38x (2020-05-02)

QVM360

https://kafanealg.lanzous.com/ic6kk3g

回帖要求：
测试时间：
测试产品
病毒库日期：
扫描结果：
双击结果：
日志：


如果你手上有多余的人气，请点击中间的评分，支持下我的工作，谢谢了！

a233

测试时间：2020/5/2 16:46
测试产品：AVG Internet Security
病毒库日期：200501-0
扫描结果：(32/38) 84.21% 其中修复3X

双击就算了
日志：
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\7.exe [L] Win32:PWSX-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\15.exe [L] Win32:PWSX-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\20.exe [L] Win32:PWSX-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\11.exe [L] Win32:Trojan-gen (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\4.exe [L] MSIL:Agent-DRD [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\34.exe [L] Win32:Evo-gen [Susp] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\22.exe [L] MSIL:Bladabindi-JK [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\16.exe [L] Win32:RATX-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\17.exe [L] FileRepMalware (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\21.exe [L] Win32:Malware-gen (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\9.exe [L] Win32:CoinminerX-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\8.exe [L] Win32:Trojan-gen (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\14.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\37.exe [L] Win32:PWSX-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\1.exe [L] Win32:Trojan-gen (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\10.elf [L] ELF:Mirai-NP [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\6.apk|>classes.dex [L] Android:SMForw-BR [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\13.exe [L] MSIL:Agent-DRD [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\23.doc|>word\media\image1.jpg [L] Other:Malware-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\24.exe [L] Win32:Trojan-gen (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\28.exe [L] Win32:RATX-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\25.exe [L] Win32:Trojan-gen (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\29.exe [L] Win32:Trojan-gen (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\30.doc|>word\media\image1.jpg [L] Other:Malware-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\31.exe [L] Win32:Trojan-gen (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\36.exe [L] Win32:DropperX-gen [Drp] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\5.exe [L] Win32:Malware-gen (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\38.exe [L] Win32:Trojan-gen (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\18.exe [L] Win32:RATX-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\12.exe [L] Win32:RATX-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\3.exe [L] Win32:BankerX-gen [Trj] (0)
C:\Users\Administrator.Windows8\Desktop\38x (2020-05-02)\32.exe [L] Win32:PWSX-gen [Trj] (0)

dreams521

测试时间：2020/5/2 17:23
测试产品：卡巴斯基安全软件 20.0.14.1085(j)
病毒库日期：2020/5/2  14:25
扫描结果：36/38    94.74%
双击结果：0/1（19.exe）
日志：

QVM360

测试时间：发帖时
测试产品：智量终端安全2.6，标准启发
病毒库日期：最新
扫描结果：32/36=88.89（其中1个elf，1个apk，智量不检测）
双击结果：3/4=75%（剩余一个停止工作，一个杀衍生物，样本无后续行为）
日志：

1. 9.exe - Heur.ML.PE.A
   
2. 8.exe - Trojan.Generic
   
3. 7.exe - Heur.ML.PE.C
   
4. 5.exe - Trojan.Generic
   
5. 4.exe - Heur.ML.PE.C
   
6. 38.exe - Heur.ML.PE.D
   
7. 37.exe - Heur.ML.PE.A
   
8. 36.exe - Trojan.Generic
   
9. 35.xlsm - HEUR.Office.ML.A
   
10. 34.exe - BackDoor.Generic
    
11. 33.exe - Heur.ML.PE.C
    
12. 32.exe - Heur.ML.PE.C
    
13. 31.exe - Heur.ML.PE.D
    
14. 30.doc - HEUR.Office.ML.A
    
15. 3.exe - Heur.ML.PE.A
    
16. 29.exe - Heur.ML.PE.D
    
17. 28.exe - Heur.ML.PE.C
    
18. 25.exe - Heur.ML.PE.D
    
19. 24.exe - Heur.ML.PE.D
    
20. 23.doc - HEUR.Office.ML.A
    
21. 22.exe - Heur.ML.PE.C
    
22. 21.exe - Trojan.Ransom.Generic
    
23. 20.exe - Heur.ML.PE.C
    
24. 19.exe - Heur.ML.PE.A
    
25. 18.exe - Heur.ML.PE.C
    
26. 17.exe - Heur.ML.PE.A
    
27. 16.exe - Heur.ML.PE.C
    
28. 15.exe - Heur.ML.PE.C
    
29. 13.exe - Heur.ML.PE.C
    
30. 12.exe - Heur.ML.PE.C
    
31. 11.exe - Heur.ML.PE.C
    
32. 1.exe - Heur.ML.PE.D
    
33. 27.jar - WIBD:HEUR.AntiVirusRecon.A
    
34. 26.jar - WIBD:HEUR.AntiVirusRecon.A
    
35. C:\Users\Username\qnodejs-node-v13.13.0-win-x64\qnodejs\wizard.js                         WIBD:HEUR.Trojan.KA
    
36. C:\Users\Username\qnodejs-node-v13.13.0-win-x64\qnodejs\qnodejs-5029f631.cmd              WIBD:HEUR.Trojan.KA
    

复制代码

QVM360

测试时间：2020/5/2
测试产品：ESET Internet Security
病毒库日期：最新
扫描结果：36/38=94.74%
剩余10.elf和19.exe


PS：19.exe是漏洞攻击程序，anyrun显示恶意

QVM360

@Nocria
不来测测 IKARUS？

chunyet

QVM360 发表于 2020-5-2 18:30
@Nocria
不来测测 IKARUS？

毒霸不会又是0吧

QVM360

chunyet 发表于 2020-5-2 18:49
毒霸不会又是0吧

毒霸2
扫描时间：[2020-05-02 19:07:22]
扫描用时：[00:00:17]
扫描类型：自定义查杀
扫描文件总数：151
扫描速度：8文件/秒
发现威胁：2个
清除威胁：2个
=============================================
[2020-05-02 19:07:50]
威胁：c:\users\vmware workstation\desktop\38x (2020-05-02)\13.exe
类型：heur.ssc.1608499.1216.(kcloud)
处理方式：删除

[2020-05-02 19:07:50]
威胁：c:\users\vmware workstation\desktop\38x (2020-05-02)\4.exe
类型：heur.ssc.1608527.1216.(kcloud)
处理方式：删除

mr_bean_forever

测试时间：20200502 19:28
测试产品:   McAfee Livesafe
病毒库日期：20200501
扫描结果：28/38=73.68%
双击结果：未测
日志：无法导出。

Nocria

QVM360 发表于 2020-5-2 18:30
@Nocria
不来测测 IKARUS？

最近成绩不太好，有点懒得测了。不知是不是因为奥地利那边疫情的影响

测试时间：2020/5/2 20:16
测试产品：IKARUS anti.virus
病毒库日期：102631 (02.05.2019 15:45)
扫描结果：(29/38)

1. [02.05.2020 20:15:07] On-demand scan started: "user_defined"
   
2. [02.05.2020 20:15:07] Found, 0.16s, SigName: "Trojan.VB.Crypt", SigId: 3814928, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\1.exe"
   
3. [02.05.2020 20:15:07] Found, 0.16s, SigName: "Win32.SuspectCrc", SigId: 299826168, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\11.exe"
   
4. [02.05.2020 20:15:07] Found, 0.16s, SigName: "Trojan.MSIL.Crypt", SigId: 299800060, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\12.exe"
   
5. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Trojan.MSIL.Bladabindi", SigId: 2879099, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\13.exe"
   
6. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Win32.SuspectCrc", SigId: 299831116, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\15.exe"
   
7. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Win32.SuspectCrc", SigId: 299847489, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\16.exe"
   
8. [02.05.2020 20:15:07] Found, 0.234s, SigName: "Trojan.Autoit", SigId: 3815831, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\17.exe"
   
9. [02.05.2020 20:15:07] Found, 0.234s, SigName: "Win32.SuspectCrc", SigId: 299847489, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\18.exe"
   
10. [02.05.2020 20:15:07] Found, 0.16s, SigName: "AdWare.Smshoax", SigId: 2494728, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\19.exe"
    
11. [02.05.2020 20:15:07] Found, 0.15s, SigName: "Trojan.MSIL.Inject", SigId: 3814943, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\20.exe"
    
12. [02.05.2020 20:15:07] Found, 0.15s, SigName: "Win32.SuspectCrc", SigId: 299829315, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\21.exe"
    
13. [02.05.2020 20:15:07] Found, 0.16s, SigName: "Trojan.MSIL.Disfa", SigId: 2751173, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\22.exe"
    
14. [02.05.2020 20:15:07] Found, 0.16s, SigName: "Trojan-Downloader.DOC.Agent", SigId: 263514094, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\23.doc"
    
15. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Trojan.VB.Crypt", SigId: 3814928, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\24.exe"
    
16. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Trojan.VB.Crypt", SigId: 3814928, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\25.exe"
    
17. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Trojan.VB.Crypt", SigId: 3814928, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\29.exe"
    
18. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Trojan.Win32.Emotet", SigId: 299845218, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\3.exe"
    
19. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Trojan-Downloader.DOC.Agent", SigId: 263514094, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\30.doc"
    
20. [02.05.2020 20:15:07] Found, 0.15s, SigName: "Trojan.VB.Crypt", SigId: 3814928, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\31.exe"
    
21. [02.05.2020 20:15:07] Found, 0.15s, SigName: "Trojan-Spy.Agent", SigId: 3815836, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\32.exe"
    
22. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Win32.SuspectCrc", SigId: 299835594, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\33.exe"
    
23. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Win32.SuspectCrc", SigId: 299793263, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\36.exe"
    
24. [02.05.2020 20:15:07] Found, 0.16s, SigName: "Trojan.Win32.Azorult", SigId: 3787994, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\37.exe"
    
25. [02.05.2020 20:15:07] Found, 0.16s, SigName: "Trojan.VB.Crypt", SigId: 3814928, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\38.exe"
    
26. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Trojan.MSIL.Bladabindi", SigId: 2879099, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\4.exe"
    
27. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Trojan-Downloader.Win32.Delf", SigId: 299845638, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\5.exe"
    
28. [02.05.2020 20:15:07] Found, 0.15s, SigName: "Trojan.AndroidOS.SMForw", SigId: 2637238, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\6.apk"
    
29. [02.05.2020 20:15:07] Found, 0.15s, SigName: "Trojan-Spy.Agent", SigId: 3815836, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\7.exe"
    
30. [02.05.2020 20:15:07] Found, 0.00s, SigName: "Trojan.Win32.Azorult", SigId: 3787994, Type: "VIRUS", File: "C:\Users\promi\Desktop\38x (2020-05-02)\38x (2020-05-02)\9.exe"
    
31. [02.05.2020 20:15:07] On-demand scan FINISHED: "user_defined"
    
32. [02.05.2020 20:15:07] ----------------------------------------------------
    
33. [02.05.2020 20:15:07] Directories scanned: 2
    
34. [02.05.2020 20:15:07] Files scanned: 74
    
35. [02.05.2020 20:15:07] Virus found: 29
    
36. [02.05.2020 20:15:07] ----------------------------------------------------

复制代码