc52.cn
数量:50
回复

举报

linzh
 楼主| 发表于 2016-10-17 09:43:24 | 显示全部楼层
本帖最后由 linzh 于 2016-10-17 09:45 编辑

BD
删除27,修复5
TOTAL: 32
其中47密码保护

[mw_shl_code=css,true][-]Scan Results
[-]Resolved issues:
Object Path
Threat Name
Final Status
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\20.vir
Trojan.GenericKD.3590102
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\41.vir=>(RAR Sfx o)=>a.exe
Gen:Variant.Graftor.242400
Moved to Quarantine
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\02.vir=>这堆乱码论坛显示不出来没法发表  .js
Exploit.OLE-JS.Gen
Moved to Quarantine
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\46.vir
Trojan.JS.RRK
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\28.vir
Gen:Variant.Zusy.178863
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\05.vir
Trojan.JS.Downloader.FUS
Moved to Quarantine
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\14.vir
Trojan.PDF.Agent.BM
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\32.vir
Trojan.GenericKD.3589294
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\50.vir
Trojan.GenericKD.3591389
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\44.vir
W97m.Downloader.EMU
Disinfected
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\07.vir
Trojan.GenericKD.3596261
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\43.vir
W97M.Downloader.ENL
Disinfected
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\42.vir
Trojan.JS.Downloader.FWO
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\22.vir
Trojan.Banker.MSJ
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\40.vir
Trojan.GenericKD.3589205
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\39.vir
Trojan.Agent.BZSM
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\38.vir
Trojan.GenericKD.3589659
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\18.vir
Trojan.JS.Agent.NPE
Moved to Quarantine
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\36.vir
Trojan.GenericKD.3589346
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\30.vir
W97M.Downloader.ENJ
Disinfected
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\31.vir
Gen:Variant.Graftor.292308
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\34.vir
Gen:Variant.Barys.24338
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\25.vir=>(INFECTED_JS)
JS:Trojan.JS.Agent.PQ
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\11.vir=>(INFECTED_JS)
JS:Trojan.JS.Phishing.O
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\21.vir
Trojan.Agent.VB.CCM
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\19.vir
W97M.Downloader.ELP
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\17.vir
Trojan.Generic.19304129
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\15.vir
Trojan.GenericKD.3595276
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\29.vir
W97M.Downloader.ENK
Disinfected
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\09.vir
Trojan.Spambot.BXB
Deleted
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\01.vir
W97M.Dropper.GJ
Disinfected
[-]Objects that were not scanned:
Object Path
Reason
Final Status
C:\Users\linzh\Desktop\2016.10.17\2016.10.17\47.vir=>(RAR Sfx o)
Password-protected
Not scanned (file was password-protected)
[-]Detailed Scan Summary
[-]Basic
Scanned items : 105
Infected items : 31
Suspicious items : 0 (no suspected items have been detected)
Resolved items : 31
Unresolved items : 0 (no issues remained unresolved)[/mw_shl_code]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

驭龙
发表于 2016-10-17 09:51:04 | 显示全部楼层
本帖最后由 驭龙 于 2016-10-17 10:10 编辑

WD测试2016年10月17日 10:00
测试版本和特征库


删除21个样本,加上2个修复样本,查杀成绩为23个


查杀日志:
[mw_shl_code=css,true]
Result Count:21
Threat Name:TrojanDownloader:O97M/Donoff.CD
ID:2147716804
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\01.vir.doc
Extended Info:250234537110070
Threat Name:TrojanDownloader:JS/Nemucod.FG
ID:2147711771
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\05.vir.html
Extended Info:139183600292797
Threat Name:Trojan:Win32/Skeeyah.A!bit
ID:2147695505
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\06.vir.dll
Extended Info:24635703578760
Threat Name:Trojan:O97M/Madeba.A!det
ID:2147708876
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\07.vir.doc
Extended Info:14584516063020
Threat Name:Trojan:Win32/SpamThru.gen!dll
ID:2147597255
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\09.vir.dll
Extended Info:5865069549285
Threat Name:Trojan:Java/Adwind
ID:2147689940
Severity:5
Number of Resources:4
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\15.vir.zip->x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlt.class
Extended Info:18145922186544
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\15.vir.zip->x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmls.class
Extended Info:18142615121070
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\15.vir.zip->x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmll.class
Extended Info:18144579614829
Resource Schema:containerfile
Resource Path:E:\VIR\VC52\2016.10.17\15.vir.zip
Extended Info:0
Threat Name:TrojanDownloader:O97M/Donoff!map
ID:2147717243
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\16.vir.doc
Extended Info:23633680731448
Threat Name:TrojanDownloader:JS/Nemucod
ID:2147693147
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\18.vir.JS
Extended Info:82009661645667
Threat Name:Trojan:Win32/Peals.E!cl
ID:2147691763
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\21.vir.exe
Extended Info:42223997112611
Threat Name:Worm:Win32/Kalockan.A
ID:2147714799
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\22.vir.exe
Extended Info:24632390754953
Threat Name:Exploit:JS/Meadgive.U
ID:2147705821
Severity:5
Number of Resources:3
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\24.vir.html->(SCRIPT0001)
Extended Info:76141216213152
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\24.vir.html->(SCRIPT0000)
Extended Info:58551993894007
Resource Schema:containerfile
Resource Path:E:\VIR\VC52\2016.10.17\24.vir.html
Extended Info:0
Threat Name:TrojanDownloader:O97M/Donoff
ID:2147689064
Severity:5
Number of Resources:2
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\43.vir.doc
Extended Info:27279572145635
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\29.vir.doc
Extended Info:27279572145635
Threat Name:Trojan:O97M/Donoff
ID:2147708549
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\30.vir.doc
Extended Info:108367563098985
Threat Name:Backdoor:MSIL/Bladabindi.AJ
ID:2147683639
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\34.vir.exe
Extended Info:214920944406414
Threat Name:Backdoor:Win32/Tofsee.F
ID:2147603588
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\36.vir.exe
Extended Info:24634645060754
Threat Name:Ransom:Win32/Cerber.A
ID:2147709768
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\38.vir.exe
Extended Info:24632365682656
Threat Name:TrojanDownloader:JS/Nemucod.EW
ID:2147711545
Severity:5
Number of Resources:2
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\46.vir.JS
Extended Info:279921155184011
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\39.vir.JS
Extended Info:279921155184011
Threat Name:Backdoor:Win32/Thoper.F!dha
ID:2147665345
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\41.vir.exe
Extended Info:121461827661586
Threat Name:TrojanDownloader:JS/Swabfex.P
ID:2147708931
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\42.vir.JS
Extended Info:162274220430216
Threat Name:TrojanDropper:O97M/Donoff
ID:2147707968
Severity:5
Number of Resources:1
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\44.vir.doc
Extended Info:14581676019617
Threat Name:Exploit:SWF/Rigved.A
ID:2147717548
Severity:5
Number of Resources:2
Resource Schema:file
Resource Path:E:\VIR\VC52\2016.10.17\48.vir.swf->(SWC)->[SWFBinary1]->(doSWF)[0]
Extended Info:920007753910924
Resource Schema:containerfile
Resource Path:E:\VIR\VC52\2016.10.17\48.vir.swf
Extended Info:0
End Scan[/mw_shl_code]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

XZ8SM7Sx0bVkoUV
发表于 2016-10-17 10:03:46 | 显示全部楼层
火绒 15X
Huorong Network Security Suite v3.0.49.7 (Last update: 2016-10-14 14:17)
Copyright (C) Huorong Borui (Beijing) Technology Co., Ltd. All rights reserved.

Scan engine version:v3.0.4.0
Signature database fingerprint: f2a3446:7e1d17d:4312f53:4312f53
Signature database timestamp: 2016-10-14 14:17

Scan started at:   2016-10-17 10:01:01

D:\vc52\2016.10.17\01.vir: HEUR:OMacro/WinA.d
D:\vc52\2016.10.17\02.vir: VirTool/JS.Obfuscator.d
D:\vc52\2016.10.17\07.vir: OMacro/Downloader
D:\vc52\2016.10.17\18.vir: TrojanDownloader/JS.Nemucod.ej
D:\vc52\2016.10.17\09.vir: Trojan/Spamthru
D:\vc52\2016.10.17\25.vir: TrojanDownloader/JS.Nemucod
D:\vc52\2016.10.17\21.vir: Trojan/Injector.dl
D:\vc52\2016.10.17\28.vir: HEUR:Trojan/Cryobf
D:\vc52\2016.10.17\29.vir: OMacro/Downloader.at
D:\vc52\2016.10.17\30.vir: OMacro/Downloader.at
D:\vc52\2016.10.17\33.vir >> word\document.xml: OMacro/Fraud
D:\vc52\2016.10.17\38.vir >> [NSIS].nsi: Trojan/Generic!E2785C5E829EF137
D:\vc52\2016.10.17\43.vir: OMacro/Downloader.at
D:\vc52\2016.10.17\44.vir: HEUR:OMacro/WinA.d
D:\vc52\2016.10.17\50.vir: TrojanSpy/AutoIt.Agent.b

Scan completed at: 2016-10-17 10:01:19

Total:             50 file(s), 291 objects(s)
Infected:          15 file(s), 15 objects(s)
Deleted:           0 file(s), 0 failure(s)
Disinfected:       0 file(s), 0 failure(s)
Duration:          00:00:18
回复

举报

T.Yoshiyuki
发表于 2016-10-17 10:09:53 | 显示全部楼层
今天開始給FS一個修復的機會

kill 31x(理論上來說應該跟BD一樣是32x?懶得數了……) 其中修復5x

02 07 40 無法清除,手動刪除

DG封鎖餘下所有(8個)exe



[mw_shl_code=css,true]結果: マルウェア 38 が検出されました。
Trojan.JS.Downloader.FUS (ウイルス) •D:\TEST\daily\2016.10.17\05.vir.html 処理: 隔離保存済み
Trojan.GenericKD.3596261 (ウイルス) •D:\TEST\daily\2016.10.17\07.vir.DOC
Trojan:W97M/Nastjencro.A (ウイルス) •D:\TEST\daily\2016.10.17\01.vir.DOC 処理: 駆除済み
•D:\TEST\daily\2016.10.17\44.vir.DOC 処理: 駆除済み
Exploit.OLE-JS.Gen (ウイルス) •D:\TEST\daily\2016.10.17\02.vir.DOC
JS:Trojan.JS.Phishing.O (ウイルス) •D:\TEST\daily\2016.10.17\11.vir.html 処理: 隔離保存済み
Trojan.PDF.Agent.BM (ウイルス) •D:\TEST\daily\2016.10.17\14.vir.pdf 処理: 隔離保存済み
Trojan.Generic.19304129 (ウイルス) •D:\TEST\daily\2016.10.17\17.vir.exe 処理: 隔離保存済み
Trojan.JS.Agent.NPE (ウイルス) •D:\TEST\daily\2016.10.17\18.vir.JS 処理: 隔離保存済み
W97M.Downloader.ELP (ウイルス) •D:\TEST\DAILY\2016.10.17\19.VIR.XLSX 処理: 隔離保存済み
Trojan.Spambot.BXB (ウイルス) •D:\TEST\daily\2016.10.17\09.vir.dll 処理: 隔離保存済み
Trojan.Agent.VB.CCM (ウイルス) •D:\TEST\daily\2016.10.17\21.vir.exe 処理: 隔離保存済み
Trojan.GenericKD.3590102 (ウイルス) •D:\TEST\daily\2016.10.17\20.vir.exe 処理: 隔離保存済み
Trojan.Banker.MSJ (ウイルス) •D:\TEST\daily\2016.10.17\22.vir.exe 処理: 隔離保存済み
Trojan-Downloader:JS/Locky.D (ウイルス) •D:\TEST\daily\2016.10.17\25.vir.JS 処理: 隔離保存済み
Trojan.JAVA.Adwind.DR (ウイルス) •D:\TEST\daily\2016.10.17\15.vir.ZIP\x\xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlj.class
•D:\TEST\daily\2016.10.17\15.vir.ZIP\x\xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlc.class
•D:\TEST\daily\2016.10.17\15.vir.ZIP\x\xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlt.class
•D:\TEST\daily\2016.10.17\15.vir.ZIP\x\xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlx.class
•D:\TEST\daily\2016.10.17\15.vir.ZIP\x\xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmle.class
•D:\TEST\daily\2016.10.17\15.vir.ZIP\x\xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlda.class
Trojan.GenericKD.3595276 (ウイルス) •D:\TEST\daily\2016.10.17\15.vir.ZIP 処理: 隔離保存済み
Packed:W32/DonutCrypt.A (ウイルス) •D:\TEST\daily\2016.10.17\28.vir.exe 処理: 隔離保存済み
W97M.Downloader.ENK (ウイルス) •D:\TEST\daily\2016.10.17\29.vir.DOC 処理: 駆除済み
W97M.Downloader.ENJ (ウイルス) •D:\TEST\daily\2016.10.17\30.vir.DOC 処理: 駆除済み
Gen:Variant.Graftor.292308 (ウイルス) •D:\TEST\daily\2016.10.17\31.vir.exe 処理: 隔離保存済み
Trojan.GenericKD.3589294 (ウイルス) •D:\TEST\DAILY\2016.10.17\32.VIR.DOCM 処理: 隔離保存済み
Gen:Variant.Barys.24338 (ウイルス) •D:\TEST\daily\2016.10.17\34.vir.exe 処理: 隔離保存済み
Trojan.GenericKD.3589346 (ウイルス) •D:\TEST\daily\2016.10.17\36.vir.exe 処理: 隔離保存済み
Trojan.Agent.BZSM (ウイルス) •D:\TEST\daily\2016.10.17\39.vir.JS 処理: 隔離保存済み
Trojan.GenericKD.3589205 (ウイルス) •D:\TEST\daily\2016.10.17\40.vir.DOC
Trojan.GenericKD.3589659 (ウイルス) •D:\TEST\daily\2016.10.17\38.vir.exe 処理: 隔離保存済み
W97M.Downloader.ENL (ウイルス) •D:\TEST\daily\2016.10.17\43.vir.DOC 処理: 駆除済み
Trojan.JS.Downloader.FWO (ウイルス) •D:\TEST\daily\2016.10.17\42.vir.JS 処理: 隔離保存済み
Trojan.JS.RRK (ウイルス) •D:\TEST\daily\2016.10.17\46.vir.JS 処理: 隔離保存済み
Gen:Variant.Graftor.242400 (ウイルス) •D:\TEST\daily\2016.10.17\41.vir.exe\a.exe
•D:\TEST\daily\2016.10.17\41.vir.exe 処理: 隔離保存済み
Trojan.GenericKD.3591389 (ウイルス) •D:\TEST\daily\2016.10.17\50.vir.exe 処理: 隔離保存済み
[/mw_shl_code]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

星云劫
发表于 2016-10-17 10:15:47 | 显示全部楼层
本帖最后由 星云劫 于 2016-10-18 13:13 编辑

瑞星安全云终端,纯扫描干掉3个。这个有点厉害啊,敢与曾创下零杀的金山毒霸一战。
一个小时后二扫干掉14个,没有修复。
24小时后进行三扫,依然是云拉黑干掉14个,然后本地处理了一个,修复了一个。总计16个。
回复

举报

a1414007
发表于 2016-10-17 10:27:56 | 显示全部楼层
ESET kill30x  (fix7x)
[mw_shl_code=css,true]C:\Users\L.Lawliet\Desktop\2016.10.17\01.vir - VBA/TrojanDropper.Agent.QR 特洛伊木马 - 已清除
C:\Users\L.Lawliet\Desktop\2016.10.17\02.vir > OLEDATA > Скан-копия от 14.10.2016. ПОДПИСАНО директором. Экспортировано из 1С-Предприятие.dос .js - Win32/Filecoder.FH 特洛伊木马 - 已删除
C:\Users\L.Lawliet\Desktop\2016.10.17\07.vir - VBA/TrojanDownloader.Agent.BWN 特洛伊木马 - 已清除
C:\Users\L.Lawliet\Desktop\2016.10.17\09.vir - Win32/Agent.NEJ 特洛伊木马 的变种 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\12.vir > ZIP > word/embeddings/oleObject1.bin > OLEDATA > Microsoft-Dokument-Dekodierung.vbs - VBS/TrojanDownloader.Agent.ONZ 特洛伊木马 - 已删除
C:\Users\L.Lawliet\Desktop\2016.10.17\15.vir > ZIP > x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlt.class - Java/Adwind.ZX 特洛伊木马 的变种 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\15.vir > ZIP > x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlx.class - Java/Adwind.ZW 特洛伊木马 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\15.vir > ZIP > x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmle.class - Java/Adwind.ZY 特洛伊木马 的变种 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\16.vir - VBS/TrojanDownloader.Agent.ONO 特洛伊木马 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\17.vir - Win32/Agent.RYE 特洛伊木马 的变种 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\18.vir - JS/TrojanDownloader.Nemucod.ATU 特洛伊木马 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\20.vir - Win32/Tofsee.AZ 特洛伊木马 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\21.vir - Win32/Injector.DFZY 特洛伊木马 的变种 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\22.vir - Win32/Spy.Bebloh.N 特洛伊木马 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\25.vir - JS/TrojanDownloader.Agent.PBK 特洛伊木马 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\26.vir - Linux/Agent.DA 特洛伊木马 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\28.vir - MSIL/LockScreen.PE 特洛伊木马 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\29.vir - VBA/TrojanDownloader.Agent.BVW 特洛伊木马 - 已清除
C:\Users\L.Lawliet\Desktop\2016.10.17\30.vir - VBA/TrojanDownloader.Agent.BWB 特洛伊木马 - 已清除
C:\Users\L.Lawliet\Desktop\2016.10.17\31.vir - Win32/Injector.DFDN 特洛伊木马 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\32.vir > ZIP > word\vbaProject.bin - VBA/TrojanDropper.Agent.RG 特洛伊木马 - 已删除
C:\Users\L.Lawliet\Desktop\2016.10.17\33.vir > ZIP > word/document.xml - DOC/Fraud.CM 特洛伊木马 - 已删除
C:\Users\L.Lawliet\Desktop\2016.10.17\34.vir - MSIL/Bladabindi.AQ 特洛伊木马 的变种 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\36.vir - Win32/Tofsee.AZ 特洛伊木马 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\38.vir > NSIS > Script.nsi - NSIS/Injector.GG 特洛伊木马 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\40.vir - VBA/TrojanDownloader.Agent.BVY 特洛伊木马 - 已清除
C:\Users\L.Lawliet\Desktop\2016.10.17\41.vir > RAR > a.exe - Win32/Korplug.J 特洛伊木马 的变种 - 已删除
C:\Users\L.Lawliet\Desktop\2016.10.17\42.vir - JS/TrojanDownloader.Nemucod.BEG 特洛伊木马 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\43.vir - VBA/TrojanDownloader.Agent.BVW 特洛伊木马 - 已清除
C:\Users\L.Lawliet\Desktop\2016.10.17\44.vir - VBA/TrojanDropper.Agent.QX 特洛伊木马 - 已清除
C:\Users\L.Lawliet\Desktop\2016.10.17\48.vir > CWS > file.swf - SWF/Exploit.ExKit.AZC 特洛伊木马 - 已删除
C:\Users\L.Lawliet\Desktop\2016.10.17\50.vir > AUTOIT > script.au3 - Win32/Packed.Autoit.H 可疑应用程序 - 通过删除清除
C:\Users\L.Lawliet\Desktop\2016.10.17\50.vir > AUTOIT > _deobfusc_script.au3 - Win32/PSW.Autoit.BH 特洛伊木马 - 通过删除清除[/mw_shl_code]
回复

举报

ELOHIM
发表于 2016-10-17 10:44:42 | 显示全部楼层
驭龙 发表于 2016-10-17 09:51
WD测试2016年10月17日 10:00
测试版本和特征库



警戒线,不能再低啦。。。
回复

举报

轩夏
发表于 2016-10-17 11:09:31 | 显示全部楼层
卡巴

[mw_shl_code=css,true]2016-10-17 11:06:40     C:\Users\XuanXia\Desktop\2016.10.17\01.vir      detected        Trojan-Dropper.MSWord.Agent.nx
2016-10-17 11:06:40     C:\Users\XuanXia\Desktop\2016.10.17\02.vir      detected        Trojan-Dropper.MSWord.Agent.of
2016-10-17 11:06:43     C:\Users\XuanXia\Desktop\2016.10.17\03.vir      ok
2016-10-17 11:06:44     C:\Users\XuanXia\Desktop\2016.10.17\04.vir      detected        HEUR:Trojan.Win32.Generic
2016-10-17 11:06:44     C:\Users\XuanXia\Desktop\2016.10.17\05.vir      detected        HEUR:Exploit.Script.Generic
2016-10-17 11:06:44     C:\Users\XuanXia\Desktop\2016.10.17\06.vir      ok
2016-10-17 11:06:45     C:\Users\XuanXia\Desktop\2016.10.17\07.vir      detected        Trojan-Downloader.MSWord.Agent.asdfti
2016-10-17 11:06:45     C:\Users\XuanXia\Desktop\2016.10.17\08.vir      ok
2016-10-17 11:06:46     C:\Users\XuanXia\Desktop\2016.10.17\09.vir      detected        Backdoor.Win32.Agent.adr
2016-10-17 11:06:46     C:\Users\XuanXia\Desktop\2016.10.17\10.vir      detected        HEUR:Trojan.Win32.Generic
2016-10-17 11:06:47     C:\Users\XuanXia\Desktop\2016.10.17\11.vir      ok
2016-10-17 11:06:47     C:\Users\XuanXia\Desktop\2016.10.17\12.vir      ok
2016-10-17 11:06:47     C:\Users\XuanXia\Desktop\2016.10.17\13.vir      ok
2016-10-17 11:06:47     C:\Users\XuanXia\Desktop\2016.10.17\14.vir      ok
2016-10-17 11:06:49     C:\Users\XuanXia\Desktop\2016.10.17\15.vir      detected        Backdoor.Java.Adwind.cr
2016-10-17 11:06:50     C:\Users\XuanXia\Desktop\2016.10.17\16.vir      detected        Trojan-Downloader.MSWord.Agent.ask
2016-10-17 11:06:51     C:\Users\XuanXia\Desktop\2016.10.17\17.vir      ok
2016-10-17 11:06:51     C:\Users\XuanXia\Desktop\2016.10.17\18.vir      detected        Trojan-Downloader.JS.Agent.mgx
2016-10-17 11:06:51     C:\Users\XuanXia\Desktop\2016.10.17\19.vir      ok
2016-10-17 11:06:52     C:\Users\XuanXia\Desktop\2016.10.17\20.vir      detected        Backdoor.Win32.Tofsee.yui
2016-10-17 11:06:53     C:\Users\XuanXia\Desktop\2016.10.17\21.vir      ok
2016-10-17 11:06:54     C:\Users\XuanXia\Desktop\2016.10.17\22.vir      detected        Trojan.Win32.Inject.abntn
2016-10-17 11:06:55     C:\Users\XuanXia\Desktop\2016.10.17\23.vir      ok
2016-10-17 11:06:57     C:\Users\XuanXia\Desktop\2016.10.17\24.vir      detected        HEUR:Exploit.Script.Generic
2016-10-17 11:06:58     C:\Users\XuanXia\Desktop\2016.10.17\25.vir      detected        HEUR:Exploit.Script.Generic
2016-10-17 11:06:59     C:\Users\XuanXia\Desktop\2016.10.17\26.vir      ok
2016-10-17 11:07:00     C:\Users\XuanXia\Desktop\2016.10.17\27.vir      ok
2016-10-17 11:07:01     C:\Users\XuanXia\Desktop\2016.10.17\28.vir      ok
2016-10-17 11:07:02     C:\Users\XuanXia\Desktop\2016.10.17\29.vir      detected        Trojan-Downloader.MSWord.Agent.art
2016-10-17 11:07:03     C:\Users\XuanXia\Desktop\2016.10.17\30.vir      detected        Trojan-Downloader.MSWord.Agent.asdfsw
2016-10-17 11:07:03     C:\Users\XuanXia\Desktop\2016.10.17\31.vir      ok
2016-10-17 11:07:04     C:\Users\XuanXia\Desktop\2016.10.17\32.vir      detected        Trojan-Downloader.VBS.Agent.cci
2016-10-17 11:07:04     C:\Users\XuanXia\Desktop\2016.10.17\33.vir      ok
2016-10-17 11:07:05     C:\Users\XuanXia\Desktop\2016.10.17\34.vir      ok
2016-10-17 11:07:05     C:\Users\XuanXia\Desktop\2016.10.17\35.vir      ok
2016-10-17 11:07:06     C:\Users\XuanXia\Desktop\2016.10.17\36.vir      detected        Backdoor.Win32.Tofsee.yuh
2016-10-17 11:07:06     C:\Users\XuanXia\Desktop\2016.10.17\37.vir      ok
2016-10-17 11:07:08     C:\Users\XuanXia\Desktop\2016.10.17\38.vir      ok
2016-10-17 11:07:09     C:\Users\XuanXia\Desktop\2016.10.17\39.vir      detected        HEUR:Trojan-Downloader.Script.Generic
2016-10-17 11:07:09     C:\Users\XuanXia\Desktop\2016.10.17\40.vir      ok
2016-10-17 11:07:10     C:\Users\XuanXia\Desktop\2016.10.17\41.vir      detected        Trojan.Win32.Tvt.ll
2016-10-17 11:07:10     C:\Users\XuanXia\Desktop\2016.10.17\42.vir      ok
2016-10-17 11:07:10     C:\Users\XuanXia\Desktop\2016.10.17\43.vir      ok
2016-10-17 11:07:11     C:\Users\XuanXia\Desktop\2016.10.17\44.vir      detected        Trojan-Dropper.MSWord.Agent.oa
2016-10-17 11:07:14     C:\Users\XuanXia\Desktop\2016.10.17\45.vir      ok
2016-10-17 11:07:15     C:\Users\XuanXia\Desktop\2016.10.17\46.vir      detected        HEUR:Trojan-Downloader.Script.Generic
2016-10-17 11:07:16     C:\Users\XuanXia\Desktop\2016.10.17\47.vir      error   Object protected with password
2016-10-17 11:07:16     C:\Users\XuanXia\Desktop\2016.10.17\48.vir      ok
2016-10-17 11:07:16     C:\Users\XuanXia\Desktop\2016.10.17\49.vir      ok
2016-10-17 11:07:35     C:\Users\XuanXia\Desktop\2016.10.17\50.vir      ok
; --- Statistics ---
; Time Start:   2016-10-17 11:06:39
; Time Finish:  2016-10-17 11:07:35
; Completion:   100%
; Processed objects:    50
; Total detected:       22
; Detected exact:       15
; Errors:       1
; ------------------[/mw_shl_code]
回复

举报

Eset小粉絲
发表于 2016-10-17 11:22:30 | 显示全部楼层
Avira 30x

[mw_shl_code=css,true]Start of the scan: Monday, 17 October, 2016  11:16

Starting the file scan:

Begin scan in 'C:\Users\User\Desktop\2016.10.17'
C:\Users\User\Desktop\2016.10.17\01.vir
  [DETECTION] Contains code of the W2000M/Agent.3523221 macro virus
C:\Users\User\Desktop\2016.10.17\03.vir
  [DETECTION] Is the TR/Dropper.MSIL.jycwk Trojan
C:\Users\User\Desktop\2016.10.17\04.vir
  [DETECTION] Is the TR/Agent.gqjwv Trojan
C:\Users\User\Desktop\2016.10.17\07.vir
  [DETECTION] Contains code of the W2000M/Agent.97931338 macro virus
C:\Users\User\Desktop\2016.10.17\09.vir
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/Agent.adr.390 back-door program
C:\Users\User\Desktop\2016.10.17\13.vir
  [DETECTION] Is the TR/WisdomEyes.E Trojan
C:\Users\User\Desktop\2016.10.17\15.vir
    [0] Archive type: ZIP
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmld.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123214 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlj.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123216 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmls.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123228 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlu.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123231 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlp.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123225 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlb.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123212 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlz.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123236 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlc.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123213 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmll.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123219 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlt.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123229 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlx.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123235 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlv.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123233 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlo.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123224 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlh.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123318 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlq.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123226 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmln.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123222 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlg.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123317 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlk.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123217 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmly.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123234 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlm.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123221 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlf.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123316 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlr.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123227 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmle.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123315 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmla.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123211 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmli.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123419 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlw.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123232 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlda.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123215 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlha.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123319 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlka.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123218 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlna.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123223 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlta.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123230 Java virus
        [WARNING]   Infected files in archives cannot be repaired
    --> x/xmlxmxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmlxmllxmlxmlxmlla.class
        [DETECTION] Contains recognition pattern of the JAVA/Dldr.Adwind.123220 Java virus
        [WARNING]   Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.10.17\16.vir
  [DETECTION] Contains code of the W2000M/Agent.12501577 macro virus
C:\Users\User\Desktop\2016.10.17\17.vir
  [DETECTION] Is the TR/ATRAPS.Gen Trojan
C:\Users\User\Desktop\2016.10.17\18.vir
  [DETECTION] Contains recognition pattern of the JS/Dldr.Kript.830162 Java script virus
C:\Users\User\Desktop\2016.10.17\20.vir
  [DETECTION] Is the TR/Dropper.VB.robss Trojan
C:\Users\User\Desktop\2016.10.17\21.vir
  [DETECTION] Is the TR/Dropper.VB.kvvny Trojan
The file 'C:\Users\User\Desktop\2016.10.17\22.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 20E2D65E6E94524D8E67EAC8ABB5F6661EC4D08BF6FBDEB8AB99976BECD2AD2F
C:\Users\User\Desktop\2016.10.17\22.vir (SHA-256: 20e2d65e6e94524d8e67eac8abb5f6661ec4d08bf6fbdeb8ab99976becd2ad2f)
  [DETECTION] Is the TR/Crypt.XPACK.Gen (Cloud) Trojan
  [INFO]      The file 'C:\Users\User\Desktop\2016.10.17\22.vir' has been uploaded to the Protection Cloud and analyzed.
C:\Users\User\Desktop\2016.10.17\25.vir
  [DETECTION] Contains recognition pattern of the JS/Obfuscated.25261 Java script virus
C:\Users\User\Desktop\2016.10.17\28.vir
  [DETECTION] Is the TR/Rogue.155648.125 Trojan
C:\Users\User\Desktop\2016.10.17\29.vir
  [DETECTION] Contains code of the W2000M/Agent.11130 macro virus
C:\Users\User\Desktop\2016.10.17\30.vir
  [DETECTION] Contains code of the W2000M/Agent.61880 macro virus
C:\Users\User\Desktop\2016.10.17\31.vir
  [DETECTION] Contains recognition pattern of the DR/Delphi.Gen dropper
C:\Users\User\Desktop\2016.10.17\32.vir
    [0] Archive type: ZIP
    --> word/vbaProject.bin
        [DETECTION] Contains suspicious code HEUR/Macro.Dropper
        [WARNING]   Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.10.17\34.vir
  [DETECTION] Is the TR/Spy.Gen8 Trojan
C:\Users\User\Desktop\2016.10.17\36.vir
  [DETECTION] Is the TR/Dropper.VB.xkoci Trojan
C:\Users\User\Desktop\2016.10.17\39.vir
  [DETECTION] Contains recognition pattern of the HTML/ExpKit.Gen2 HTML script virus
C:\Users\User\Desktop\2016.10.17\40.vir
  [DETECTION] Contains code of the W2000M/Agent.3007794 macro virus
C:\Users\User\Desktop\2016.10.17\41.vir
    [0] Archive type: RAR SFX (self extracting)
    --> a.exe
        [DETECTION] Is the TR/Crypt.ZPACK.Gen Trojan
        [WARNING]   Infected files in archives cannot be repaired
C:\Users\User\Desktop\2016.10.17\42.vir
  [DETECTION] Contains recognition pattern of the HTML/ExpKit.Gen2 HTML script virus
C:\Users\User\Desktop\2016.10.17\43.vir
  [DETECTION] Contains code of the W2000M/Agent.51114 macro virus
C:\Users\User\Desktop\2016.10.17\44.vir
  [DETECTION] Contains code of the W2000M/Dldr.Agent.AM.78510 macro virus
C:\Users\User\Desktop\2016.10.17\46.vir
  [DETECTION] Contains recognition pattern of the HTML/ExpKit.Gen2 HTML script virus
C:\Users\User\Desktop\2016.10.17\48.vir
  [DETECTION] Contains recognition pattern of the EXP/FLASH.Pubenush.W.Gen exploit
C:\Users\User\Desktop\2016.10.17\50.vir
  [DETECTION] Is the TR/Dropper.Gen Trojan[/mw_shl_code]
回复

举报

下一页 »
12345下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-12 04:58 , Processed in 0.135703 second(s), 22 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表