1.exe

显示全部楼层 · 发表于 2017-7-20 07:25:54

瑞星KILL

显示全部楼层 · 发表于 2017-7-20 09:09:07

趋势双击翻车

显示全部楼层 · 发表于 2017-7-20 09:41:22

lsgster 发表于 2017-7-19 19:08
火绒扫描不出

2楼扫的出你扫不出？

显示全部楼层 · 发表于 2017-7-20 09:56:06

显示全部楼层 · 发表于 2017-7-20 11:59:37

GD

Suspicious access to your file system has been detected, which suggests an encryption Trojan.

The following processes were therefore interrupted by G DATA for security reasons:
----------------------------------------------------------------
D:\360极速浏览器下载\1\1.exe (PID 5328)
C:\Windows\explorer.exe (PID 5980)
C:\Program Files (x86)\PowerShadow\App\PsFrame.exe (PID 4684)
C:\Program Files\2345Soft\HaoZip\HaoZip.exe (PID 2796)
C:\Users\Administrator\AppData\Local\360Chrome\Chrome\Application\360chrome.exe (PID 356)
----------------------------------------------------------------

If blocked, the following programs responsible will be moved to Quarantine:
----------------------------------------------------------------
D:\360极速浏览器下载\1\1.exe
----------------------------------------------------------------

Detected suspicious activities:
----------------------------------------------------------------
Deleted: Volume Shadow Copies
Created: C:\ProgramData\PowerShadow\Frame.trf
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\lockfile
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old~RF76a31.TMP
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOCK
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\data_reduction_proxy_leveldb\000003.log
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\6AED.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\360UID38663595_V8\Login Data-journal
Created: C:\Users\Administrator\AppData\Local\Temp\etilqs_0BeqNcV9NHGzAVu
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Web Data-journal
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Cookies-journal
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Cache\f_000622
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\History-journal
Created: C:\Users\Administrator\AppData\Local\Temp\etilqs_VmWzyDpxyAMVAcM
Created: C:\Users\Administrator\AppData\Local\Temp\etilqs_cqsdaQMpvjvI1w1
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Sync360_V8.sqlite3-journal
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\360UID38663595_V8\81D1.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\360UID38663595_V8\360mobilefav.dat~RF7821e.TMP
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Extension State\LOG.old~RF78357.TMP
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Extension State\LOCK
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\360UID38663595_V8\360sefav.dat-journal
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\360UID38663595_V8\8C13.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\360UID38663595_V8\Bookmarks~RF78c6f.TMP
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\8D5C.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Local State~RF78da7.TMP
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Cache\f_000623
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Favicons-journal
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\360UID38663595_V8\908A.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\360UID38663595_V8\Preferences~RF790b4.TMP
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\9136.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Network Persistent State~RF79160.TMP
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\9176.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\9187.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Session Storage\LOG.old~RF792b8.TMP
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Session Storage\LOCK
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Cache\f_000624
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\9C94.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\TransportSecurity~RF79cab.TMP
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\A4E2.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\A4E3.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\A4E4.tmp
Created: D:\360极速浏览器下载\AF64.tmp
Created: D:\360极速浏览器下载\1.rar:Zone.Identifier
Created: C:\Users\Administrator\AppData\Local\Temp\360se_dcs.wav
Created: C:\Users\Administrator\AppData\Roaming\HaoZip\HZ~B709.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA42.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA53.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA54.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA55.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA56.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA57.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA58.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA69.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA6A.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA6B.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA6C.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA7C.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\JumpListIcons\BA7D.tmp
Created: C:\Users\Administrator\AppData\Local\Temp\~HZBA75.tmp
Created: C:\Users\Administrator\AppData\Local\Temp\~HZBA76.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\360UID38663595_V8\BD1E.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\360UID38663595_V8\Preferences~RF7bd33.TMP
Created: C:\Users\Administrator\AppData\Local\Temp\etilqs_r5qD6bseDgLUz04
Created: C:\Users\Administrator\AppData\Roaming\HaoZip\AvScanLib\LocalLib.v1.2.2.data
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Cache\f_000625
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Cache\f_000626
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Cache\f_000627
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\Cache\f_000628
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\360UID38663595_V8\E539.tmp
Created: C:\Users\Administrator\AppData\Local\360Chrome\Chrome\User Data\Default\360UID38663595_V8\Preferences~RF7e54d.TMP
Created: C:\Users\Administrator\AppData\Local\Temp\etilqs_dddOmhklbSDmtON
Created: D:\360极速浏览器下载\1\1.exe
Created: C:\Users\Administrator\AppData\Roaming\HaoZip\HaoZip.stat.lock
Created: C:\Users\Administrator\AppData\Roaming\Info.hta
----------------------------------------------------------------

The user blocked access.

显示全部楼层 · 发表于 2017-7-20 12:39:58

显示全部楼层 · 发表于 2017-7-20 13:47:52

，就一个. 发表于 2017-7-20 11:59
GD

Suspicious access to your file system has been detected, which suggests an encryption Trojan ...

我测试了GD 看来GD本地化还是做的不够好啊

我开腾讯游戏平台玩LOL 上网保护会报毒拦截玩游戏中还蓝屏无赖换回卡巴.......

显示全部楼层 · 发表于 2017-7-20 17:57:38

zst470396853 发表于 2017-7-20 13:47
我测试了GD 看来GD本地化还是做的不够好啊

我开腾讯游戏平台玩LOL 上网保护会报毒拦截玩游戏中还 ...

我家里电脑基本不玩游戏都在网吧玩我用GD 杀酷狗迅雷无所谓杀了酷狗迅雷可以正常运行

显示全部楼层 · 发表于 2017-7-20 23:03:35

greenfinger168 发表于 2017-7-19 19:05
ESET 6个月前就发现了

6个月前发现的是winrar

[病毒样本] 1.exe

本帖子中包含更多资源

本帖子中包含更多资源