【11.15】#VirusPackage 34x

显示全部楼层 · 发表于 2017-11-15 21:39:38

三剑客

显示全部楼层 · 发表于 2017-11-16 09:06:08

本帖最后由 540923555 于 2017-11-16 14:38 编辑

WD删除13，修复4，MISS17

二扫删除16，修复5，MISS 13

显示全部楼层 · 发表于 2017-11-16 14:45:58

阿童木来了发表于 2017-11-15 20:34
卡巴剩14个！！！

尊敬的用户您好，

Hello,

New malicious software was found in the attached file. Its detection will be included in the next update.
Thank you for your help.

[Trojan]47376664f0ebd6cf799abaee60fbfd4c018df94ef8973c71bfa692cdacc805e5.bin.exe - Trojan-Dropper.Win32.Agent
[Worm]386b96d066516d448290d64cdebc5b403bb631455ae046e76879a2b6664a9bab.bin.vbe - Worm.VBS.Agent

These files are already detected. Please update your bases.

[Backdoor]3b3a15762d20c30bcc2b16d723d5e97a50fc0ce387d89809e2380e90941b9b16.bin.exe - UDS: DangerousObject.Multi.Generic
[Downloader]763e358946b323a6153e7ab3940144b54be60bc7e4271107daad3dd5bee3dbc4.bin.DOC - HEUR:Trojan.Script.Agent.gen
[Dropper]85e118e081de910206b4b16dc879d364aca5e80520249c97af13842c4b9bf02b.bin.exe - Trojan.MSIL.Crypt.fkif
[Injector]9c0a6bc83123176093c677ee724d76c4449ae38aa09f0e983a7a634d315450f5.bin.exe - UDS:DangerousObject.Multi.Generic
[Macro]164245625fabdfc0af1296b6deb4cccce5aab179c973d9f5659be9f4b3fce51d.bin.DOC - HEUR:Trojan-Downloader.Script.Generic
[Ransom]d22455e48c032ecb70bbd5ffcc8c5e7254dd6d2c149637344ef33b4cf9709307.bin.exe - HackTool.MSIL.Crypter.ag
[Trojan]39c49f6d1d7636698f7b1da3f7528798ed4c72d4ba2fb836abfe36cb26b77a0d.bin.exe - Trojan-Downloader.Win32.Upatre.ggay

No malicious software was found in the attached file.

[Adware.Hoax]ce3792aebc0fa81688c68b71b03d973372de6f1aa0349f5f01dbc20324089619.bin.exe

显示全部楼层 · 发表于 2017-11-16 16:13:36

本帖最后由和泉纱雾于 2017-11-16 16:46 编辑

10/34

显示全部楼层 · 发表于 2017-11-16 18:37:51

本帖最后由 bbs2811125 于 2017-11-16 18:39 编辑

ESET kill 33x其中修复3x

Log
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Adware.Hoax]ce3792aebc0fa81688c68b71b03d973372de6f1aa0349f5f01dbc20324089619.bin.exe - a variant of Win32/Hoax.MovieMaker.A application - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Backdoor]3b3a15762d20c30bcc2b16d723d5e97a50fc0ce387d89809e2380e90941b9b16.bin.exe - a variant of Win32/Injector.DTNT trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Backdoor]3cd02fb56ac222506c65d5cb1087f4fe3958711cbabd66b4ffa41c43a45e66ba.bin.jar - a variant of Generik.FHOUQQY trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[CoinMiner]92a86a480f77d6a23fb2793836e72c9013c2fa65eb680a472f1230a373e36448.bin.JS - JS/CoinMiner.F potentially unsafe application - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Downloader]01f2a5bdd4175bbaf03c3827e073dca34cbb6416c681cf2f7a3c154f67b4cb15_3KIKBhSYtn.bin.DOCX » ZIP » word/embeddings/oleObject1.bin » OLEDATA » 1.vbs - VBS/TrojanDownloader.Agent.PJJ trojan - deleted
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Downloader]763e358946b323a6153e7ab3940144b54be60bc7e4271107daad3dd5bee3dbc4.bin.DOC - VBA/TrojanDownloader.Agent.FGZ trojan - cleaned
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Downloader]b5d88fee7000cd53e4fd8aed2ddc8b78e888bf3c88285502da3701f4248e63e0.bin.exe - Win32/Agent.YIJ trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Downloader]b5fcc77c1584e09bfebf6cf74400afcf559ea548287f793d93240ececb7db701.bin.XLS - VBA/TrojanDownloader.Agent.FGU trojan - cleaned
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Downloader]bd7c63262f87d371b63acb55c38ad0d1231a657dfcbf7571bcb8d217d5a9f31f.bin.DOCM - a variant of Generik.BFMMAVM trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Downloader]d52c563d2d4b6a2a75379b338b5cc831b53694195556ae6ddab7713c0b9d32c5_wmMIhZzyTq.bin.DOCX - VBS/TrojanDownloader.Agent.PJJ trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Downloader]ed94199c36787ac9fb191d242ab0ac40c0a7b25dd2e086f71576ac3e3ac605b8.bin.DOCX » ZIP » word/embeddings/oleObject1.bin » OLEDATA » 3.vbs - VBS/TrojanDownloader.Agent.PJK trojan - deleted
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Dropper]85e118e081de910206b4b16dc879d364aca5e80520249c97af13842c4b9bf02b.bin.exe - a variant of MSIL/Kryptik.LOF trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Exploit]3c47295e2fb9bdd9b6e1623204a2dfc9db74498d076e04bd32e64041b0e7b758.bin.rtf - Win32/Exploit.CVE-2017-0199.DU trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Exploit]42b94a48148c3ffd0f92c992a55c9763adfeaea66a0336357e7ebeb3f57f78ba.bin.rtf - Win32/Exploit.CVE-2017-0199.DS trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Exploit]84593a125442a9541b2992a2934f4db5cbe1a87b6e5f5edd17982e677667c53f.bin.doc - Win32/Exploit.CVE-2017-8759.J trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Exploit]daf085f4f54495f86297be0b10c9c2b2489925dccc1d8be748dbd81bcf2e9dc8.bin.rtf - Win32/Exploit.CVE-2017-0199.B trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Exploit]de0c9b3a9639d38f0143f202a9cd599699854604126d4204e9c104d23ec4242e.bin.DOC - Java/Adwind.AAU trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Injector]030944666a743ecbb5eb821af9d1cf8a5e835a20d45ea02d4c4c46a2457a6c1f.bin.exe - a variant of MSIL/Injector.TDS trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Injector]9c0a6bc83123176093c677ee724d76c4449ae38aa09f0e983a7a634d315450f5.bin.exe - a variant of Win32/Injector.DTMG trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Injector]d7b079350f9365275d0299bcc20486050d94b8b5d59482bc9d4fe29cd82a0c5c.bin.exe » WINRARSFX » CMT - RAR/Agent.CE trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Injector]d7b079350f9365275d0299bcc20486050d94b8b5d59482bc9d4fe29cd82a0c5c.bin.exe » WINRARSFX » okg.jpg - Win32/Injector.Autoit.CNO trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Injector]d7b079350f9365275d0299bcc20486050d94b8b5d59482bc9d4fe29cd82a0c5c.bin.exe » WINRARSFX » nuv-dfm - Win32/Injector.Autoit.DDO trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Injector]f5b7c5e7702bc17b7435c8f35fd0b1dc2a33535b4c67871f391b9812afeac76d.bin.exe - a variant of Win32/Injector.DTNT trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Java.Agent]7f389b308e96b3771ed4a2108c6e5ae86de186f4dcc57651d7b9169d30bfd168.bin.jar » ZIP » omi/bemepi/Asanogi.class - a variant of Java/Kryptik.RF trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Macro]164245625fabdfc0af1296b6deb4cccce5aab179c973d9f5659be9f4b3fce51d.bin.DOC - VBA/TrojanDownloader.Agent.FHA trojan - cleaned
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Ransom]d22455e48c032ecb70bbd5ffcc8c5e7254dd6d2c149637344ef33b4cf9709307.bin.exe » CONFUSER » deobfuscated.exe - a variant of MSIL/Filecoder.IQ trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Trojan.js]705876c51b6e6c32f3be3d54349c7892e3657535a02f28748d186aa4f3a710c9.bin.DOCM » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.FFR trojan - deleted
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Trojan.js]e20f782397dc791f3d673a98e3c5d12a2bce40ef0fdae8234b694310993102a3.js - JS/TrojanDownloader.Nemucod.DUP trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Trojan.TrickBot]a1466d34aec7dd65892cccee71f5a4722a6b850fb1d849777c9bcc3613e75473.bin.exe - Win32/TrickBot.Z trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Trojan]39c49f6d1d7636698f7b1da3f7528798ed4c72d4ba2fb836abfe36cb26b77a0d.bin.exe - Win32/Dridex.BE trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Trojan]47376664f0ebd6cf799abaee60fbfd4c018df94ef8973c71bfa692cdacc805e5.bin.exe - a variant of Win32/Injector.DTMG trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Trojan]f904ebddd3dc7c293a311041bf3abe1b6048b405abcdc66ed9d2060fd1629c9f.bin.exe - a variant of Win32/Injector.DTNQ trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[VBKrypt]f0652125b5af4e5512ad2e5834d1d0c807eeefafbe5057d6f89aa5d19b87df27.bin.exe - a variant of Win32/Injector.DTNV trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[VirTool]69968faeeb37a9fe7a41946f98a87765ce4e4b2dd307252228fb142d519609a1.bin.exe - a variant of Win32/Injector.DRAY trojan - cleaned by deleting [1]
C:\Users\Administrator\Desktop\Virus34x+1115\Virus34x 1115\[Worm]386b96d066516d448290d64cdebc5b403bb631455ae046e76879a2b6664a9bab.bin.vbe - VBS/Agent.NHT worm - cleaned by deleting [1]

复制代码

剩余1x Dropper， SEP kill Trojan.Gen.2

显示全部楼层 · 发表于 2017-11-16 18:49:39

bbs2811125 发表于 2017-11-16 18:37
ESET kill 33x其中修复3x

ESET可以

但是已经隔天了，当天测会比较好

显示全部楼层 · 发表于 2017-11-17 08:50:00

191196846 发表于 2017-11-16 18:49
ESET可以

但是已经隔天了，当天测会比较好

当天没看到

[病毒样本] 【11.15】#VirusPackage 34x

本帖子中包含更多资源

评分

本帖子中包含更多资源