楼主: 轩夏
收起左侧

[病毒样本] 精睿样本测试(17.2.17)

  [复制链接]
skycai
发表于 2017-2-17 16:43:26 | 显示全部楼层
skyboybone
发表于 2017-2-17 16:57:18 | 显示全部楼层

断网就不行了,本地引擎太薄弱
欧阳宣
头像被屏蔽
发表于 2017-2-17 17:01:22 | 显示全部楼层
本帖最后由 欧阳宣 于 2017-2-17 17:31 编辑

gdata检测86,修复5个。
温馨小屋
头像被屏蔽
发表于 2017-2-17 17:06:50 | 显示全部楼层
BD 73个,其中修复12个
Eset小粉絲
发表于 2017-2-17 17:42:58 | 显示全部楼层
本帖最后由 Eset小粉絲 于 2017-2-17 18:13 编辑

Avira 72 + 3 = 75x

捕殺


[mw_shl_code=css,true]Start of the scan: Friday, 17 February, 2017  17:32

Starting the file scan:

Begin scan in 'C:\Users\Ivan\Desktop\2017.2.17'
C:\Users\Ivan\Desktop\2017.2.17\001.vir
  [DETECTION] Is the TR/Crypt.Xpack.lvjop Trojan
C:\Users\Ivan\Desktop\2017.2.17\002.vir
  [DETECTION] Is the TR/NetSeal.842240 Trojan
C:\Users\Ivan\Desktop\2017.2.17\003.vir
  [DETECTION] Is the TR/Dropper.MSIL.incuo Trojan
C:\Users\Ivan\Desktop\2017.2.17\004.vir
  [DETECTION] Is the TR/Dropper.MSIL.dzvnd Trojan
C:\Users\Ivan\Desktop\2017.2.17\005.vir
  [DETECTION] Contains code of the X2000M/Mailcab.B Excel macro virus
C:\Users\Ivan\Desktop\2017.2.17\007.vir
  [DETECTION] Is the TR/Agent.qfemq Trojan
C:\Users\Ivan\Desktop\2017.2.17\008.vir
  [DETECTION] Contains recognition pattern of the HTML/ExpKit.Gen2 HTML script virus
C:\Users\Ivan\Desktop\2017.2.17\013.vir
  [DETECTION] Is the TR/Crypt.Xpack.wqald Trojan
C:\Users\Ivan\Desktop\2017.2.17\015.vir
  [DETECTION] Contains recognition pattern of the APPL/Downloader.Gen application
C:\Users\Ivan\Desktop\2017.2.17\016.vir
  [DETECTION] Is the TR/Dropper.VB.ijqtz Trojan
Successful Cloud SDK initialization and license check.
The file 'C:\Users\Ivan\Desktop\2017.2.17\017.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 61BD86205D59413CE265E53BEE1F655C724FA22DAA5C383CF79E89AE94C48556
C:\Users\Ivan\Desktop\2017.2.17\017.vir (SHA-256: 61bd86205d59413ce265e53bee1f655c724fa22daa5c383cf79e89ae94c48556)
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\017.vir' has been uploaded to the Protection Cloud and analyzed.
C:\Users\Ivan\Desktop\2017.2.17\018.vir
  [DETECTION] Contains recognition pattern of the EXP/CVE-2012-0158 exploit
The file 'C:\Users\Ivan\Desktop\2017.2.17\020.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 749E19C200BC6AEB1C1CF858BB154B3A06B0D17A50EFB382ADDFDD4C6997518C
C:\Users\Ivan\Desktop\2017.2.17\020.vir (SHA-256: 749e19c200bc6aeb1c1cf858bb154b3a06b0d17a50efb382addfdd4c6997518c)
  [DETECTION] Is the TR/Dropper.VB.Gen4 (Cloud) Trojan
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\020.vir' has been uploaded to the Protection Cloud and analyzed.
The file 'C:\Users\Ivan\Desktop\2017.2.17\022.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = E7CAC05AA20045667131FFDDBD79124310DCDC4217EC82EADB3AA0B110C148D9
C:\Users\Ivan\Desktop\2017.2.17\022.vir (SHA-256: e7cac05aa20045667131ffddbd79124310dcdc4217ec82eadb3aa0b110c148d9)
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\022.vir' has been uploaded to the Protection Cloud and analyzed.
C:\Users\Ivan\Desktop\2017.2.17\025.vir
  [DETECTION] Is the TR/Crypt.Xpack.kymxt Trojan
C:\Users\Ivan\Desktop\2017.2.17\027.vir
  [DETECTION] Is the TR/Ransom.ikchb Trojan
C:\Users\Ivan\Desktop\2017.2.17\028.vir
  [DETECTION] Contains code of the W32/Neshta.A Windows virus
C:\Users\Ivan\Desktop\2017.2.17\029.vir
  [DETECTION] Is the TR/Crypt.Xpack.lqmaq Trojan
C:\Users\Ivan\Desktop\2017.2.17\030.vir
    [0] Archive type: RAR SFX (self extracting)
    --> 2w1d.dll
        [DETECTION] Contains recognition pattern of the DR/Delphi.Gen dropper
        [WARNING]   Infected files in archives cannot be repaired
C:\Users\Ivan\Desktop\2017.2.17\033.vir
  [DETECTION] Contains recognition pattern of the DR/Delphi.inafc dropper
C:\Users\Ivan\Desktop\2017.2.17\034.vir
  [DETECTION] Is the TR/Hijacker.Gen Trojan
C:\Users\Ivan\Desktop\2017.2.17\035.vir
  [DETECTION] Is the TR/Crypt.EPACK.undio Trojan
The file 'C:\Users\Ivan\Desktop\2017.2.17\038.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 7C1F1CBD3EA6CF3F8908C3520DB5A1245F99CBB2D262285E0F69F0CA4F2DEA09
C:\Users\Ivan\Desktop\2017.2.17\038.vir (SHA-256: 7c1f1cbd3ea6cf3f8908c3520db5a1245f99cbb2d262285e0f69f0ca4f2dea09)
  [DETECTION] Is the TR/Dropper.VB.Gen (Cloud) Trojan
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\038.vir' has been uploaded to the Protection Cloud and analyzed.
C:\Users\Ivan\Desktop\2017.2.17\039.vir
  [DETECTION] Is the TR/PSW.Magania.dtlf Trojan
C:\Users\Ivan\Desktop\2017.2.17\041.vir
  [DETECTION] Is the TR/Crypt.ZPACK.enxgx Trojan
C:\Users\Ivan\Desktop\2017.2.17\042.vir
  [DETECTION] Is the TR/Crypt.ZPACK.oyzlm Trojan
C:\Users\Ivan\Desktop\2017.2.17\044.vir
  [DETECTION] Is the TR/Crypt.ZPACK.jsfyi Trojan
C:\Users\Ivan\Desktop\2017.2.17\045.vir
  [DETECTION] Is the TR/Dropper.Gen Trojan
C:\Users\Ivan\Desktop\2017.2.17\046.vir
  [DETECTION] Is the TR/Agent.raave Trojan
The file 'C:\Users\Ivan\Desktop\2017.2.17\047.vir' was scanned with the Protection Cloud. SHA256 = 913A0E535FBCFD2794C482C9127F82BFC050D8B9A63108808376A020FFA73495
C:\Users\Ivan\Desktop\2017.2.17\047.vir (SHA-256: 913a0e535fbcfd2794c482c9127f82bfc050d8b9a63108808376a020ffa73495)
  [DETECTION] Is the TR/Injector.913a0e (Cloud) Trojan
C:\Users\Ivan\Desktop\2017.2.17\051.vir
  [DETECTION] Contains recognition pattern of the DR/Autoit.wnyox dropper
C:\Users\Ivan\Desktop\2017.2.17\052.vir
  [DETECTION] Is the TR/Dropper.MSIL.adzyr Trojan
The file 'C:\Users\Ivan\Desktop\2017.2.17\053.vir' was scanned with the Protection Cloud. SHA256 = C581F0CB2043AB915E8DBF27426F595B386CCE8CB9B4E256675022E544CC99DF
C:\Users\Ivan\Desktop\2017.2.17\053.vir (SHA-256: c581f0cb2043ab915e8dbf27426f595b386cce8cb9b4e256675022e544cc99df)
  [DETECTION] Is the TR/Dropper.VB.c581f0 (Cloud) Trojan
C:\Users\Ivan\Desktop\2017.2.17\054.vir
  [DETECTION] Is the TR/Crypt.ZPACK.jfoxf Trojan
    [0] Archive type: Portable Executable Resource
    --> C:\Users\Ivan\Desktop\2017.2.17\055.vir
        [1] Archive type: NSIS
      --> Object
          [DETECTION] Contains patterns of software PUA/MyWebSearch.ME.105
          [WARNING]   Infected files in archives cannot be repaired
C:\Users\Ivan\Desktop\2017.2.17\055.vir
  [DETECTION] Contains patterns of software PUA/MyWebSearch.ME.105
C:\Users\Ivan\Desktop\2017.2.17\056.vir
  [DETECTION] Contains recognition pattern of the HTML/ExpKit.Gen2 HTML script virus
The file 'C:\Users\Ivan\Desktop\2017.2.17\057.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 869EFF72597F4EFD1D2BEE129E6ACCAAF48FF3A2A8F6FD07B63353D4D1474703
C:\Users\Ivan\Desktop\2017.2.17\057.vir (SHA-256: 869eff72597f4efd1d2bee129e6accaaf48ff3a2a8f6fd07b63353d4d1474703)
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\057.vir' has been uploaded to the Protection Cloud and analyzed.
The file 'C:\Users\Ivan\Desktop\2017.2.17\059.vir' was scanned with the Protection Cloud. SHA256 = 00D1445B1F864BD168C7698C937A4143F76335AA0000AEAE973B1B80B795BB3D
C:\Users\Ivan\Desktop\2017.2.17\059.vir (SHA-256: 00d1445b1f864bd168c7698c937a4143f76335aa0000aeae973b1b80b795bb3d)
  [DETECTION] Is the TR/Dropper.VB.00d144 (Cloud) Trojan
C:\Users\Ivan\Desktop\2017.2.17\061.vir
  [DETECTION] Is the TR/Dropper.MSIL.ooqbi Trojan
C:\Users\Ivan\Desktop\2017.2.17\062.vir
  [DETECTION] Is the TR/Agent.biflu Trojan
C:\Users\Ivan\Desktop\2017.2.17\064.vir
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/Hackdef.lrspn back-door program
The file 'C:\Users\Ivan\Desktop\2017.2.17\065.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 578D56EECD8EDFE514C4E25CA931C580A6D512A2F18F095357D3D5ED2141CA85
C:\Users\Ivan\Desktop\2017.2.17\065.vir (SHA-256: 578d56eecd8edfe514c4e25ca931c580a6d512a2f18f095357d3d5ed2141ca85)
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\065.vir' has been uploaded to the Protection Cloud and analyzed.
C:\Users\Ivan\Desktop\2017.2.17\066.vir
  [DETECTION] Is the TR/Agent.wdvoa Trojan
    --> C:\Users\Ivan\Desktop\2017.2.17\067.vir
        [1] Archive type: NSIS
      --> Object
          [DETECTION] Is the TR/Crypt.Xpack.xfvrc Trojan
          [WARNING]   Infected files in archives cannot be repaired
C:\Users\Ivan\Desktop\2017.2.17\067.vir
  [DETECTION] Is the TR/Crypt.Xpack.xfvrc Trojan
C:\Users\Ivan\Desktop\2017.2.17\068.vir
  [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
The file 'C:\Users\Ivan\Desktop\2017.2.17\069.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 860AE849B5969FC0C00F0792E0093B6539D72DD90C2ADB77988E4983D36B03C6
C:\Users\Ivan\Desktop\2017.2.17\069.vir (SHA-256: 860ae849b5969fc0c00f0792e0093b6539d72dd90c2adb77988e4983d36b03c6)
  [DETECTION] Is the TR/Crypt.ZPACK.Gen7 (Cloud) Trojan
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\069.vir' has been uploaded to the Protection Cloud and analyzed.
C:\Users\Ivan\Desktop\2017.2.17\070.vir
  [DETECTION] Is the TR/Spy.21293.1 Trojan
C:\Users\Ivan\Desktop\2017.2.17\072.vir
  [DETECTION] Is the TR/Agent.rssgh Trojan
C:\Users\Ivan\Desktop\2017.2.17\073.vir
  [DETECTION] Is the TR/Dropper.VB.ljjri Trojan
The file 'C:\Users\Ivan\Desktop\2017.2.17\079.vir' was scanned with the Protection Cloud. SHA256 = D1F4A4338C1EE5DF592BDFD830988A7C74C6F631B0C3D4816357BB1EEAC491AF
C:\Users\Ivan\Desktop\2017.2.17\080.vir
  [DETECTION] Contains recognition pattern of the HTML/ExpKit.Gen2 HTML script virus
C:\Users\Ivan\Desktop\2017.2.17\082.vir
  [DETECTION] Is the TR/BAS.Dloader.bzghb Trojan
C:\Users\Ivan\Desktop\2017.2.17\083.vir
  [DETECTION] Is the TR/Crypt.ASPM.Gen Trojan
C:\Users\Ivan\Desktop\2017.2.17\085.vir
  [DETECTION] Is the TR/Crypt.ZPACK.aldah Trojan
C:\Users\Ivan\Desktop\2017.2.17\087.vir
  [DETECTION] Is the TR/Dropper.VB.qeomz Trojan
C:\Users\Ivan\Desktop\2017.2.17\088.vir
  [DETECTION] Is the TR/Symmi.uvugn Trojan
    --> C:\Users\Ivan\Desktop\2017.2.17\090.vir
        [1] Archive type: NSIS
      --> ProgramFilesDir/ridgling.dll
          [DETECTION] Is the TR/Injector.qwrzm Trojan
          [WARNING]   Infected files in archives cannot be repaired
C:\Users\Ivan\Desktop\2017.2.17\090.vir
  [DETECTION] Is the TR/Injector.qwrzm Trojan
The file 'C:\Users\Ivan\Desktop\2017.2.17\091.vir' was scanned with the Protection Cloud. SHA256 = A5A197AEFC0A52A101B7653BFE44CE45D97967231958D45D7788720312285590
C:\Users\Ivan\Desktop\2017.2.17\092.vir
  [DETECTION] Is the TR/Dropper.VB.zfxji Trojan
C:\Users\Ivan\Desktop\2017.2.17\093.vir
  [DETECTION] Contains recognition pattern of the WORM/Sobig.F worm
The file 'C:\Users\Ivan\Desktop\2017.2.17\094.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 8B3F1482A784537D2C98372A1F1B04B19A306EA4A4461BFD3C2F9A689318EB05
C:\Users\Ivan\Desktop\2017.2.17\094.vir (SHA-256: 8b3f1482a784537d2c98372a1f1b04b19a306ea4a4461bfd3c2f9a689318eb05)
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\094.vir' has been uploaded to the Protection Cloud and analyzed.
C:\Users\Ivan\Desktop\2017.2.17\095.vir
  [DETECTION] Is the TR/Crypt.Xpack.upizg Trojan
C:\Users\Ivan\Desktop\2017.2.17\096.vir
  [DETECTION] Is the TR/Dropper.VB.heoqv Trojan
C:\Users\Ivan\Desktop\2017.2.17\098.vir
  [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
C:\Users\Ivan\Desktop\2017.2.17\099.vir
  [DETECTION] Contains virus patterns of Adware ADWARE/Adstantinko.V
C:\Users\Ivan\Desktop\2017.2.17\101.vir
  [DETECTION] Contains recognition pattern of the HTML/ExpKit.Gen2 HTML script virus
C:\Users\Ivan\Desktop\2017.2.17\102.vir
  [DETECTION] Is the TR/Crypt.Xpack.frhng Trojan
C:\Users\Ivan\Desktop\2017.2.17\104.vir
  [DETECTION] Contains code of the W97M/Agent.8958411 Word macro virus
The file 'C:\Users\Ivan\Desktop\2017.2.17\105.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 2EFCC42C053A177B49BE3E281AAAFD693DAC7642BBB1D53A58C2BEDEFE5680A6
C:\Users\Ivan\Desktop\2017.2.17\105.vir (SHA-256: 2efcc42c053a177b49be3e281aaafd693dac7642bbb1d53a58c2bedefe5680a6)
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\105.vir' has been uploaded to the Protection Cloud and analyzed.
C:\Users\Ivan\Desktop\2017.2.17\107.vir
  [DETECTION] Is the TR/Spy.21293.1 Trojan
C:\Users\Ivan\Desktop\2017.2.17\108.vir
  [DETECTION] Is the TR/Crypt.Xpack.aawzz Trojan
C:\Users\Ivan\Desktop\2017.2.17\113.vir
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/Backdoor.gzgtr back-door program
C:\Users\Ivan\Desktop\2017.2.17\115.vir
  [DETECTION] Is the TR/Crypt.ZPACK.hfxva Trojan
C:\Users\Ivan\Desktop\2017.2.17\116.vir
  [DETECTION] Is the TR/Crypt.Xpack.sokzd Trojan
    --> C:\Users\Ivan\Desktop\2017.2.17\118.vir
        [1] Archive type: RAR SFX (self extracting)
      --> 84md.dll
          [DETECTION] Is the TR/Injector.atiqy Trojan
          [WARNING]   Infected files in archives cannot be repaired
C:\Users\Ivan\Desktop\2017.2.17\118.vir
  [DETECTION] Is the TR/Injector.atiqy Trojan
C:\Users\Ivan\Desktop\2017.2.17\120.vir
  [DETECTION] Is the TR/Crypt.ZPACK.oewpd Trojan
The file 'C:\Users\Ivan\Desktop\2017.2.17\017.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 61BD86205D59413CE265E53BEE1F655C724FA22DAA5C383CF79E89AE94C48556
C:\Users\Ivan\Desktop\2017.2.17\017.vir (SHA-256: 61bd86205d59413ce265e53bee1f655c724fa22daa5c383cf79e89ae94c48556)
  [DETECTION] Is the TR/Crypt.ZPACK.Gen4 (Cloud) Trojan
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\017.vir' has been uploaded to the Protection Cloud and analyzed.
The file 'C:\Users\Ivan\Desktop\2017.2.17\022.vir' was found in the cache; the Protection Cloud scan was skipped. SHA256 = E7CAC05AA20045667131FFDDBD79124310DCDC4217EC82EADB3AA0B110C148D9
The file 'C:\Users\Ivan\Desktop\2017.2.17\065.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 578D56EECD8EDFE514C4E25CA931C580A6D512A2F18F095357D3D5ED2141CA85
C:\Users\Ivan\Desktop\2017.2.17\065.vir (SHA-256: 578d56eecd8edfe514c4e25ca931c580a6d512a2f18f095357d3d5ed2141ca85)
  [DETECTION] Is the TR/Crypt.XPACK.Gen2 (Cloud) Trojan
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\065.vir' has been uploaded to the Protection Cloud and analyzed.
The file 'C:\Users\Ivan\Desktop\2017.2.17\094.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 8B3F1482A784537D2C98372A1F1B04B19A306EA4A4461BFD3C2F9A689318EB05
C:\Users\Ivan\Desktop\2017.2.17\094.vir (SHA-256: 8b3f1482a784537d2c98372a1f1b04b19a306ea4a4461bfd3c2f9a689318eb05)
  [DETECTION] Contains suspicious code HEUR/APC (Cloud)
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\094.vir' has been uploaded to the Protection Cloud and analyzed.
The file 'C:\Users\Ivan\Desktop\2017.2.17\105.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 2EFCC42C053A177B49BE3E281AAAFD693DAC7642BBB1D53A58C2BEDEFE5680A6
C:\Users\Ivan\Desktop\2017.2.17\105.vir (SHA-256: 2efcc42c053a177b49be3e281aaafd693dac7642bbb1d53a58c2bedefe5680a6)
  [DETECTION] Contains suspicious code HEUR/APC (Cloud)
  [INFO]      The file 'C:\Users\Ivan\Desktop\2017.2.17\105.vir' has been uploaded to the Protection Cloud and analyzed.[/mw_shl_code]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
wangkaka
发表于 2017-2-17 18:32:59 | 显示全部楼层
skyboybone 发表于 2017-2-17 16:57
断网就不行了,本地引擎太薄弱

金山这次吃了激素么,离线查杀率这么高

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
ShirahimeKanata
发表于 2017-2-17 18:33:10 | 显示全部楼层
本帖最后由 ShirahimeKanata 于 2017-2-17 21:08 编辑

ClamAV 无参数
-------------------------------------------------------------------------------

005.vir: Xls.Trojan.Agent-36856 FOUND
015.vir: Win.Trojan.Application-940 FOUND
028.vir: Win.Trojan.Neshuta-1 FOUND
043.vir: Doc.Dropper.Agent-5848085-0 FOUND
078.vir: Java.Malware.Agent-5846382-0 FOUND
083.vir: Win.Trojan.OnlineGames-2520 FOUND
093.vir: Win.Worm.Sobig-6 FOUND

----------- SCAN SUMMARY -----------
Known viruses: 5838331
Engine version: 0.99.2
Scanned directories: 0
Scanned files: 120
Infected files: 7
Data scanned: 37.53 MB
Data read: 26.21 MB (ratio 1.43:1)
Time: 23.111 sec (0 m 23 s)
wangkaka
发表于 2017-2-17 18:39:44 | 显示全部楼层
skyboybone 发表于 2017-2-17 16:57
断网就不行了,本地引擎太薄弱

我错了,开始解压时没有关闭监控有云缓存,我联网查杀后再次断网查杀,变成杀70个了,关键报毒名是离线kvm的报毒名,害的我以为kvm离线今天爆发了

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
skyboybone
发表于 2017-2-17 18:51:39 | 显示全部楼层
wangkaka 发表于 2017-2-17 18:39
我错了,开始解压时没有关闭监控有云缓存,我联网查杀后再次断网查杀,变成杀70个了,关键报毒名是离线kv ...

是有缓存的,所以我都是下载完先断网测。
这是真正的断网结果,不过我没发出来,既然你提到我就发一下吧
[mw_shl_code=css,true]扫描时间:[2017-02-17 16:31:00]
扫描用时:[00:01:08]
扫描类型:自定义查杀
扫描文件总数:409
扫描速度:5文件/秒
发现威胁:8个
清除威胁:0个
=============================================
[2017-02-17 16:32:49]
威胁:c:\users\john\desktop\2017.2.17\005.vir
类型:macro.todole.a
处理方式:未处理

[2017-02-17 16:32:49]
威胁:c:\users\john\desktop\2017.2.17\028.vir
类型:win32.neshta.nl.30720
处理方式:未处理

[2017-02-17 16:32:49]
威胁:c:\users\john\desktop\2017.2.17\029.vir
类型:win32.heur.kvmh004.a
处理方式:未处理

[2017-02-17 16:32:49]
威胁:c:\users\john\desktop\2017.2.17\068.vir
类型:win32.heur.kvmh004.a
处理方式:未处理

[2017-02-17 16:32:49]
威胁:c:\users\john\desktop\2017.2.17\093.vir
类型:win32.heur.kvmh004.a
处理方式:未处理

[2017-02-17 16:32:49]
威胁:c:\users\john\desktop\2017.2.17\098.vir
类型:win32.heur.kvmh015.a
处理方式:未处理

[2017-02-17 16:32:49]
威胁:c:\users\john\desktop\2017.2.17\108.vir
类型:win32.heur.kvmh004.a
处理方式:未处理

[2017-02-17 16:32:49]
威胁:c:\users\john\desktop\2017.2.17\116.vir
类型:win32.heur.kvmh004.a
处理方式:未处理
[/mw_shl_code]
wangkaka
发表于 2017-2-17 18:58:18 | 显示全部楼层
skyboybone 发表于 2017-2-17 18:51
是有缓存的,所以我都是下载完先断网测。
这是真正的断网结果,不过我没发出来,既然你提到我就发一下吧 ...

恩,我虚拟机里测过了和你一样,这坑爹的报毒机制
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-11-25 04:52 , Processed in 0.101170 second(s), 14 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表