收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 #PACKAGE 0621
12下一页
返回列表 发新帖
查看: 2713|回复: 19
收起左侧

[病毒样本] #PACKAGE 0621

[复制链接]
Jerry.Lin
发表于 2018-6-21 21:14:06 | 显示全部楼层 |阅读模式
本帖最后由 191196846 于 2018-6-21 21:26 编辑

蓝奏



Total : 26

========================================
These products were tested before package released:

Products                        Pre-execute    Advanced block     Miss         Status

Windows Defender               8                           4                     14           Infected
Qihoo 360 SD                       19                          1                      6           Infected


Note: Pre-execute includes On-Access scan or exeute scan before malware is running on memory.
          Advanced block includes behavior block or other techiques that successufully terminate running malware.
          Miss includes situations: no any Alert or warning from AV software.
          Status means if there are any malicious items, including processes, images, drivers, autoruns, regs etc., on the current system, the system is infected; otherwise it is clean.

========================================


#勿传VT
#在样本有效期内(24小时),建议无需手动上报样本至厂商,便于其他人测试行为拦截,响应速度等
#样本序号以收集时间顺序排序,越大代表越接近现在时间


回帖格式建议

杀软名称 + 时间
查杀数量+查杀率


例如:
XXX 20:39
Samples(5/10) 50%


评分

参与人数 4人气 +4 收起 理由
wangkaka + 1 版区有你更精彩: )
B100D1E55 + 1
Dust-;羅錠 + 1 根据版规,加1分以示鼓励
petr0vic + 1 版区有你更精彩: )

查看全部评分

回复

举报

ynghaos
发表于 2018-6-21 22:23:08 | 显示全部楼层
bd+ns kill 20;双击,atd kill 2, sonar kill4,
回复

举报

ATP_synthase
发表于 2018-6-22 11:34:13 | 显示全部楼层
本帖最后由 wusiyuanjh 于 2018-6-22 11:35 编辑

卡巴 目前扫描加双击只剩25号不杀,6、20、24为双击主防击杀,25/26

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

UBitch
发表于 2018-6-22 12:47:42 | 显示全部楼层
本帖最后由 UBitch 于 2018-6-22 12:50 编辑

McAfee 12:46
右键Kill 17,双击Kill 4,共Kill 21
查杀率77.8%


回复

举报

Dust-;羅錠
发表于 2018-6-21 21:24:10 | 显示全部楼层
ESET
21/26=80.7%

C:\Users\yilan\Downloads\PACKAGE 06212\(1).exe - a variant of MSIL/Kryptik.OIM trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(10).exe - a variant of MSIL/Kryptik.OMU trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(11).exe - a variant of MSIL/Kryptik.NUV trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(12).exe » NSIS » aside.dll - Win32/Injector.DYTX trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(14).exe - a variant of MSIL/Kryptik.NBN trojan

C:\Users\yilan\Downloads\PACKAGE 06212\(16).exe - a variant of MSIL/Kryptik.IGL trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(17).exe - Win32/PSW.Fareit.L trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(18).exe - a variant of Win32/Formbook.AA trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(19).exe - a variant of Win32/Injector.DYUJ trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(2).exe - a variant of MSIL/Injector.SWC trojan

C:\Users\yilan\Downloads\PACKAGE 06212\(21).exe - a variant of Win32/Injector.DYUJ trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(22).exe - a variant of MSIL/Kryptik.ONB trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(23).exe - a variant of Win32/GenKryptik.CDDL trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(24).exe » INNO » {tmp}\data.dll - a variant of Win32/Kryptik.GFYW trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(26).exe - a variant of Win32/Injector.DXSR trojan

C:\Users\yilan\Downloads\PACKAGE 06212\(3).exe - a variant of Win32/Kryptik.GHZP trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(4).exe - MSIL/NanoCore.E trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(5).exe - a variant of MSIL/Kryptik.OIM trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(7).exe - a variant of Win32/TrojanDownloader.Banload.YEZ trojan
C:\Users\yilan\Downloads\PACKAGE 06212\(8).exe - a variant of MSIL/Kryptik.DTZ trojan

C:\Users\yilan\Downloads\PACKAGE 06212\(9).exe - a variant of MSIL/Autorun.Spy.Agent.CM worm

回复

举报

YU2711
发表于 2018-6-21 21:33:40 | 显示全部楼层
本帖最后由 YU2711 于 2018-6-21 21:37 编辑

KASPERSKY  SCAN   17/26



2018/6/21 下午 09:17:09    检测到恶意对象    WinRAR 壓縮工具    User\   已检测: UDS:DangerousObject.Multi.Generic    D:\(1).exe/data0023.res    云分析   
2018/6/21 下午 09:19:30    检测到恶意对象    WinRAR 壓縮工具    User\    已检测: HEUR:Backdoor.MSIL.Agent.gen    D:\(1).exe    机器学习   
2018/6/21 下午 09:19:31    检测到恶意对象    WinRAR 壓縮工具    User\    已检测: HEUR:Trojan.Win32.Generic    D:\(9).exe    专家分析   
2018/6/21 下午 09:19:32    检测到恶意对象    WinRAR 壓縮工具    User\    已检测: HEUR:Trojan.Win32.Generic    D:\(9).exe    专家分析   
2018/6/21 下午 09:19:34    检测到恶意对象    WinRAR 壓縮工具    User\    已检测: HEUR:Trojan-Downloader.Win32.Agent.gen    D:\(7).exe    机器学习   
2018/6/21 下午 09:19:34    检测到恶意对象    Windows Explorer    User\  已检测: HEUR:Trojan-Spy.Win32.Agent.gen    D:\(2).exe    机器学习   
2018/6/21 下午 09:19:35    检测到恶意对象    Windows Explorer    User\    已检测: HEUR:Trojan.Win32.Agent.gen    D:\(19).exe    机器学习   
2018/6/21 下午 09:19:36    检测到恶意对象    Windows Explorer    User\    已检测: HEUR:Trojan.MSIL.Generic    D:\(11).exe    机器学习   
2018/6/21 下午 09:19:36    检测到恶意对象    Windows Explorer    User\   已检测: UDS:DangerousObject.Multi.Generic    D:\(10).exe/data0008.res    云分析   
2018/6/21 下午 09:19:37    检测到恶意对象    Windows Explorer    User\    已检测: HEUR:Backdoor.Win32.Agent.gen    D:\(10).exe    机器学习   
2018/6/21 下午 09:19:37    检测到恶意对象    Windows Explorer    User\    已检测: Backdoor.Win32.Androm.qaxl    D:\(17).exe    自动分析   
2018/6/21 下午 09:19:38    检测到恶意对象    Windows Explorer    User\    已检测: HEUR:Trojan-Downloader.Win32.Agent.gen    D:\(14).exe    机器学习   
2018/6/21 下午 09:19:39    检测到恶意对象    Windows Explorer    User\    已检测: UDS:DangerousObject.Multi.Generic    D:\(12).exe/aside.dll    云分析   
2018/6/21 下午 09:19:40    检测到恶意对象    Windows Explorer    User\    已检测: HEUR:Trojan-Ransom.Win32.Agent.gen    D:\(12).exe    机器学习   
2018/6/21 下午 09:19:41    检测到恶意对象    Windows Explorer    User\    已检测: HEUR:Trojan.MSIL.Agent.gen    D:\(22).exe    机器学习   
2018/6/21 下午 09:19:42    检测到恶意对象    Windows Explorer    User\    已检测: HEUR:Trojan-Dropper.Win32.Generic    D:\(15).exe    机器学习   
2018/6/21 下午 09:19:43    检测到恶意对象    Windows Explorer    User\    已检测: HEUR:Trojan.Win32.Agent.gen    D:\(21).exe    机器学习   
2018/6/21 下午 09:19:44    检测到恶意对象    Windows Explorer    User\    已检测: HEUR:Trojan.MSIL.Generic    D:\(16).exe    机器学习   
2018/6/21 下午 09:19:45    检测到恶意对象    Windows Explorer    User\    已检测: HEUR:Trojan.Win32.Generic    D:\(18).exe    专家分析   

<Scan_Objects$1722>: 完成时间: 11 分钟以前   (事件: 22, 对象: 130, 威胁: 2, 时间: 00:01:14)   
2018/6/21 下午 09:18:48    检测到恶意对象    D:\(4).exe    已检测: HEUR:Trojan.MSIL.Generic    机器学习    User\
2018/6/21 下午 09:19:30    检测到恶意对象    D:\(5).exe/data0013.res    已检测: UDS:DangerousObject.Multi.Generic    云分析    User\   
2018/6/21 下午 09:19:31    检测到恶意对象    D:\(5).exe    已检测: HEUR:Backdoor.MSIL.Agent.gen    机器学习    User\   


回复

举报

Jirehlov1234
发表于 2018-6-21 21:36:08 来自手机 | 显示全部楼层
YU2711 发表于 2018-6-21 21:33
KASPERSKY  SCAN   17/26



“专家分析”和“自动分析”是啥。。。。。@pal家族
回复

举报

Dust-;羅錠
发表于 2018-6-21 21:37:16 | 显示全部楼层
Jirehlov1234 发表于 2018-6-21 21:36
“专家分析”和“自动分析”是啥。。。。。@pal家族

User\我是真天才 又是啥?
回复

举报

Jerry.Lin
 楼主| 发表于 2018-6-21 21:38:08 | 显示全部楼层
  21:36

(26/26) 100%

  1. 2018/6/21, 21:36:16 [Real-Time Protection] Malware found
  2.         The pattern of 'DR/Delphi.b264c7 (Cloud) [DR/Delphi.b264c7]'
  3.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(26).exe'.
  4.         Action performed: Delete file
  5.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  7. 2018/6/21, 21:34:45 [Real-Time Protection] Malware found
  8.         The pattern of 'HEUR/APC (Cloud) [HEUR/APC]'
  9.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(25).exe'.
  10.         Action performed: Delete file
  11.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  13. 2018/6/21, 21:34:28 [Real-Time Protection] Malware found
  14.         The pattern of 'ADWARE/MultiPlug.Gen4 (Cloud) [ADWARE/MultiPlug.Gen4]'
  15.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(24).exe'.
  16.         Action performed: Delete file
  17.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  19. 2018/6/21, 21:33:49 [Real-Time Protection] Malware found
  20.         The pattern of 'TR/Dropper.Gen [trojan]'
  21.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(22).exe'.
  22.         Action performed: Delete file
  23.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  25. 2018/6/21, 21:33:42 [Real-Time Protection] Malware found
  26.         The pattern of 'DR/Delphi.fa115f (Cloud) [DR/Delphi.fa115f]'
  27.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(21).exe'.
  28.         Action performed: Delete file
  29.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  31. 2018/6/21, 21:33:20 [Real-Time Protection] Malware found
  32.         The pattern of 'HEUR/APC (Cloud) [HEUR/APC]'
  33.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(20).exe'.
  34.         Action performed: Delete file
  35.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  37. 2018/6/21, 21:32:55 [Real-Time Protection] Malware found
  38.         The pattern of 'DR/Delphi.5b037f (Cloud) [DR/Delphi.5b037f]'
  39.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(19).exe'.
  40.         Action performed: Delete file
  41.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  43. 2018/6/21, 21:32:29 [Real-Time Protection] Malware found
  44.         The pattern of 'TR/Crypt.ZPACK.Gen [trojan]'
  45.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(18).exe'.
  46.         Action performed: Delete file
  47.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  49. 2018/6/21, 21:32:23 [Real-Time Protection] Malware found
  50.         The pattern of 'TR/Dropper.VB.77e16c (Cloud) [TR/Dropper.VB.77e16c]'
  51.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(17).exe'.
  52.         Action performed: Delete file
  53.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  55. 2018/6/21, 21:32:08 [Real-Time Protection] Malware found
  56.         The pattern of 'TR/Dropper.Gen [trojan]'
  57.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(16).exe'.
  58.         Action performed: Delete file
  59.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  61. 2018/6/21, 21:32:04 [Real-Time Protection] Malware found
  62.         The pattern of 'TR/ATRAPS.Gen [trojan]'
  63.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(13).exe'.
  64.         Action performed: Delete file
  65.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  67. 2018/6/21, 21:31:53 [Real-Time Protection] Malware found
  68.         The pattern of 'TR/Crypt.XPACK.0ec99b (Cloud) [TR/Crypt.XPACK.0ec99b]'
  69.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(12).exe'.
  70.         Action performed: Delete file
  71.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  73. 2018/6/21, 21:31:33 [Real-Time Protection] Malware found
  74.         The pattern of 'TR/Dropper.MSIL.0903ae (Cloud) [TR/Dropper.MSIL.0903ae]'
  75.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(11).exe'.
  76.         Action performed: Delete file
  77.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  79. 2018/6/21, 21:31:11 [Real-Time Protection] Malware found
  80.         The pattern of 'TR/Dropper.MSIL.e3abe0 (Cloud) [TR/Dropper.MSIL.e3abe0]'
  81.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(10).exe'.
  82.         Action performed: Delete file
  83.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  85. 2018/6/21, 21:30:51 [Real-Time Protection] Malware found
  86.         The pattern of 'TR/Dropper.Gen [trojan]'
  87.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(9).exe'.
  88.         Action performed: Delete file
  89.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  91. 2018/6/21, 21:30:47 [Real-Time Protection] Malware found
  92.         The pattern of 'HEUR/AGEN.1008943 [heuristic]'
  93.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(8).exe'.
  94.         Action performed: Delete file
  95.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  97. 2018/6/21, 21:30:42 [Real-Time Protection] Malware found
  98.         The pattern of 'TR/Dldr.Delphi.a56f20 (Cloud) [TR/Dldr.Delphi.a56f20]'
  99.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(7).exe'.
  100.         Action performed: Delete file
  101.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  103. 2018/6/21, 21:30:04 [Real-Time Protection] Malware found
  104.         The pattern of 'HEUR/AGEN.1025504 [heuristic]'
  105.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(6).exe'.
  106.         Action performed: Delete file
  107.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  109. 2018/6/21, 21:29:22 [FireWall] Service activated
  110.         The service has been activated.

  112. 2018/6/21, 21:29:22 [Real-Time Protection] Service started
  113.         Service started.
  114.         Version of service:        15.0.36.198

  116. 2018/6/21, 21:29:19 [Helper Service] Service started
  117.         Service started.
  118.         Version of service:        15.0.36.198
  119.         Version of Engine:        8.3.52.4
  120.         Version of VDF:        8.14.59.228

  122. 2018/6/21, 21:28:43 [Real-Time Protection] Malware found
  123.         The pattern of 'TR/Dropper.MSIL.Gen7 [trojan]'
  124.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(4).exe'.
  125.         Action performed: Delete file
  126.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  128. 2018/6/21, 21:28:31 [Real-Time Protection] Malware found
  129.         The pattern of 'HEUR/AGEN.1002647 [heuristic]'
  130.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(2).exe'.
  131.         Action performed: Delete file
  132.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  134. 2018/6/21, 21:28:21 [Real-Time Protection] Malware found
  135.         The pattern of 'TR/Drop.Agent.smnny [trojan]'
  136.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(15).exe'.
  137.         Action performed: Delete file
  138.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  140. 2018/6/21, 21:28:20 [Real-Time Protection] Malware found
  141.         The pattern of 'TR/AD.Emotet.tixkp [trojan]'
  142.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(3).exe'.
  143.         Action performed: Delete file
  144.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  146. 2018/6/21, 21:28:19 [Real-Time Protection] Malware found
  147.         The pattern of 'TR/Kryptik.orddu [trojan]'
  148.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(14).exe'.
  149.         Action performed: Delete file
  150.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  152. 2018/6/21, 21:28:18 [Real-Time Protection] Malware found
  153.         The pattern of 'TR/AD.Emotet.tixkp [trojan]'
  154.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(3).exe'.
  155.         Action performed: Delete file
  156.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  158. 2018/6/21, 21:28:18 [Real-Time Protection] Malware found
  159.         The pattern of 'TR/Drop.Agent.smnny [trojan]'
  160.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(15).exe'.
  161.         Action performed: Delete file
  162.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  164. 2018/6/21, 21:28:17 [Real-Time Protection] Malware found
  165.         The pattern of 'TR/Drop.Agent.smnny [trojan]'
  166.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(15).exe'.
  167.         Action performed: Delete file
  168.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  170. 2018/6/21, 21:28:17 [Real-Time Protection] Malware found
  171.         The pattern of 'TR/Drop.Agent.smnny [trojan]'
  172.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(15).exe'.
  173.         Action performed: Delete file
  174.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  176. 2018/6/21, 21:28:17 [Real-Time Protection] Malware found
  177.         The pattern of 'TR/Kryptik.orddu [trojan]'
  178.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(14).exe'.
  179.         Action performed: Delete file
  180.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  182. 2018/6/21, 21:28:16 [Real-Time Protection] Malware found
  183.         The pattern of 'TR/AD.njLogger.bcmgm [trojan]'
  184.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(1).exe'.
  185.         Action performed: Delete file
  186.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  188. 2018/6/21, 21:28:15 [Real-Time Protection] Malware found
  189.         The pattern of 'TR/AD.njLogger.bcmgm [trojan]'
  190.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(1).exe'.
  191.         Action performed: Delete file
  192.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  194. 2018/6/21, 21:28:15 [Real-Time Protection] Malware found
  195.         The pattern of 'TR/Kryptik.pdgsn [trojan]'
  196.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(23).exe'.
  197.         Action performed: Delete file
  198.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  200. 2018/6/21, 21:28:15 [Real-Time Protection] Malware found
  201.         The pattern of 'TR/Kryptik.othhi [trojan]'
  202.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\PACKAGE 06212\(5).exe'.
  203.         Action performed: Delete file
  204.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

复制代码



本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

petr0vic
发表于 2018-6-21 21:39:57 | 显示全部楼层
瑞星ML社区版
14/26


瑞星RDM+社区版
23/26




本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

pal家族
发表于 2018-6-21 21:41:47 | 显示全部楼层
Jirehlov1234 发表于 2018-6-21 21:36
“专家分析”和“自动分析”是啥。。。。。@pal家族

kind of detection mechanism, isn't it?
回复

举报

心醉咖啡
发表于 2018-6-21 22:01:27 | 显示全部楼层
  1. 360杀毒扫描日志

  3. 病毒库版本:
  4. 扫描时间:2018-06-21 22:00:33
  5. 扫描用时:00:00:02
  6. 扫描类型:右键扫描
  7. 扫描文件总数:26
  8. 项目总数:19
  9. 清除项目数:19

  11. 扫描选项
  12. ----------------------
  13. 扫描所有文件:是
  14. 扫描压缩包:是
  15. 发现病毒处理方式:由用户选择处理
  16. 扫描磁盘引导区:是
  17. 扫描 Rootkit:是
  18. 使用云查杀引擎:是
  19. 使用QVM人工智能引擎:是
  20. 扫描建议修复项:是
  21. 常规引擎设置:未使用

  23. 扫描内容
  24. ----------------------
  25. F:\浏览器下载\PACKAGE 06212


  28. 白名单设置
  29. ----------------------


  32. 扫描结果
  33. ======================
  34. 高危风险项
  35. ----------------------
  36. F:\浏览器下载\PACKAGE 06212\(13).exe        HEUR/QVM20.1.FE3B.Malware.Gen        已删除
  37. F:\浏览器下载\PACKAGE 06212\(16).exe        感染型病毒(Win32/Trojan.7c5)        已删除
  38. F:\浏览器下载\PACKAGE 06212\(22).exe        感染型病毒(Win32/Trojan.289)        已删除
  39. F:\浏览器下载\PACKAGE 06212\(23).exe        感染型病毒(Win32/Trojan.23d)        已删除
  40. F:\浏览器下载\PACKAGE 06212\(1).exe        HEUR/QVM03.0.FE73.Malware.Gen        已删除
  41. F:\浏览器下载\PACKAGE 06212\(12).exe        HEUR/QVM42.1.FE73.Malware.Gen        已删除
  42. F:\浏览器下载\PACKAGE 06212\(11).exe        HEUR/QVM03.0.FE73.Malware.Gen        已删除
  43. F:\浏览器下载\PACKAGE 06212\(10).exe        HEUR/QVM03.0.FE73.Malware.Gen        已删除
  44. F:\浏览器下载\PACKAGE 06212\(25).exe        HEUR/QVM20.1.FE3B.Malware.Gen        已删除
  45. F:\浏览器下载\PACKAGE 06212\(17).exe        HEUR/QVM03.0.FE73.Malware.Gen        已删除
  46. F:\浏览器下载\PACKAGE 06212\(2).exe        HEUR/QVM03.0.FE73.Malware.Gen        已删除
  47. F:\浏览器下载\PACKAGE 06212\(19).exe        HEUR/QVM05.1.FE73.Malware.Gen        已删除
  48. F:\浏览器下载\PACKAGE 06212\(18).exe        HEUR/QVM20.1.FE73.Malware.Gen        已删除
  49. F:\浏览器下载\PACKAGE 06212\(21).exe        HEUR/QVM05.1.FE73.Malware.Gen        已删除
  50. F:\浏览器下载\PACKAGE 06212\(3).exe        HEUR/QVM19.1.FE73.Malware.Gen        已删除
  51. F:\浏览器下载\PACKAGE 06212\(4).exe        HEUR/QVM03.0.FE73.Malware.Gen        已删除
  52. F:\浏览器下载\PACKAGE 06212\(5).exe        HEUR/QVM03.0.FE73.Malware.Gen        已删除
  53. F:\浏览器下载\PACKAGE 06212\(7).exe        HEUR/QVM05.1.FE73.Malware.Gen        已删除
  54. F:\浏览器下载\PACKAGE 06212\(9).exe        HEUR/QVM03.0.FE73.Malware.Gen        已删除



  58. 可疑文件上传结果
  59. ----------------------
  60. f:\浏览器下载\package 06212\(1).exe        上传成功
  61. f:\浏览器下载\package 06212\(10).exe        上传成功
  62. f:\浏览器下载\package 06212\(11).exe        上传成功
  63. f:\浏览器下载\package 06212\(12).exe        上传成功
  64. f:\浏览器下载\package 06212\(17).exe        上传成功
  65. f:\浏览器下载\package 06212\(18).exe        上传成功
  66. f:\浏览器下载\package 06212\(19).exe        上传成功
  67. f:\浏览器下载\package 06212\(2).exe        上传成功
  68. f:\浏览器下载\package 06212\(21).exe        上传成功
  69. f:\浏览器下载\package 06212\(3).exe        上传成功
  70. f:\浏览器下载\package 06212\(4).exe        上传成功
  71. f:\浏览器下载\package 06212\(5).exe        上传成功
  72. f:\浏览器下载\package 06212\(7).exe        上传成功
  73. f:\浏览器下载\package 06212\(9).exe        上传成功
复制代码
回复

举报

Jirehlov1234
发表于 2018-6-21 22:05:48 | 显示全部楼层
pal家族 发表于 2018-6-21 21:41
kind of detection mechanism, isn't it?

没用过KES,以前没听过这俩词汇。是本地的启发吗?我好像见过有个词叫“启发分析”来着。。。有啥区别?
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-1 07:33 , Processed in 0.133855 second(s), 21 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表