收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 樣本不多46X宏
123下一页
返回列表 发新帖
查看: 6531|回复: 29
收起左侧

[病毒样本] 樣本不多46X宏

[复制链接]
Eset小粉絲
发表于 2016-12-3 01:22:36 | 显示全部楼层 |阅读模式






本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

欧阳宣
头像被屏蔽
发表于 2016-12-3 02:17:37 | 显示全部楼层
cylance全部跳过。。
回复

举报

fireherman
发表于 2016-12-3 02:42:04 | 显示全部楼层


第一次扫描[v14540]全部miss

赶紧升级病毒库[v14541],马上kill 26x

[mw_shl_code=css,true]正在扫描日志
病毒库版本: 14541 (20161202)
日期: 2016/12/3  时间: 2:39:43
已扫描的磁盘、文件夹和文件: Z:\TEMP\Samples
Z:\TEMP\Samples\0aeb999058e364af342198f36b426fbafcb5bc5d0109a3887ec89add28bfbc64.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\1d9193c6e9aa6c1a50fdaa2ca8cd12b86e4b8077152f9358bb516496e46616a2.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\3ffc6b12c7db7a4f699bb4e11aaea1bd7af1e54bad23c5c19036e3aeb694b568.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\40cead2027c3bbabb39722124e62d53072c8c24311aac3d9b23f04125c183bfc.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\639762799ec7e904d3163c6d1fb0cef91dd664f1b4a01da7704a2a5afdda7d9b.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\6a6130f4f9033ecbb022aa3933167049a087b2b83b4f977a252c752ec809de5e.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\6f3bdffa549e87c021ea932835d7ce9ab09b2bf84bfda12054fefe109e4bcbb4.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\780bfe984a35b00d6d9d31c40b3db286e70ddde2cb5e8de1a1dc3aaad7300149.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\79ae71b363b5c90e899a8e6537f1e0d98b832f5909e0bcd6795758128b3ab20a.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\7e131d26bb5a3bbd261acaa6038ad4c8c60965b1ddd4018bf6f8ed2574ef82ce.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\7eeec53df90f77a4792fdc1e42f83336ff1b04e48866da646806918080b46da0.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\800ad944808ea513b1a7964bb22d7f44a0d0b071404638878692794ceaec7b8c.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\85e75a06a2a088ff630be0e29272df08c03a7b04849b60126113d5e6d8726b2f.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\8f683a5ee6b222844da07b1dc8ec9865f3c8ea6747ca5c53766f1546e802b145.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\9720cac0705f037950610f1e006c81d6c5a4653d1ebc38389a11d9929816823d.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\a442376471a4ffd1cc0243deaac5da5bcf9d9e343a3581220fe30a5b2cb631ff.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\ab8c2d7ad57f46e0f39e3da1e3c25f8900b8656c4f814c4e83b7d72aaf1901a0.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\ad67fd5cfe68487bb9144276faff66ede2a0a86f8ed56412137361e0d27cc2e0.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\b893ec0627b06330ee226f834209d3453bdda92c7210af41443d01f260a9ff3a.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\be562a32ec4e56fa2ac03d7d1307da5dd3d7dd543a99623c2009ac4349bcb186.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\c17f0e4dac4def3fa09e5bf31a933cbea04b979d509b73642fcc52e726139f0c.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\c443ae9b60f0c3aa76b510191da343977267902753613ff02ae02ae635736c5f.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\dc37c51477282a3e9ae8a7df73575ee65beb7949bc407825b33724d5499a4bc6.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\e1000f68b1b2d25f2ed59a2c15273e6ebd1fb82002900803bc19c956c7270b58.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\e8fc5314d5d12998331785e75611f8f7994cf0447f48993179babd286e459300.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\f188dcb437be79996dc1b7e00c6e5f901cca8aad5897f32f91c417a4c350831f.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 扫描完成后再选择处理方式
Z:\TEMP\Samples\0aeb999058e364af342198f36b426fbafcb5bc5d0109a3887ec89add28bfbc64.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\1d9193c6e9aa6c1a50fdaa2ca8cd12b86e4b8077152f9358bb516496e46616a2.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\3ffc6b12c7db7a4f699bb4e11aaea1bd7af1e54bad23c5c19036e3aeb694b568.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\40cead2027c3bbabb39722124e62d53072c8c24311aac3d9b23f04125c183bfc.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\639762799ec7e904d3163c6d1fb0cef91dd664f1b4a01da7704a2a5afdda7d9b.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\6a6130f4f9033ecbb022aa3933167049a087b2b83b4f977a252c752ec809de5e.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\6f3bdffa549e87c021ea932835d7ce9ab09b2bf84bfda12054fefe109e4bcbb4.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\780bfe984a35b00d6d9d31c40b3db286e70ddde2cb5e8de1a1dc3aaad7300149.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\79ae71b363b5c90e899a8e6537f1e0d98b832f5909e0bcd6795758128b3ab20a.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\7e131d26bb5a3bbd261acaa6038ad4c8c60965b1ddd4018bf6f8ed2574ef82ce.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\7eeec53df90f77a4792fdc1e42f83336ff1b04e48866da646806918080b46da0.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\800ad944808ea513b1a7964bb22d7f44a0d0b071404638878692794ceaec7b8c.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\85e75a06a2a088ff630be0e29272df08c03a7b04849b60126113d5e6d8726b2f.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\8f683a5ee6b222844da07b1dc8ec9865f3c8ea6747ca5c53766f1546e802b145.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\9720cac0705f037950610f1e006c81d6c5a4653d1ebc38389a11d9929816823d.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\a442376471a4ffd1cc0243deaac5da5bcf9d9e343a3581220fe30a5b2cb631ff.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\ab8c2d7ad57f46e0f39e3da1e3c25f8900b8656c4f814c4e83b7d72aaf1901a0.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\ad67fd5cfe68487bb9144276faff66ede2a0a86f8ed56412137361e0d27cc2e0.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\b893ec0627b06330ee226f834209d3453bdda92c7210af41443d01f260a9ff3a.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\be562a32ec4e56fa2ac03d7d1307da5dd3d7dd543a99623c2009ac4349bcb186.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\c17f0e4dac4def3fa09e5bf31a933cbea04b979d509b73642fcc52e726139f0c.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\c443ae9b60f0c3aa76b510191da343977267902753613ff02ae02ae635736c5f.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\dc37c51477282a3e9ae8a7df73575ee65beb7949bc407825b33724d5499a4bc6.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\e1000f68b1b2d25f2ed59a2c15273e6ebd1fb82002900803bc19c956c7270b58.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\e8fc5314d5d12998331785e75611f8f7994cf0447f48993179babd286e459300.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
Z:\TEMP\Samples\f188dcb437be79996dc1b7e00c6e5f901cca8aad5897f32f91c417a4c350831f.vir > ZIP > word/vbaProject.bin - VBA/TrojanDownloader.Agent.CCV 特洛伊木马 - 已删除
已扫描的对象数: 681
发现的威胁数: 26
已清除对象数: 26
完成时间: 2:39:52  总扫描时间: 9 秒 (00:00:09)[/mw_shl_code]




本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

360_HBM
发表于 2016-12-3 07:50:55 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

dongwenqi
发表于 2016-12-3 08:55:52 | 显示全部楼层
卡巴全杀,修复5个
回复

举报

心醉咖啡
发表于 2016-12-3 09:08:29 | 显示全部楼层
宏毒霸扫描免测必miss
回复

举报

wjy19800315
发表于 2016-12-3 09:34:30 | 显示全部楼层
本帖最后由 wjy19800315 于 2016-12-3 09:36 编辑

全部检测出来,不过剩余12个样本无法删除




[mw_shl_code=css,true]扫描报告
2016年12月3日 9:33:10 - 9:33:13
计算机名称: DESKTOP-AST124V
扫描类型: 扫描目标
目标: C:\Users\wjy19\Desktop\Samples

结果: 找到 88 恶意软件
Trojan.Doc.Downloader.XD (病毒)
C:\Users\wjy19\Desktop\Samples\0aeb999058e364af342198f36b426fbafcb5bc5d0109a3887ec89add28bfbc64.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\1d9193c6e9aa6c1a50fdaa2ca8cd12b86e4b8077152f9358bb516496e46616a2.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\3ffc6b12c7db7a4f699bb4e11aaea1bd7af1e54bad23c5c19036e3aeb694b568.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\40cead2027c3bbabb39722124e62d53072c8c24311aac3d9b23f04125c183bfc.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\639762799ec7e904d3163c6d1fb0cef91dd664f1b4a01da7704a2a5afdda7d9b.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\6a6130f4f9033ecbb022aa3933167049a087b2b83b4f977a252c752ec809de5e.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\6f3bdffa549e87c021ea932835d7ce9ab09b2bf84bfda12054fefe109e4bcbb4.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\780bfe984a35b00d6d9d31c40b3db286e70ddde2cb5e8de1a1dc3aaad7300149.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\79ae71b363b5c90e899a8e6537f1e0d98b832f5909e0bcd6795758128b3ab20a.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\7e131d26bb5a3bbd261acaa6038ad4c8c60965b1ddd4018bf6f8ed2574ef82ce.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\7eeec53df90f77a4792fdc1e42f83336ff1b04e48866da646806918080b46da0.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\800ad944808ea513b1a7964bb22d7f44a0d0b071404638878692794ceaec7b8c.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\85e75a06a2a088ff630be0e29272df08c03a7b04849b60126113d5e6d8726b2f.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\8f683a5ee6b222844da07b1dc8ec9865f3c8ea6747ca5c53766f1546e802b145.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\9720cac0705f037950610f1e006c81d6c5a4653d1ebc38389a11d9929816823d.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\a442376471a4ffd1cc0243deaac5da5bcf9d9e343a3581220fe30a5b2cb631ff.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\ab8c2d7ad57f46e0f39e3da1e3c25f8900b8656c4f814c4e83b7d72aaf1901a0.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\ad67fd5cfe68487bb9144276faff66ede2a0a86f8ed56412137361e0d27cc2e0.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\b893ec0627b06330ee226f834209d3453bdda92c7210af41443d01f260a9ff3a.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\c443ae9b60f0c3aa76b510191da343977267902753613ff02ae02ae635736c5f.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\be562a32ec4e56fa2ac03d7d1307da5dd3d7dd543a99623c2009ac4349bcb186.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\c17f0e4dac4def3fa09e5bf31a933cbea04b979d509b73642fcc52e726139f0c.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\e8fc5314d5d12998331785e75611f8f7994cf0447f48993179babd286e459300.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\dc37c51477282a3e9ae8a7df73575ee65beb7949bc407825b33724d5499a4bc6.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\e1000f68b1b2d25f2ed59a2c15273e6ebd1fb82002900803bc19c956c7270b58.vir\word\vbaProject.bin
C:\Users\wjy19\Desktop\Samples\f188dcb437be79996dc1b7e00c6e5f901cca8aad5897f32f91c417a4c350831f.vir\word\vbaProject.bin
Trojan.Doc.Downloader.XB (病毒)
C:\Users\wjy19\Desktop\Samples\16f3857618abdf7b5bc25832161d12a15a353d1498c4d7c8f465ebea817125e2.vir\word\embeddings\oleObject4.bin
C:\Users\wjy19\Desktop\Samples\34890a74900dc1762c1bbc2a46b097e6c0d983525ddf9329a1e38073bff3ce82.vir\word\embeddings\oleObject4.bin
C:\Users\wjy19\Desktop\Samples\407c254beba5f27d638d5d2472934bd5a41132cf3228f91ae0707e556a25305d.vir\word\embeddings\oleObject4.bin
C:\Users\wjy19\Desktop\Samples\16f3857618abdf7b5bc25832161d12a15a353d1498c4d7c8f465ebea817125e2.vir\word\embeddings\oleObject3.bin
C:\Users\wjy19\Desktop\Samples\16f3857618abdf7b5bc25832161d12a15a353d1498c4d7c8f465ebea817125e2.vir\word\embeddings\oleObject3.bin
C:\Users\wjy19\Desktop\Samples\34890a74900dc1762c1bbc2a46b097e6c0d983525ddf9329a1e38073bff3ce82.vir\word\embeddings\oleObject3.bin
C:\Users\wjy19\Desktop\Samples\34890a74900dc1762c1bbc2a46b097e6c0d983525ddf9329a1e38073bff3ce82.vir\word\embeddings\oleObject3.bin
C:\Users\wjy19\Desktop\Samples\407c254beba5f27d638d5d2472934bd5a41132cf3228f91ae0707e556a25305d.vir\word\embeddings\oleObject3.bin
C:\Users\wjy19\Desktop\Samples\407c254beba5f27d638d5d2472934bd5a41132cf3228f91ae0707e556a25305d.vir\word\embeddings\oleObject3.bin
C:\Users\wjy19\Desktop\Samples\16f3857618abdf7b5bc25832161d12a15a353d1498c4d7c8f465ebea817125e2.vir\word\embeddings\oleObject2.bin
C:\Users\wjy19\Desktop\Samples\34890a74900dc1762c1bbc2a46b097e6c0d983525ddf9329a1e38073bff3ce82.vir\word\embeddings\oleObject2.bin
C:\Users\wjy19\Desktop\Samples\407c254beba5f27d638d5d2472934bd5a41132cf3228f91ae0707e556a25305d.vir\word\embeddings\oleObject2.bin
C:\Users\wjy19\Desktop\Samples\16f3857618abdf7b5bc25832161d12a15a353d1498c4d7c8f465ebea817125e2.vir\word\embeddings\oleObject1.bin
C:\Users\wjy19\Desktop\Samples\34890a74900dc1762c1bbc2a46b097e6c0d983525ddf9329a1e38073bff3ce82.vir\word\embeddings\oleObject1.bin
C:\Users\wjy19\Desktop\Samples\407c254beba5f27d638d5d2472934bd5a41132cf3228f91ae0707e556a25305d.vir\word\embeddings\oleObject1.bin
C:\Users\wjy19\Desktop\Samples\16f3857618abdf7b5bc25832161d12a15a353d1498c4d7c8f465ebea817125e2.vir 操作: 已隔离
C:\Users\wjy19\Desktop\Samples\407c254beba5f27d638d5d2472934bd5a41132cf3228f91ae0707e556a25305d.vir 操作: 已隔离
C:\Users\wjy19\Desktop\Samples\34890a74900dc1762c1bbc2a46b097e6c0d983525ddf9329a1e38073bff3ce82.vir 操作: 已隔离
Trojan.Doc.Downloader.XC (病毒)
C:\Users\wjy19\Desktop\Samples\3950374cf6e9e16e6542ba216e2dfa39ab25dcacbb66c1ec22a5a352fe1edadd.vir\word\embeddings\oleObject3.bin
C:\Users\wjy19\Desktop\Samples\3950374cf6e9e16e6542ba216e2dfa39ab25dcacbb66c1ec22a5a352fe1edadd.vir\word\embeddings\oleObject2.bin
C:\Users\wjy19\Desktop\Samples\3950374cf6e9e16e6542ba216e2dfa39ab25dcacbb66c1ec22a5a352fe1edadd.vir\word\embeddings\oleObject1.bin
C:\Users\wjy19\Desktop\Samples\3950374cf6e9e16e6542ba216e2dfa39ab25dcacbb66c1ec22a5a352fe1edadd.vir 操作: 已隔离
C:\Users\wjy19\Desktop\Samples\69287e4e0149572d79d2306498cc19969791baaf3e30389c1492fda891b6bdb4.vir\word\embeddings\oleObject3.bin
C:\Users\wjy19\Desktop\Samples\69287e4e0149572d79d2306498cc19969791baaf3e30389c1492fda891b6bdb4.vir\word\embeddings\oleObject2.bin
C:\Users\wjy19\Desktop\Samples\69287e4e0149572d79d2306498cc19969791baaf3e30389c1492fda891b6bdb4.vir\word\embeddings\oleObject1.bin
C:\Users\wjy19\Desktop\Samples\69287e4e0149572d79d2306498cc19969791baaf3e30389c1492fda891b6bdb4.vir 操作: 已隔离
C:\Users\wjy19\Desktop\Samples\ec9b5085d51f5fd710877b16b9d717a42879091f919c8d8c4af08bf65a751008.vir\word\embeddings\oleObject3.bin
C:\Users\wjy19\Desktop\Samples\ec9b5085d51f5fd710877b16b9d717a42879091f919c8d8c4af08bf65a751008.vir\word\embeddings\oleObject2.bin
C:\Users\wjy19\Desktop\Samples\ec9b5085d51f5fd710877b16b9d717a42879091f919c8d8c4af08bf65a751008.vir\word\embeddings\oleObject1.bin
C:\Users\wjy19\Desktop\Samples\ec9b5085d51f5fd710877b16b9d717a42879091f919c8d8c4af08bf65a751008.vir 操作: 已隔离
Trojan-Downloader:W97M/Dridex.Z (病毒)
C:\Users\wjy19\Desktop\Samples\0aeb999058e364af342198f36b426fbafcb5bc5d0109a3887ec89add28bfbc64.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\3ffc6b12c7db7a4f699bb4e11aaea1bd7af1e54bad23c5c19036e3aeb694b568.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\1d9193c6e9aa6c1a50fdaa2ca8cd12b86e4b8077152f9358bb516496e46616a2.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\40cead2027c3bbabb39722124e62d53072c8c24311aac3d9b23f04125c183bfc.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\639762799ec7e904d3163c6d1fb0cef91dd664f1b4a01da7704a2a5afdda7d9b.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\6a6130f4f9033ecbb022aa3933167049a087b2b83b4f977a252c752ec809de5e.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\780bfe984a35b00d6d9d31c40b3db286e70ddde2cb5e8de1a1dc3aaad7300149.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\6f3bdffa549e87c021ea932835d7ce9ab09b2bf84bfda12054fefe109e4bcbb4.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\7e131d26bb5a3bbd261acaa6038ad4c8c60965b1ddd4018bf6f8ed2574ef82ce.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\7eeec53df90f77a4792fdc1e42f83336ff1b04e48866da646806918080b46da0.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\79ae71b363b5c90e899a8e6537f1e0d98b832f5909e0bcd6795758128b3ab20a.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\800ad944808ea513b1a7964bb22d7f44a0d0b071404638878692794ceaec7b8c.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\85e75a06a2a088ff630be0e29272df08c03a7b04849b60126113d5e6d8726b2f.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\8f683a5ee6b222844da07b1dc8ec9865f3c8ea6747ca5c53766f1546e802b145.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\9720cac0705f037950610f1e006c81d6c5a4653d1ebc38389a11d9929816823d.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\a442376471a4ffd1cc0243deaac5da5bcf9d9e343a3581220fe30a5b2cb631ff.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\ab8c2d7ad57f46e0f39e3da1e3c25f8900b8656c4f814c4e83b7d72aaf1901a0.vir 操作: 已隔离
C:\Users\wjy19\Desktop\Samples\ad67fd5cfe68487bb9144276faff66ede2a0a86f8ed56412137361e0d27cc2e0.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\be562a32ec4e56fa2ac03d7d1307da5dd3d7dd543a99623c2009ac4349bcb186.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\c443ae9b60f0c3aa76b510191da343977267902753613ff02ae02ae635736c5f.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\b893ec0627b06330ee226f834209d3453bdda92c7210af41443d01f260a9ff3a.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\c17f0e4dac4def3fa09e5bf31a933cbea04b979d509b73642fcc52e726139f0c.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\e8fc5314d5d12998331785e75611f8f7994cf0447f48993179babd286e459300.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\dc37c51477282a3e9ae8a7df73575ee65beb7949bc407825b33724d5499a4bc6.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\e1000f68b1b2d25f2ed59a2c15273e6ebd1fb82002900803bc19c956c7270b58.vir 操作: 已杀毒
C:\Users\wjy19\Desktop\Samples\f188dcb437be79996dc1b7e00c6e5f901cca8aad5897f32f91c417a4c350831f.vir 操作: 已杀毒
Trojan.Agent.CBTD (病毒)
C:\Users\wjy19\Desktop\Samples\62f0a7b61f738d32cf9392b5cfaa96c4e25782e404ea5edc660f879a242ccbf2.vir\word\embeddings\oleObject4.bin
C:\Users\wjy19\Desktop\Samples\62f0a7b61f738d32cf9392b5cfaa96c4e25782e404ea5edc660f879a242ccbf2.vir\word\embeddings\oleObject3.bin
C:\Users\wjy19\Desktop\Samples\62f0a7b61f738d32cf9392b5cfaa96c4e25782e404ea5edc660f879a242ccbf2.vir\word\embeddings\oleObject3.bin
C:\Users\wjy19\Desktop\Samples\62f0a7b61f738d32cf9392b5cfaa96c4e25782e404ea5edc660f879a242ccbf2.vir\word\embeddings\oleObject2.bin
C:\Users\wjy19\Desktop\Samples\62f0a7b61f738d32cf9392b5cfaa96c4e25782e404ea5edc660f879a242ccbf2.vir\word\embeddings\oleObject1.bin
C:\Users\wjy19\Desktop\Samples\62f0a7b61f738d32cf9392b5cfaa96c4e25782e404ea5edc660f879a242ccbf2.vir 操作: 已隔离
C:\Users\wjy19\Desktop\Samples\a2677e463e3ce23ac2094f46a317c81136365c7ff0054eb767bb957e49890670.vir\word\embeddings\oleObject3.bin
C:\Users\wjy19\Desktop\Samples\a2677e463e3ce23ac2094f46a317c81136365c7ff0054eb767bb957e49890670.vir\word\embeddings\oleObject2.bin
C:\Users\wjy19\Desktop\Samples\a2677e463e3ce23ac2094f46a317c81136365c7ff0054eb767bb957e49890670.vir\word\embeddings\oleObject1.bin
C:\Users\wjy19\Desktop\Samples\a2677e463e3ce23ac2094f46a317c81136365c7ff0054eb767bb957e49890670.vir 操作: 已隔离




统计信息
已扫描:
文件: 722
未扫描: 0
结果:
病毒: 88
间谍软件: 0
可疑项目: 0
危险软件: 0
操作:
已杀毒: 25
已重命名: 0
删除: 0
已隔离: 9
失败: 0
启动扇区:
已扫描: 0
受感染: 0
可疑项目: 0
已杀毒: 0


选项
定义版本:
病毒: 2016-12-02_18
间谍软件: 2016-12-02_18
扫描引擎:
F-Secure Aquarius: 11.00.01, 2016-12-02
F-Secure Hydra: 5.15.154, 2016-12-01
F-Secure Online: 16.15.23, 0-00-00
F-Secure Gemini: 3.02.414, 2016-12-02
扫描选项:
扫描所有文件
扫描内部存档
排除:
对象: F:\我的视频\ F:\windows\ F:\我的相册\ E:\Game\ E:\游戏仓库\ D:\我的音乐\ D:\手机文件\
操作:
病毒: 对受感染文件进行杀毒
间谍软件: 隔离和删除 [/mw_shl_code]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

Dolby123
发表于 2016-12-3 11:46:54 | 显示全部楼层
DrWeb
样本总数 46    删除 26   0修复
回复

举报

心痛的伤不起
发表于 2016-12-3 12:24:00 | 显示全部楼层
瑞星kill 41
回复

举报

猪头无双
头像被屏蔽
发表于 2016-12-3 12:43:40 | 显示全部楼层
wjy19800315 发表于 2016-12-3 09:34
全部检测出来,不过剩余12个样本无法删除

这几个改后缀成rar,之后解压一下,估计就能查杀了
回复

举报

下一页 »
123下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-7 04:39 , Processed in 0.148146 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表