本帖最后由 驭龙 于 2024-9-4 16:40 编辑
Avira双击 没有反应 假浏览器都启动了
sentry明明工作的,可我双击一下午样本,没见过一个行为杀。
累了,我还是去看斩神吧,Avira在我这里是个假的
[2024-09-04 16:26:37.032] [info] [BaseScan] [thread id: 6808] [ProtectionCloud] The file '\\?\C:\Sandbox\ltqi\DefaultBox\drive\C\Goole Chrome2.11.2.3 wf2t\res\CKeyboardH.dll' was unknown in the Protection Cloud. SHA256: '6abbe723108eda7dfb00f263a625392b40c65984d9c26ff0a3d2c35612972f37' Requestor: 'RealtimeProtection' Flags: '{Upload needed}' Status: successful
[2024-09-04 16:26:37.327] [info] [BaseScan] [thread id: 6808] [ProtectionCloud] The file '\\?\C:\Sandbox\ltqi\DefaultBox\drive\C\Goole Chrome2.11.2.3 wf2t\res\CKeyboardH.dll' has been uploaded to the Protection Cloud and analyzed. SHA256: '6abbe723108eda7dfb00f263a625392b40c65984d9c26ff0a3d2c35612972f37' Requestor: 'RealtimeProtection' Flags: '' Status: successful
[2024-09-04 16:29:03.332] [info] [BaseScan] [thread id: 4476] [ProtectionCloud] The file '\\?\C:\Sandbox\ltqi\DefaultBox\user\current\AppData\Local\Google\Update\1.3.36.371\GoogleUpdateComRegisterShell64.exe' was scanned with the Protection Cloud. SHA256: '7d5c0ed6617dbc1b78d2994a6e5bbda474b5f4814d4a34d41f844ce9a3a4eb66' Requestor: 'RealtimeProtection' Flags: '' Status: successful
[2024-09-04 16:29:05.249] [info] [RealTimeProtection] [thread id: 1992] [FileScan] Sentry Provided Info, Trusted installer stopped:C:\Sandbox\ltqi\DefaultBox\user\current\AppData\Local\Google\Update\1.3.36.371\GoogleUpdateComRegisterShell64.exe, PiD:5996, ParentPid:9972
[2024-09-04 16:29:05.799] [info] [RealTimeProtection] [thread id: 1188] [FileScan] Sentry Provided Info, Trusted installer started:C:\Sandbox\ltqi\DefaultBox\user\current\AppData\Local\Google\Update\1.3.36.371\GoogleUpdateComRegisterShell64.exe, PiD:11324, ParentPid:9972
[2024-09-04 16:29:05.881] [info] [BaseScan] [thread id: 4476] [ProtectionCloud] The file '\\?\C:\Sandbox\ltqi\DefaultBox\user\current\AppData\Local\Google\Update\1.3.36.371\GoogleUpdateComRegisterShell64.exe' was scanned with the Protection Cloud. SHA256: '7d5c0ed6617dbc1b78d2994a6e5bbda474b5f4814d4a34d41f844ce9a3a4eb66' Requestor: 'RealtimeProtection' Flags: '' Status: successful
[2024-09-04 16:29:06.515] [info] [RealTimeProtection] [thread id: 7964] [FileScan] Sentry Provided Info, Trusted installer stopped:C:\Sandbox\ltqi\DefaultBox\user\current\AppData\Local\Google\Update\1.3.36.371\GoogleUpdateComRegisterShell64.exe, PiD:11324, ParentPid:9972
[2024-09-04 16:29:06.991] [info] [RealTimeProtection] [thread id: 2480] [FileScan] Sentry Provided Info, Trusted installer started:C:\Sandbox\ltqi\DefaultBox\user\current\AppData\Local\Google\Update\1.3.36.371\GoogleUpdateComRegisterShell64.exe, PiD:7896, ParentPid:9972
[2024-09-04 16:29:07.243] [info] [BaseScan] [thread id: 4476] [ProtectionCloud] The file '\\?\C:\Sandbox\ltqi\DefaultBox\user\current\AppData\Local\Google\Update\1.3.36.371\GoogleUpdateComRegisterShell64.exe' was scanned with the Protection Cloud. SHA256: '7d5c0ed6617dbc1b78d2994a6e5bbda474b5f4814d4a34d41f844ce9a3a4eb66' Requestor: 'RealtimeProtection' Flags: '' Status: successful
[2024-09-04 16:29:08.265] [info] [RealTimeProtection] [thread id: 6060] [FileScan] Sentry Provided Info, Trusted installer stopped:C:\Sandbox\ltqi\DefaultBox\user\current\AppData\Local\Google\Update\1.3.36.371\GoogleUpdateComRegisterShell64.exe, PiD:7896, ParentPid:9972
[2024-09-04 16:29:10.260] [info] [RealTimeProtection] [thread id: 792] [FileScan] Sentry Provided Info, Trusted installer stopped:C:\Sandbox\ltqi\DefaultBox\user\current\AppData\Local\Google\Update\GoogleUpdate.exe, PiD:9972, ParentPid:4852 |
发表于 2024-9-4 16:07:17
发表于 2024-9-4 16:23:27
