Flash.exe

显示全部楼层 · 发表于 2017-3-28 19:43:24

本帖最后由 Dolby123 于 2017-3-28 22:57 编辑

[mw_shl_code=css,true]AegisLab Troj.Dynamer.Ac!c 20170328
Antiy-AVL Trojan/Win32.TSGeneric 20170328
Avira (no cloud) TR/Dynamer.ac.10020 20170328
AVware Trojan.Win32.Generic!BT 20170328
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9839 20170328
CAT-QuickHeal Trojan.Dyanamer.A5 20170327
Comodo TrojWare.Win32.Snocry.RS 20170328
Cyren W32/Risk.EKPE-4509 20170328
Endgame malicious (high confidence) 20170317
F-Prot W32/Dropper.D 20170328
Fortinet W32/Generic.AC.34DA9A!tr 20170328
Ikarus Trojan.Dynamer 20170328
Invincea trojan.win32.multiinjector.c!rfn 20170203
K7AntiVirus Riskware ( 0040eff71 ) 20170328
K7GW Riskware ( 0040eff71 ) 20170328
Malwarebytes Trojan.BAT 20170328
McAfee Artemis!D7C12C422F79 20170328
McAfee-GW-Edition BehavesLike.Win32.BadFile.ph 20170328
Panda Trj/Genetic.gen 20170327
Rising Trojan.Generic (cloud:99uFokZA2uN) 20170328
SentinelOne (Static ML) static engine - malicious 20170315
Symantec Trojan.Gen 20170327
VIPRE Trojan.Win32.Generic!BT 20170328[/mw_shl_code]

@Shift /0
@echo OFF
CD C:\SWSetup\SP74321\
DEL *.log
CLS

::Check the System BIOS ROM ID
  SAFUWin64.exe /S >ID.log
  FOR /F %%a IN (ID.log) DO (
  Find "System ROM ID" <ID.log >ID1.log
)

  FOR /F "tokens=1-6" %%a IN (ID1.log) DO (
  ECHO %%f >ID2.log
)

  FOR /F "delims=A" %%a IN (ID2.log) DO (
  ECHO %%a >ID3.log
  DEL ID.log
  DEL ID1.log
  DEL ID2.log
  If not %%a == 00813 Goto NOT_CORRECT
)

:: Check the System BIOS Version
  MEInfo64.exe >MEInfo.log
  FOR /F "delims=d" %%a IN (MEInfo.log) DO (
  Find "BIOS Version" <MEInfo.log >VER.log
)

  FOR /F "tokens=3" %%a IN (VER.log) DO (
  If %%a GEQ A0.07 Goto EXIT
)

:: Check the System ME Firmware Status
  FOR /F %%a IN (MEInfo.log) DO (
  Find "Local FWUpdate" <MEInfo.log >MEInfo1.log
)

  FOR /F "tokens=3" %%a IN (MEInfo1.log) DO (
  ECHO %%a >MEInfo2.log
)

  FOR /F "delims=d" %%a IN (MEInfo2.log) DO (
  DEL MEInfo.log
  DEL MEInfo1.log
  If %%a == Enable Goto ME_ON
  If %%a == Disable Goto ME_OFF
)

:ME_ON
  FWUpdLcl64.exe -F ME111180.BIN -ALLOWSV >ME_UPD.TXT
  GUI_A007.exe /Q
  shutdown -r -t 180 -c "The system will auto restart after 180 seconds, please close and save your opening documents and applications before the system restart."
  Goto EXIT

:ME_OFF
  Copy ME.bat %ProgramData%\Microsoft\Windows\STARTM~1\Programs\StartUp
  GUI_A007.exe /Q
  shutdown -r -t 180 -c "The system will auto restart after 180 seconds, please close and save your opening documents and applications before the system restart."
  Goto EXIT

:NOT_CORRECT
  DEL *.EC
  DEL *.BIN
  DEL *.BAT
  DEL ECF*.EXE
  DEL FWU*.EXE
  DEL GUI*.EXE
  DEL RET*.EXE

:EXIT

显示全部楼层 · 发表于 2017-3-28 19:49:16

SEP kill

显示全部楼层 · 发表于 2017-3-28 19:49:17

火绒扫描miss

显示全部楼层 · 发表于 2017-3-28 19:51:25

显示全部楼层 · 发表于 2017-3-28 20:13:20

KIS2017: KSN信任

显示全部楼层 · 发表于 2017-3-28 20:37:53

显示全部楼层 · 发表于 2017-3-28 20:45:29

WD报dynamer

显示全部楼层 · 发表于 2017-3-28 20:48:49

显示全部楼层 · 发表于 2017-3-28 21:05:25

Webroot - Miss
Immunet -

显示全部楼层 · 发表于 2017-3-28 21:08:23

本帖最后由 Dolby123 于 2017-3-28 22:36 编辑

10:35pm
云端信任，看来真是误报

[误报文件] Flash.exe

本帖子中包含更多资源

评分

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源