精睿样本测试（17.9.22）

显示全部楼层 · 发表于 2017-9-22 09:07:00

地址：

https://pan.baidu.com/s/1eRIBvNk 密码: g1fc

密码：http://bbs.vc52.cn
数量：100

显示全部楼层 · 发表于 2017-9-22 09:07:28

本帖最后由阿童木来了于 2017-9-25 10:25 编辑

卡巴共检测到48个，0修复，剩余52个上报！！！
[mw_shl_code=css,true]感谢您的帮助，在您提交的样本中有新的检测，
044.vir - Trojan-Downloader.Win32.Agent.hhoc
002.vir - Backdoor.Win32.Agent.tgav
007.vir - Trojan.Win32.Refinka.ciy
012.vir - Backdoor.Win32.Androm.nysu
016.vir - Trojan.Win32.Refinka.ciz
019.vir - Trojan-Banker.Win32.Shiotob.wkz
020.vir - Trojan.Win32.Refinka.cix
026.vir - Trojan.PDF.Agent.z
028.vir - Trojan.Win32.Refinka.cjb
030.vir - Trojan-Downloader.Win32.Upatre.gdzv
037.vir - Trojan.PDF.Agent.w
038.vir - Trojan-Ransom.Win32.Blocker.khlc
040.vir - Trojan.Win32.Sennoma.apq
043.vir - Trojan.PDF.Agent.x
045.vir - Trojan.Win32.Refinka.cjc
047.vir - Trojan-Ransom.Win32.Locky.zqq
048.vir - Trojan.Win32.Kasidet.cve
049.vir - Trojan.BAT.Agent.atd
053.vir - Trojan.Win32.Refinka.cjf
057.vir - Trojan.MSIL.Agent.adhsn
059.vir - Trojan.PDF.Agent.v
061.vir - Trojan.PDF.Phish.vl
063.vir - Trojan.PDF.Agent.y
064.vir - Trojan.Win32.Zapchast.ajjt
067.vir - Backdoor.Win32.Poison.ikfy
068.vir - Trojan.PDF.Agent.u
074.vir - Trojan-Ransom.MSIL.Agent.aaa
080.vir - Trojan.Win32.Sennoma.app
081.vir - Trojan.PDF.Agent.aa
082.vir - Trojan.MSIL.Crypt.euzb
086.vir - Trojan.Win32.Refinka.cje
087.vir - Trojan.Win32.Ekstak.ahla
089.vir - Trojan.Win32.Reconyc.ihvx
092.vir - Trojan-Downloader.Win32.Upatre.gdzw
093.vir - Trojan-Downloader.Win32.Upatre.gdzx
094.vir - Trojan.Win32.Zonidel.aek
095.vir - Trojan.PDF.Agent.ab
096.vir - Trojan.Win32.Refinka.cja
098.vir - Trojan-Downloader.PowerShell.Agent.bo

004.vir - not-a-virus:RiskTool.Win32.BitCoinMiner.ihai
请稍后更新最新数据库试一下。[/mw_shl_code]

显示全部楼层 · 发表于 2017-9-22 09:07:59

本帖最后由 191196846 于 2017-9-22 09:32 编辑

360TSE Total KILL 49+5+14 +1 = 69x

一扫KILL 49x
[mw_shl_code=css,true]360 Total Security Scan Log

Scan Time:2017-09-22 09:11:46
Time Taken:00:00:09
Object(s) Scanned:134
Threat(s) Found:49
Threat(s) Resolved:49

Scan Settings
----------------------
Compressed Files Scan:No
Scan Engine:Bitdefender Engine, Avira AntiVir Engine

Scan Scope
----------------------
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\

Scan Result
======================
High-risk Items
----------------------
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\014.vir.exe       Malware.Radar01.Gen       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\022.vir.exe       Worm.Win32.AutoRun.L       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\027.vir       Trojan.VBS.VBL       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\029.vir       Trojan.VBS.VBL       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\041.vir       Trojan.Vbs.Downloader.AED       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\066.vir       Trojan.Vbs.Downloader.AEC       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\097.vir       Trojan.VBS.VBL       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\091.vir       Trojan.VBS.VBL       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\003.vir.exe       Gen:Trojan.Heur.FU.jeX@aSyxcmm       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\004.vir.exe       Gen:Variant.Graftor.406919       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\005.vir.exe       Backdoor.Delf.76       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\007.vir.exe       Trojan.Generic.22253521       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\006.vir.exe       Trojan.GenericKD.6008067       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\009.vir.exe       Gen:Variant.Razy.7578       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\011.vir.exe       Gen:Variant.MSILPerseus.40605       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\013.vir.exe       Gen:Variant.Trojan.Metasploit.11       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\016.vir.exe       Trojan.GenericKD.6010785       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\020.vir.exe       Trojan.GenericKD.6010042       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\019.vir.exe       Trojan.GenericKD.5650902       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\024.vir.exe       Gen:Variant.Razy.219780       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\025.vir.exe       Trojan.Spy.Zbot.SO       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\028.vir.exe       Trojan.GenericKD.6009975       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\021.vir.dll       Gen:Variant.Application.HackTool.CobaltStrike.1       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\018.vir.exe       Backdoor.Generic.72340       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\030.vir.exe       Trojan.GenericKD.6011425       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\034.vir.exe       Gen:Variant.Symmi.54480       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\042.vir.exe       Gen:Variant.MSIL.BackDoor.51       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\045.vir.exe       Trojan.GenericKD.6011517       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\047.vir.exe       Trojan.GenericKD.6010739       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\048.vir.exe       Trojan.GenericKD.6010000       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\051.vir.exe       Trojan.GenericKD.5986130       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\053.vir.exe       Trojan.Generic.22255731       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\055.vir.exe       Gen:Trojan.Heur.GZ.aeX@b4t!azj       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\064.vir.exe       Gen:Variant.Jaiko.1998       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\065.vir.exe       Trojan.Agent.CNAR       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\060.vir.exe       Gen:Variant.Razy.11684       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\067.vir.exe       Trojan.GenericKD.12387018       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\069.vir.exe       Gen:Variant.Strictor.147024       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\070.vir.exe       Trojan.GenericKD.5795003       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\071.vir.exe       Trojan.Generic.15660856       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\079.vir.exe       Trojan.Generic.10198019       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\080.vir.exe       Gen:Variant.Zusy.257498       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\083.vir.exe       Trojan.Agent.CNAR       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\084.vir.exe       Application.Bundler.Agent.B       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\085.vir.exe       Gen:Variant.Razy.151479       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\089.vir.exe       Gen:Variant.Graftor.381100       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\093.vir.exe       Trojan.GenericKD.6011314       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\096.vir.exe       Trojan.Ransom.Locky.DN       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\099.vir.exe       Generic.Malware.SL!bg.6221D253       Resolved

[/mw_shl_code]

UPLOAD 30x

二扫: KILL 5x

[mw_shl_code=css,true]360 Total Security Scan Log

Scan Time:2017-09-22 09:20:05
Time Taken:00:00:06
Object(s) Scanned:85
Threat(s) Found:5
Threat(s) Resolved:5

Scan Settings
----------------------
Compressed Files Scan:No
Scan Engine:Bitdefender Engine, Avira AntiVir Engine

Scan Scope
----------------------
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\

Scan Result
======================
High-risk Items
----------------------
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\002.vir.exe       Win32/Trojan.de0       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\008.vir.exe       Win32/Trojan.Ransom.488       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\012.vir.exe       Win32/Trojan.3c0       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\010.vir.exe       Win32/Trojan.Generic.3cb       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\039.vir.exe       Win32/Trojan.Dropper.b73       Resolved

[/mw_shl_code]
仔细看二扫的几个报毒名...感觉很熟悉..

感觉云端应该真的存在BD 和 AVIRA 引擎

1分钟后三扫 KILL14x

[mw_shl_code=css,true]360 Total Security Scan Log

Scan Time:2017-09-22 09:24:11
Time Taken:00:00:05
Object(s) Scanned:80
Threat(s) Found:14
Threat(s) Resolved:14

Scan Settings
----------------------
Compressed Files Scan:No
Scan Engine:Bitdefender Engine, Avira AntiVir Engine

Scan Scope
----------------------
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\

Scan Result
======================
High-risk Items
----------------------
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\040.vir.exe       HEUR/QVM10.1.0155.Malware.Gen       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\046.vir.exe       Win32/Trojan.BO.e79       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\050.vir.exe       HEUR/QVM03.0.0155.Malware.Gen       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\054.vir.exe       Win32/Trojan.c2a       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\057.vir.exe       Win32/Trojan.38c       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\073.vir.exe       HEUR/QVM03.0.0155.Malware.Gen       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\074.vir.exe       Win32/Trojan.dbe       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\082.vir.exe       Win32/Trojan.Dropper.614       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\086.vir.exe       HEUR/QVM20.1.0155.Malware.Gen       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\087.vir.exe       Win32/Trojan.8d1       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\088.vir.exe       HEUR/QVM03.0.0155.Malware.Gen       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\092.vir.exe       Win32/Trojan.ca8       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\094.vir.exe       HEUR/QVM19.1.0155.Malware.Gen       Resolved
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\100.vir.exe       HEUR/QVM20.1.0155.Malware.Gen       Resolved

[/mw_shl_code]

5分钟后四扫 KILL 1x
[mw_shl_code=css,true]360 Total Security Scan Log

Scan Time:2017-09-22 09:31:07
Time Taken:00:00:05
Object(s) Scanned:66
Threat(s) Found:1
Threat(s) Resolved:1

Scan Settings
----------------------
Compressed Files Scan:No
Scan Engine:Bitdefender Engine, Avira AntiVir Engine

Scan Scope
----------------------
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\

Scan Result
======================
High-risk Items
----------------------
D:\Sandbox\海\DefaultBox\drive\D\迅雷下载\病毒测试区\2017.9.22\2017.9.22\049.vir.exe Win32/Trojan.Ransom.bce Resolved

[/mw_shl_code]

反应真快...

显示全部楼层 · 发表于 2017-9-22 09:10:16

本帖最后由 Eset小粉絲于 2017-9-22 09:13 编辑

BDF 剩餘35

显示全部楼层 · 发表于 2017-9-22 09:12:34

本帖最后由 cdyism 于 2017-9-22 09:23 编辑

火絨KILL 35(58內檢出兩個)

[mw_shl_code=css,true]病毒库：2017/09/21 16:04
开始时间：2017/09/22 09:21
总计用时：00:00:29
扫描对象：1110个
扫描文件：100个
发现风险：36个
已处理风险：36个
发现系统修复项：0个
处理系统修复项：0个

病毒详情

风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\006.vir, 病毒名：Trojan/Drodhcp, 病毒ID：[2502c515ef294ec9], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\012.vir, 病毒名：HVM:Trojan/Injector.gen!A, 病毒ID：[cc4a875f53a5d678], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\014.vir, 病毒名：Trojan/Agent.auo, 病毒ID：[47f90257d1f33f1b], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\013.vir, 病毒名：HVM:Trojan/Swrort.gen!A, 病毒ID：[d6e29035d2489e60], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\018.vir, 病毒名：HEUR:TrojanSpy/DelfPay, 病毒ID：[7faeacf8c83556a4], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\007.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\016.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\022.vir, 病毒名：Worm/Autorun.cq, 病毒ID：[7d980a43718234f5], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\019.vir, 病毒名：HVM:Trojan/Injector.b, 病毒ID：[da0db25a754c9d96], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\020.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\028.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\034.vir, 病毒名：Trojan/Agent.ng, 病毒ID：[66b5ec0f890a18e3], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\035.vir, 病毒名：Trojan/BAT.Agent.b, 病毒ID：[ce845159fc21f101], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\040.vir, 病毒名：HVM:Trojan/Injector.gen!A, 病毒ID：[cc4a875f53a5d678], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\024.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\047.vir, 病毒名：HVM:Trojan/MalBehav.gen!E, 病毒ID：[8d1593ba2838fa52], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\045.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\025.vir, 病毒名：TrojanSpy/Zbot.ab, 病毒ID：[c367d50d10e91ffb], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\053.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\058.vir >> word\embeddings\oleObject1.bin, 病毒名：TrojanDownloader/JS.Nemucod, 病毒ID：[2ac4575ee6a58593], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\058.vir >> word\embeddings\oleObject2.bin, 病毒名：TrojanDownloader/JS.Nemucod, 病毒ID：[2ac4575ee6a58593], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\048.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\060.vir, 病毒名：TrojanSpy/Fareit, 病毒ID：[bd34f6179b074a8d], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\071.vir, 病毒名：Adware/Maxiget, 病毒ID：[9375b925004ae114], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\067.vir, 病毒名：HVM:TrojanDownloader/Small.gen!A, 病毒ID：[d3e35dce68a3d364], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\074.vir, 病毒名：Ransom/Genasom, 病毒ID：[a2813070c9c8a9a7], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\079.vir, 病毒名：HEUR:Trojan/Injector, 病毒ID：[cc39d743dbd3bf9a], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\080.vir, 病毒名：HVM:Trojan/Injector.b, 病毒ID：[da0db25a754c9d96], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\055.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\084.vir, 病毒名：Adware/iBryte.a, 病毒ID：[c60d4a1fc70fb678], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\086.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\088.vir, 病毒名：HEUR:Trojan/FakeOsApp, 病毒ID：[bb1c77d0a3338cc5], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\092.vir, 病毒名：VirTool/Kovter.p, 病毒ID：[e92bbf97494898d2], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\093.vir, 病毒名：HEUR:VirTool/Obfuscator.gen!C, 病毒ID：[9f7c74f7afee22c], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\096.vir, 病毒名：HEUR:VirTool/Obfuscator.gen!A, 病毒ID：[a5a7938d38833819], 处理结果：已处理
风险路径：C:\Users\cdyis\Desktop\2017.9.22\2017.9.22\099.vir, 病毒名：Backdoor/Bladabindi.l, 病毒ID：[7debbd141a975060], 处理结果：已处理
[/mw_shl_code]

显示全部楼层 · 发表于 2017-9-22 09:19:36

本帖最后由小飞侠.net 于 2017-9-22 10:34 编辑

Emsisoft Emergency Kit - 版本 2017.8
上次更新： 2017/9/22 10:30:12
用户帐号： TECLAST\Admin
Computer name: TECLAST
OS version: Windows 10x64

扫描设置：

扫描方式：自定义扫描
对象： Rootkits, 内存, C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\

检测流氓软件(PUPs)： On
扫描压缩包： On
扫描邮件存档： On
ADS数据流： On
文件扩展名过滤： Off
直接磁盘访问： Off

扫描开始于： 2017/9/22 10:31:55
[mw_shl_code=javascript,true]C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\001.vir -> (INFECTED_JS) 发现病毒： JS:Trojan.Cryxos.1271 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\036.vir -> (objdata) -> (Embedded DocFile g) 发现病毒： Exploit.CVE-2017-8759.Gen (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\004.vir 发现病毒： Gen:Variant.Graftor.406919 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\006.vir 发现病毒： Trojan.GenericKD.6008067 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\005.vir 发现病毒： Backdoor.Delf.76 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\007.vir 发现病毒： Trojan.Generic.22253521 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\008.vir 发现病毒： Trojan.RansomKD.6013480 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\003.vir 发现病毒： Gen:Trojan.Heur.FU.jeX@aSyxcmm (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\009.vir 发现病毒： Gen:Variant.Razy.7578 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\011.vir 发现病毒： Gen:Variant.MSILPerseus.40605 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\010.vir 发现病毒： Trojan.Generic.22272219 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\014.vir 发现病毒： Trojan.Necurs.J (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\012.vir 发现病毒： Trojan.GenericKD.6011622 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\016.vir 发现病毒： Trojan.Agent (A) [290460]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\018.vir 发现病毒： Backdoor.Generic.72340 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\019.vir 发现病毒： Trojan.GenericKD.5650902 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\020.vir 发现病毒： Trojan.GenericKD.6010042 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\022.vir 发现病毒： Trojan.Generic.8290887 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\021.vir 发现病毒： Gen:Variant.Application.HackTool.CobaltStrike.1 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\024.vir 发现病毒： Trojan.Ransom.CerberKD.6012316 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\027.vir 发现病毒： Trojan.VBS.VBL (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\029.vir 发现病毒： Trojan.VBS.VBL (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\028.vir 发现病毒： Trojan.GenericKD.6009975 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\030.vir 发现病毒： Trojan.GenericKD.6011425 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\025.vir 发现病毒： Trojan.Spy.Zbot.SO (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\034.vir 发现病毒： Gen:Variant.Symmi.54480 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\038.vir 发现病毒： Trojan-Proxy.Agent (A) [290487]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\040.vir 发现病毒： Trojan.Crypt (A) [290491]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\041.vir 发现病毒： Trojan.Vbs.Downloader.AED (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\042.vir 发现病毒： Gen:Variant.MSIL.BackDoor.51 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\045.vir 发现病毒： Trojan.GenericKD.6011517 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\047.vir 发现病毒： Trojan-Ransom.Locky (A) [290457]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\048.vir 发现病毒： Trojan.GenericKD.6010000 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\049.vir 发现病毒： Trojan.RansomKD.12390330 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\051.vir 发现病毒： Trojan.GenericKD.5986130 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\053.vir 发现病毒： Trojan.Generic.22255731 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\013.vir 发现病毒： Gen:Variant.Trojan.Metasploit.11 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\057.vir 发现病毒： Trojan-MSIL.Crypted.Gen.J (A) [290001]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\054.vir 发现病毒： Gen:Variant.Strictor.147437 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\055.vir 发现病毒： Gen:Trojan.Heur.GZ.aeX@b4t!azj (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\064.vir 发现病毒： Trojan.RansomKD.12390134 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\066.vir 发现病毒： Trojan.Vbs.Downloader.AEC (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\067.vir 发现病毒： Trojan.GenericKD.12387018 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\065.vir 发现病毒： Trojan.Injector (A) [290466]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\060.vir 发现病毒： Gen:Variant.Razy.11684 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\071.vir 发现病毒： Application.InstallShare (A) [287331]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\070.vir 发现病毒： Trojan.GenericKD.5795003 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\074.vir 发现病毒： Trojan.GenericKD.12392537 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\069.vir 发现病毒： Gen:Variant.Strictor.147024 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\079.vir 发现病毒： Trojan.Generic.10198019 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\082.vir 发现病毒： Trojan.RansomKD.6011849 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\083.vir 发现病毒： Trojan.Injector (A) [290466]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\086.vir 发现病毒： Trojan.RansomKD.12390398 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\085.vir 发现病毒： Gen:Variant.Razy.151479 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\087.vir 发现病毒： Trojan.Crypt (A) [290492]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\084.vir 发现病毒： Application.Bundler.Agent.B (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\091.vir 发现病毒： Trojan.VBS.VBL (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\092.vir 发现病毒： Trojan-Downloader.Upatre (A) [290486]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\094.vir 发现病毒： Trojan.Crypt (A) [290465]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\089.vir 发现病毒： Gen:Variant.Graftor.381100 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\093.vir 发现病毒： Trojan.GenericKD.6011314 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\096.vir 发现病毒： Trojan.RansomKD.6012113 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\097.vir 发现病毒： Trojan.VBS.VBL (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\100.vir 发现病毒： Trojan.Agent (A) [290502]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\099.vir 发现病毒： Generic.Malware.SL!bg.6221D253 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\080.vir 发现病毒： Gen:Variant.Zusy.257498 (B) [krnl.xmd][/mw_shl_code]

已扫描 2263
发现 66

扫描完成后： 2017/9/22 10:32:17
扫描时间： 0:00:22

瑞星---（Windows 10 Creators Update（Redstone 2）....）：云引擎（开）RDM+（开）
            瑞星反恶软引擎命令行扫描器（社区交流版）

编译于：Aug 10 2016 14:44:33

提示：
  - 本工具供社区交流使用，请勿用于其他用途
  - 本工具没有恶意软件删除、清除、隔离功能
  - 本工具包含开发中的新特性，结果仅供参考

* 获取恶软签名库最新版本 ...
* 下载恶软签名库配置文件 ...
* 创建恶软签名库升级组件 ...
* 计算并下载增量文件 ...
* 升级恶软签名库 ...
* 恶软签名库升级成功
* 命令行中的选项开关：-output-json -log=C:\瑞星新引擎\ScanLog_170922101933.log
* 初始化云引擎组件 ...
* 加载恶软签名库： C:\瑞星新引擎/malware.rmd
* 恶软签名库加载成功，发布序号为 2839
* 读取恶软签名库配置 ...
* 初始化引擎环境 ...
* 初始化引擎环境 ...
* 初始化引擎环境 ...
* 初始化引擎环境 ...
* 扫描目标 : (1) C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922

扫描开始: Fri Sep 22 10:20:10 2017

[mw_shl_code=javascript,true]{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\001.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\004.vir","infect":{"engine":"cloud","threat":"Malware.Heuristic!ET#88%-48uhAym20XN"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\003.vir","infect":{"engine":"thunder","threat":"Malware.Generic!TXFxpikg56@2"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\002.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\006.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\007.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\008.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\009.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\010.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\011.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\012.vir","infect":{"engine":"classic","threat":"Malware.Obscure/Heur!1.9E03"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\005.vir","infect":{"engine":"thunder","threat":"Malware.Generic!z9Ah7RWqHvE@5"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\013.vir","infect":{"engine":"rdm+","threat":"Malware.Heuristic!ET"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\014.vir","infect":{"engine":"cloud","threat":"Dropper.Necurs!8.C43-rv7mGqG5XBH"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\017.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\016.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\019.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\020.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\015.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\021.vir","infect":{"engine":"rdm+","threat":"Malware.Heuristic!ET"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\023.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\022.vir","infect":{"engine":"rdm+","threat":"Malware.Heuristic!ET"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\024.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\025.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\027.vir","infect":{"engine":"cloud","threat":"Trojan.Agent!8.B1E-b5CBgP4aLeQ"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\026.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\018.vir","infect":{"engine":"thunder","threat":"Malware.Generic!iIVZ8GCrDCU@5"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\029.vir","infect":{"engine":"cloud","threat":"Trojan.Agent!8.B1E-ChEunOyBJDU"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\028.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\033.vir","infect":{"engine":"cloud","threat":"Malware.Heuristic!ET#95%-AJ3OKx8FjfU"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\031.vir","infect":{"engine":"classic","threat":"Malware.Agent!1.9F77"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\030.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\036.vir","infect":{"engine":"classic","threat":"Exploit.CVE-2017-8759!1.AD81"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\032.vir","infect":{"engine":"cloud","threat":"Trojan.Agent!8.B1E-gy4jhPQmsyK"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\037.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\034.vir","infect":{"engine":"rdm+","threat":"Malware.Heuristic!ET"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\035.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\039.vir","infect":{"engine":"cloud","threat":"Dropper.Generic!8.35E-kuv6wNuFF2D"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\041.vir","infect":{"engine":"cloud","threat":"Trojan.Agent!8.B1E-ChEunOyBJDU"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\042.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\043.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\044.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\046.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\040.vir","infect":{"engine":"classic","threat":"Malware.Obscure/Heur!1.9E03"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\038.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\048.vir","infect":{"engine":"classic","threat":"Trojan.Kryptik!1.AD24"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\047.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\049.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\052.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\051.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\053.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\045.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\055.vir","infect":{"engine":"rdm+","threat":"Malware.Heuristic!ET"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\054.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\050.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\058.vir","infect":{"engine":"cloud","threat":"Trojan.Agent!8.B1E-FJqr6U66KQH"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\057.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\061.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\056.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\059.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\060.vir","infect":{"engine":"thunder","threat":"Malware.Generic!diBoeyONYnE@5"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\063.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\064.vir","infect":{"engine":"rdm+","threat":"Malware.Heuristic!ET"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\066.vir","infect":{"engine":"cloud","threat":"Trojan.Agent!8.B1E-zlVedReMlYR"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\065.vir","infect":{"engine":"rdm+","threat":"Malware.Heuristic!ET"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\067.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\068.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\070.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\071.vir","infect":{"engine":"thunder","threat":"Malware.Generic!sbiToQ95v3J@5"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\069.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\073.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\075.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\072.vir","infect":{"engine":"cloud","threat":"Trojan.Agent!8.B1E-7Kp78ylFDjJ"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\074.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\077.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\078.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\080.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\081.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\082.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\076.vir","infect":{"engine":"classic","threat":"Malware.XPACK-LNR/Heur!1.5594"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\083.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\062.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\084.vir","infect":{"engine":"thunder","threat":"Malware.Generic!u652Q2IwBKE@5"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\086.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\087.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\088.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\090.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\091.vir","infect":{"engine":"cloud","threat":"Trojan.Agent!8.B1E-zlVedReMlYR"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\085.vir","infect":{"engine":"thunder","threat":"Malware.Generic!uekPIEyswsV@2"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\079.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\094.vir","infect":{"engine":"cloud","threat":"Trojan.Zonidel!8.E714-KqETmGBK4q"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\089.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\092.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\093.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\098.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\097.vir","infect":{"engine":"cloud","threat":"Downloader.VBS.MaliciousEmail!1.ACE7-u07YByaEz2K"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\095.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\096.vir","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\099.vir","infect":{"engine":"thunder","threat":"Malware.Generic!vfFNHC6fxfB@c"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\3D964D98Up0922\\2017.9.22\\100.vir","type":"scan"}[/mw_shl_code]

扫描结束: Fri Sep 22 10:20:25 2017

总共耗时: 0:14:792(m:s:ms)
总扫描文件: 100
总恶意文件: 35
有效检出率: 35.00%

X-Sec Antivirus ---（Windows 10 Creators Update（Redstone 2）....）：

Start Time: Fri Sep 22 10:12:35 2017
Scan Type: Custom Scan
Scan Target: C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922
Heuristic Engine: Enabled
Cloud Engine: Enabled
Resolve Threats: Scan only
Database Version: 2017.09.15.01---------7天前的病毒库
[mw_shl_code=javascript,true]C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\001.vir -> Cloud:Trojan.Script.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\006.vir -> Cloud:Trojan.Win32.Kryptic
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\011.vir -> Hacktool.Win32.Confuser.Aa
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\014.vir -> Trojan.Win32.Injector.Ap
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\017.vir -> Cloud:Malware.MSOffice.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\021.vir -> Cloud:Hacktool.Win32.Generic
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\022.vir -> Heur:Trojan.Downloader.Gen.4
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\023.vir -> Cloud:Macro.MSWord.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\026.vir -> Cloud:Trojan.PDF.Phishing
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\027.vir -> Cloud:Trojan.Script.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\029.vir -> Cloud:Trojan.Script.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\032.vir -> Cloud:Trojan.Script.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\033.vir -> Heur:Trojan.Dropper.Gen.4
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\036.vir -> Cloud:Exploit.RTF.CVE-2017-8759
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\037.vir -> Cloud:Trojan.PDF.Phishing
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\041.vir -> Cloud:Trojan.Script.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\043.vir -> Cloud:Trojan.PDF.Phishing
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\046.vir -> Hacktool.Win32.Confuser.Aa
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\047.vir -> Cloud:Trojan.Win32.Ransom
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\052.vir -> Cloud:Macro.MSWord.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\058.vir -> Cloud:Trojan.Script.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\059.vir -> Cloud:Trojan.PDF.Phishing
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\061.vir -> Cloud:Trojan.PDF.Phishing
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\063.vir -> Cloud:Trojan.PDF.Phishing
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\065.vir -> Cloud:Trojan.Win32.Injector
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\066.vir -> Cloud:Trojan.Script.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\068.vir -> Cloud:Trojan.PDF.Phishing
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\069.vir -> Cloud:Trojan.Win32.Spy
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\072.vir -> Cloud:Trojan.Script.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\074.vir -> Trojan.Win32.Ransom.AM!GEN
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\075.vir -> Cloud:Exploit.RTF.CVE-2017-0199
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\081.vir -> Cloud:Trojan.PDF.Phishing
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\083.vir -> Cloud:Trojan.Win32.Injector
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\084.vir -> Adware.Win32.iBryte.Aa
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\085.vir -> Trojan.Win32.InfoStealer.Aq
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\089.vir -> Cloud:Adware.Win32.SearchGo
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\090.vir -> Cloud:Macro.MSWord.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\091.vir -> Cloud:Trojan.Script.Downloader
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\093.vir -> Heur:Trojan.Win32.Gen.4
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\094.vir -> Cloud:Trojan.Win32.Generic
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\095.vir -> Cloud:Trojan.PDF.Phishing
C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\097.vir -> Cloud:Trojan.Script.Downloader[/mw_shl_code]
Elapsed Time: 00:01:14
Total File: 100
Skipped File: 1
Infected File: 42

火绒安全---（Windows 10 Creators Update（Redstone 2）....）：

病毒库：2017/09/20 16:38
开始时间：2017/09/22 10:07
总计用时：00:00:46
扫描对象：1123个
扫描文件：100个
发现风险：33个
已处理风险：33个
发现系统修复项：0个
处理系统修复项：0个

病毒详情

[mw_shl_code=javascript,true]风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\006.vir, 病毒名：Trojan/Drodhcp, 病毒ID：[2502c515ef294ec9], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\012.vir, 病毒名：HVM:Trojan/Injector.gen!A, 病毒ID：[cc4a875f53a5d678], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\013.vir, 病毒名：HVM:Trojan/Swrort.gen!A, 病毒ID：[d6e29035d2489e60], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\014.vir, 病毒名：Trojan/Agent.auo, 病毒ID：[47f90257d1f33f1b], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\018.vir, 病毒名：HEUR:TrojanSpy/DelfPay, 病毒ID：[7faeacf8c83556a4], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\007.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\019.vir, 病毒名：HVM:Trojan/Injector.b, 病毒ID：[da0db25a754c9d96], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\016.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\022.vir, 病毒名：Worm/Autorun.cq, 病毒ID：[7d980a43718234f5], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\020.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\028.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\034.vir, 病毒名：Trojan/Agent.ng, 病毒ID：[66b5ec0f890a18e3], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\035.vir, 病毒名：Trojan/BAT.Agent.b, 病毒ID：[ce845159fc21f101], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\040.vir, 病毒名：HVM:Trojan/Injector.gen!A, 病毒ID：[cc4a875f53a5d678], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\047.vir, 病毒名：HVM:Trojan/MalBehav.gen!E, 病毒ID：[8d1593ba2838fa52], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\024.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\025.vir, 病毒名：TrojanSpy/Zbot.ab, 病毒ID：[c367d50d10e91ffb], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\045.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\053.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\048.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\071.vir, 病毒名：Adware/Maxiget, 病毒ID：[9375b925004ae114], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\067.vir, 病毒名：HVM:TrojanDownloader/Small.gen!A, 病毒ID：[d3e35dce68a3d364], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\055.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\079.vir, 病毒名：HEUR:Trojan/Injector, 病毒ID：[cc39d743dbd3bf9a], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\080.vir, 病毒名：HVM:Trojan/Injector.b, 病毒ID：[da0db25a754c9d96], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\060.vir, 病毒名：TrojanSpy/Fareit, 病毒ID：[bd34f6179b074a8d], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\084.vir, 病毒名：Adware/iBryte.a, 病毒ID：[c60d4a1fc70fb678], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\086.vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\088.vir, 病毒名：HEUR:Trojan/FakeOsApp, 病毒ID：[bb1c77d0a3338cc5], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\093.vir, 病毒名：HEUR:VirTool/Obfuscator.gen!C, 病毒ID：[9f7c74f7afee22c], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\096.vir, 病毒名：HEUR:VirTool/Obfuscator.gen!A, 病毒ID：[a5a7938d38833819], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\099.vir, 病毒名：Backdoor/Bladabindi.l, 病毒ID：[7debbd141a975060], 处理结果：已处理
风险路径：C:\Users\Admin\Desktop\AVtest100\3D964D98Up0922\2017.9.22\092.vir, 病毒名：VirTool/Kovter.p, 病毒ID：[e92bbf97494898d2], 处理结果：已处理[/mw_shl_code]

360 Total Security扫描日志

扫描时间：2017-09-22 09:46:28
扫描用时：00:01:09
扫描项目总数：106
威胁总数：61
处理威胁数：0

扫描选项
----------------------
扫描压缩包：是
常规引擎设置：Bitdefender引擎, 小红伞引擎

扫描内容
----------------------
文件名称: C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22.7z
文件大小: 11.3 MB (11,878,137 字节)
修改时间: 2017年09月22日，09:40:24
MD5: B32F17D63519316FD6577198725501AC
SHA1: A4476F1016B645DB01F2B9BB6177DDEF1F9C27DE
SHA256: 2A8F593D98500A4A4223576D3C0E79A3D0216BF7B17392E9C44A35CDFD9C53FF
SHA512: 306889E14ECB82A8309DFE098FA4EC66275428F6B10DCFBF16109936F747D687A1033133AA585F775507FB42F4B905CED76F8BABC76E2BD7A8C807C72DA8BEA0
CRC32: 3D964D98
计算时间: 1.20s (9.89 MB/s)

扫描结果
======================
高风险项目
----------------------
[mw_shl_code=javascript,true]C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\002.vir       Win32/Trojan.de0       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\003.vir       HEUR/QVM20.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\004.vir       HEUR/QVM11.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\005.vir       Win32/Backdoor.124       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\006.vir       Win32/Trojan.1a4       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\009.vir       Win32/Trojan.Dropper.8cc       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\008.vir       Win32/Trojan.Ransom.488       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\007.vir       Win32/Trojan.3c7       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\011.vir       HEUR/QVM03.0.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\012.vir       Win32/Trojan.3c0       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\013.vir       Win32/Trojan.08a       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\018.vir       Win32/Trojan.3f3       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\019.vir       HEUR/QVM10.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\020.vir       Win32/Trojan.168       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\021.vir       Win32/Trojan.Hacktool.ec0       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\022.vir       Worm.Win32.AutoRun.L       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\016.vir       Win32/Trojan.7b6       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\014.vir       Malware.Radar01.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\024.vir       HEUR/QVM19.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\030.vir       HEUR/QVM10.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\034.vir       HEUR/QVM03.0.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\025.vir       Malware.Radar01.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\042.vir       Win32/Trojan.Dropper.b62       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\040.vir       HEUR/QVM10.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\046.vir       Win32/Trojan.BO.e79       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\047.vir       HEUR/QVM20.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\048.vir       HEUR/QVM10.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\049.vir       Win32/Trojan.Ransom.bce       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\050.vir       HEUR/QVM03.0.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\051.vir       Win32/Trojan.1b6       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\053.vir       Win32/Trojan.368       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\054.vir       Win32/Trojan.c2a       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\028.vir       HEUR/QVM20.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\057.vir       Win32/Trojan.38c       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\055.vir       HEUR/QVM19.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\064.vir       HEUR/QVM05.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\060.vir       Win32/Trojan.PSW.5cd       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\067.vir       HEUR/QVM20.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\069.vir       Win32/Trojan.Dropper.24b       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\070.vir       HEUR/QVM03.0.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\073.vir       HEUR/QVM03.0.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\074.vir       Win32/Trojan.dbe       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\079.vir       HEUR/QVM11.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\080.vir       Win32/Trojan.d0e       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\065.vir       HEUR/QVM05.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\083.vir       HEUR/QVM05.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\084.vir       Win32/Virus.f55       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\085.vir       HEUR/QVM20.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\082.vir       Win32/Trojan.Dropper.614       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\045.vir       HEUR/QVM20.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\088.vir       HEUR/QVM03.0.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\089.vir       Win32/Virus.Adware.f94       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\092.vir       Win32/Trojan.ca8       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\087.vir       Win32/Trojan.8d1       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\086.vir       HEUR/QVM20.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\093.vir       Win32/Trojan.fcf       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\094.vir       HEUR/QVM19.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\100.vir       HEUR/QVM20.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\099.vir       Win32/Trojan.97a       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\096.vir       HEUR/QVM20.1.0155.Malware.Gen       未处理
C:\Users\xfxnet2000\Desktop\MX Player Pro\刘00\艾11\61647309\85014225\孙33\Windows Defender\AVTestZipX\2017.9.22\071.vir       Win32/Virus.b7c       未处理[/mw_shl_code]

显示全部楼层 · 发表于 2017-9-22 09:26:55

本帖最后由 Dolby123 于 2017-9-22 10:11 编辑

EAM kill 66x , 剩余34x

[mw_shl_code=css,true]Scan type:
Objects: C:\Users\Administrator\Desktop\2017.9.22

Detect PUPs: On
Scan archives: On
Scan mail archives: Off
ADS Scan: On
File extension filter: Off
Direct disk access: Off

Scan start:       2017/9/22 9:25:19
C:\Users\Administrator\Desktop\2017.9.22\001.vir -> (INFECTED_JS)       JS:Trojan.Cryxos.1271 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\036.vir -> (objdata) -> (Embedded DocFile g)       Exploit.CVE-2017-8759.Gen (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\003.vir       Gen:Trojan.Heur.FU.jeX@aSyxcmm (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\004.vir       Gen:Variant.Graftor.406919 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\006.vir       Trojan.GenericKD.6008067 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\005.vir       Backdoor.Delf.76 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\008.vir       Trojan.RansomKD.6013480 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\009.vir       Gen:Variant.Razy.7578 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\007.vir       Trojan.Generic.22253521 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\010.vir       Trojan.Generic.22272219 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\012.vir       Trojan.GenericKD.6011622 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\014.vir       Trojan.Necurs.J (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\016.vir       Trojan.Agent (A) [290460]
C:\Users\Administrator\Desktop\2017.9.22\011.vir       Gen:Variant.MSILPerseus.40605 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\018.vir       Backdoor.Generic.72340 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\019.vir       Trojan.GenericKD.5650902 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\020.vir       Trojan.GenericKD.6010042 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\022.vir       Trojan.Generic.8290887 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\021.vir       Gen:Variant.Application.HackTool.CobaltStrike.1 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\024.vir       Trojan.Ransom.CerberKD.6012316 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\025.vir       Trojan.Spy.Zbot.SO (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\027.vir       Trojan.VBS.VBL (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\013.vir       Gen:Variant.Trojan.Metasploit.11 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\028.vir       Trojan.GenericKD.6009975 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\029.vir       Trojan.VBS.VBL (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\030.vir       Trojan.GenericKD.6011425 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\034.vir       Gen:Variant.Symmi.54480 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\038.vir       Trojan-Proxy.Agent (A) [290487]
C:\Users\Administrator\Desktop\2017.9.22\040.vir       Trojan.Crypt (A) [290491]
C:\Users\Administrator\Desktop\2017.9.22\041.vir       Trojan.Vbs.Downloader.AED (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\042.vir       Gen:Variant.MSIL.BackDoor.51 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\045.vir       Trojan.GenericKD.6011517 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\047.vir       Trojan-Ransom.Locky (A) [290457]
C:\Users\Administrator\Desktop\2017.9.22\048.vir       Trojan.GenericKD.6010000 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\049.vir       Trojan.RansomKD.12390330 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\051.vir       Trojan.GenericKD.5986130 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\053.vir       Trojan.Generic.22255731 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\054.vir       Gen:Variant.Strictor.147437 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\057.vir       Trojan-MSIL.Crypted.Gen.J (A) [290001]
C:\Users\Administrator\Desktop\2017.9.22\055.vir       Gen:Trojan.Heur.GZ.aeX@b4t!azj (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\064.vir       Trojan.RansomKD.12390134 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\065.vir       Trojan.Injector (A) [290466]
C:\Users\Administrator\Desktop\2017.9.22\066.vir       Trojan.Vbs.Downloader.AEC (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\060.vir       Gen:Variant.Razy.11684 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\067.vir       Trojan.GenericKD.12387018 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\069.vir       Gen:Variant.Strictor.147024 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\070.vir       Trojan.GenericKD.5795003 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\071.vir       Application.InstallShare (A) [287331]
C:\Users\Administrator\Desktop\2017.9.22\074.vir       Trojan.GenericKD.12392537 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\079.vir       Trojan.Generic.10198019 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\082.vir       Trojan.RansomKD.6011849 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\083.vir       Trojan.Injector (A) [290466]
C:\Users\Administrator\Desktop\2017.9.22\084.vir       Application.Bundler.Agent.B (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\086.vir       Trojan.RansomKD.12390398 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\087.vir       Trojan.Crypt (A) [290492]
C:\Users\Administrator\Desktop\2017.9.22\085.vir       Gen:Variant.Razy.151479 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\080.vir       Gen:Variant.Zusy.257498 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\091.vir       Trojan.VBS.VBL (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\092.vir       Trojan-Downloader.Upatre (A) [290486]
C:\Users\Administrator\Desktop\2017.9.22\094.vir       Trojan.Crypt (A) [290465]
C:\Users\Administrator\Desktop\2017.9.22\093.vir       Trojan.GenericKD.6011314 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\089.vir       Gen:Variant.Graftor.381100 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\096.vir       Trojan.RansomKD.6012113 (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\097.vir       Trojan.VBS.VBL (B) [krnl.xmd]
C:\Users\Administrator\Desktop\2017.9.22\100.vir       Trojan.Agent (A) [290502]
C:\Users\Administrator\Desktop\2017.9.22\099.vir       Generic.Malware.SL!bg.6221D253 (B) [krnl.xmd]

Scanned       100
Found       66

Scan end:       2017/9/22 9:25:24
Scan time:       0:00:05[/mw_shl_code]

剩余的样本已上报和双击测试

显示全部楼层 · 发表于 2017-9-22 09:30:54

本帖最后由 righac 于 2017-9-22 11:09 编辑

EEK检测到66个，火绒检测到35个，Avira检测到70个，大蜘蛛扫描器检测到61个

刚才又试下，Avira已经检测出76个，反应挺快

Emsisoft Emergency Kit - 版本 2017.8
上次更新： 2017/9/22 9:27:51
OS version: Windows 7x64 Service Pack 1

扫描设置：

扫描方式：自定义扫描
对象： E:\Downloads\Compressed\2017.9.22\

检测流氓软件(PUPs)： On
扫描压缩包： On
扫描邮件存档： Off
ADS数据流： On
文件扩展名过滤： Off
直接磁盘访问： Off

扫描开始于： 2017/9/22 10:52:41
E:\Downloads\Compressed\2017.9.22\003.vir    发现病毒： Gen:Trojan.Heur.FU.jeX@aSyxcmm (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\004.vir    发现病毒： Gen:Variant.Graftor.406919 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\005.vir    发现病毒： Backdoor.Delf.76 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\007.vir    发现病毒： Trojan.Generic.22253521 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\006.vir    发现病毒： Trojan.GenericKD.6008067 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\001.vir -> (INFECTED_JS)    发现病毒： JS:Trojan.Cryxos.1271 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\008.vir    发现病毒： Trojan.RansomKD.6013480 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\010.vir    发现病毒： Trojan.Generic.22272219 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\009.vir    发现病毒： Gen:Variant.Razy.7578 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\012.vir    发现病毒： Trojan.GenericKD.6011622 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\014.vir    发现病毒： Trojan.Necurs.J (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\011.vir    发现病毒： Gen:Variant.MSILPerseus.40605 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\016.vir    发现病毒： Trojan.Agent (A) [290460]
E:\Downloads\Compressed\2017.9.22\018.vir    发现病毒： Backdoor.Generic.72340 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\020.vir    发现病毒： Trojan.GenericKD.6010042 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\019.vir    发现病毒： Trojan.GenericKD.5650902 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\021.vir    发现病毒： Gen:Variant.Application.HackTool.CobaltStrike.1 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\013.vir    发现病毒： Gen:Variant.Trojan.Metasploit.11 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\022.vir    发现病毒： Trojan.Generic.8290887 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\027.vir    发现病毒： Trojan.VBS.VBL (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\028.vir    发现病毒： Trojan.GenericKD.6009975 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\029.vir    发现病毒： Trojan.VBS.VBL (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\024.vir    发现病毒： Trojan.Ransom.CerberKD.6012316 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\025.vir    发现病毒： Trojan.Spy.Zbot.SO (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\030.vir    发现病毒： Trojan.GenericKD.6011425 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\034.vir    发现病毒： Gen:Variant.Symmi.54480 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\036.vir -> (objdata) -> (Embedded DocFile g)    发现病毒： Exploit.CVE-2017-8759.Gen (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\038.vir    发现病毒： Trojan-Proxy.Agent (A) [290487]
E:\Downloads\Compressed\2017.9.22\041.vir    发现病毒： Trojan.Vbs.Downloader.AED (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\040.vir    发现病毒： Trojan.Crypt (A) [290491]
E:\Downloads\Compressed\2017.9.22\042.vir    发现病毒： Gen:Variant.MSIL.BackDoor.51 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\045.vir    发现病毒： Trojan.GenericKD.6011517 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\049.vir    发现病毒： Trojan.RansomKD.12390330 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\048.vir    发现病毒： Trojan.GenericKD.6010000 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\047.vir    发现病毒： Trojan-Ransom.Locky (A) [290457]
E:\Downloads\Compressed\2017.9.22\051.vir    发现病毒： Trojan.GenericKD.5986130 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\053.vir    发现病毒： Trojan.Generic.22255731 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\055.vir    发现病毒： Gen:Trojan.Heur.GZ.aeX@b4t!azj (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\054.vir    发现病毒： Gen:Variant.Strictor.147437 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\057.vir    发现病毒： Trojan-MSIL.Crypted.Gen.J (A) [290001]
E:\Downloads\Compressed\2017.9.22\060.vir    发现病毒： Gen:Variant.Razy.11684 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\064.vir    发现病毒： Trojan.RansomKD.12390134 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\066.vir    发现病毒： Trojan.Vbs.Downloader.AEC (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\067.vir    发现病毒： Trojan.GenericKD.12387018 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\065.vir    发现病毒： Trojan.Injector (A) [290466]
E:\Downloads\Compressed\2017.9.22\069.vir    发现病毒： Gen:Variant.Strictor.147024 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\070.vir    发现病毒： Trojan.GenericKD.5795003 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\071.vir    发现病毒： Application.InstallShare (A) [287331]
E:\Downloads\Compressed\2017.9.22\079.vir    发现病毒： Trojan.Generic.10198019 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\074.vir    发现病毒： Trojan.GenericKD.12392537 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\080.vir    发现病毒： Gen:Variant.Zusy.257498 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\082.vir    发现病毒： Trojan.RansomKD.6011849 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\083.vir    发现病毒： Trojan.Injector (A) [290466]
E:\Downloads\Compressed\2017.9.22\086.vir    发现病毒： Trojan.RansomKD.12390398 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\085.vir    发现病毒： Gen:Variant.Razy.151479 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\084.vir    发现病毒： Application.Bundler.Agent.B (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\091.vir    发现病毒： Trojan.VBS.VBL (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\087.vir    发现病毒： Trojan.Crypt (A) [290492]
E:\Downloads\Compressed\2017.9.22\089.vir    发现病毒： Gen:Variant.Graftor.381100 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\092.vir    发现病毒： Trojan-Downloader.Upatre (A) [290486]
E:\Downloads\Compressed\2017.9.22\093.vir    发现病毒： Trojan.GenericKD.6011314 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\094.vir    发现病毒： Trojan.Crypt (A) [290465]
E:\Downloads\Compressed\2017.9.22\096.vir    发现病毒： Trojan.RansomKD.6012113 (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\097.vir    发现病毒： Trojan.VBS.VBL (B) [krnl.xmd]
E:\Downloads\Compressed\2017.9.22\100.vir    发现病毒： Trojan.Agent (A) [290502]
E:\Downloads\Compressed\2017.9.22\099.vir    发现病毒： Generic.Malware.SL!bg.6221D253 (B) [krnl.xmd]

已扫描 100
发现 66

扫描完成后： 2017/9/22 10:52:47
扫描时间： 0:00:06

Dr.Web Scanner SE for Windows v9.1.4.01271
Platform: Windows 7 Ultimate x64/WOW (Build 7601), Service Pack 1
API Version: 2.2
Scanning Engine version: 11.1.11.7030
Virus Finding Engine version: 7.0.28.2020
Object(s) to scan:
- E:\Downloads\Compressed\2017.9.22

E:\Downloads\Compressed\2017.9.22\001.vir - infected with JS.Muldrop.468
E:\Downloads\Compressed\2017.9.22\001.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\001.vir - infected
E:\Downloads\Compressed\2017.9.22\002.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\002.vir - Ok
E:\Downloads\Compressed\2017.9.22\003.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\006.vir - packed by FLY-CODE
E:\Downloads\Compressed\2017.9.22\004.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\005.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\006.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\007.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\006.vir - Ok
E:\Downloads\Compressed\2017.9.22\007.vir - Ok
E:\Downloads\Compressed\2017.9.22\003.vir - infected with Trojan.Inject2.59178
E:\Downloads\Compressed\2017.9.22\003.vir - infected
E:\Downloads\Compressed\2017.9.22\008.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\004.vir - packed by PECRYPT
E:\Downloads\Compressed\2017.9.22\010.vir - infected with Trojan.MulDrop7.40153
E:\Downloads\Compressed\2017.9.22\010.vir - infected
>E:\Downloads\Compressed\2017.9.22\005.vir - packed by UPX
E:\Downloads\Compressed\2017.9.22\011.vir - infected with Trojan.DownLoader25.35766
E:\Downloads\Compressed\2017.9.22\011.vir - infected
E:\Downloads\Compressed\2017.9.22\009.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\010.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\011.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\013.vir - infected with Trojan.Swrort.1
E:\Downloads\Compressed\2017.9.22\013.vir - infected
E:\Downloads\Compressed\2017.9.22\009.vir - infected with Trojan.DownLoader25.34637
E:\Downloads\Compressed\2017.9.22\009.vir - infected
E:\Downloads\Compressed\2017.9.22\012.vir - Ok
E:\Downloads\Compressed\2017.9.22\008.vir - infected with Trojan.DownLoader23.22764
E:\Downloads\Compressed\2017.9.22\008.vir - infected
E:\Downloads\Compressed\2017.9.22\012.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\013.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\014.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\017.vir is OPEN XML container
E:\Downloads\Compressed\2017.9.22\016.vir - Ok
E:\Downloads\Compressed\2017.9.22\015.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\016.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\017.vir - container
>E:\Downloads\Compressed\2017.9.22\015.vir is RAR archive
E:\Downloads\Compressed\2017.9.22\015.vir - Ok
E:\Downloads\Compressed\2017.9.22\015.vir - archive
E:\Downloads\Compressed\2017.9.22\005.vir - infected with Flooder.AlienMisc
E:\Downloads\Compressed\2017.9.22\005.vir - infected
E:\Downloads\Compressed\2017.9.22\004.vir - Ok
E:\Downloads\Compressed\2017.9.22\017.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\014.vir - infected with Trojan.Necurs.414
E:\Downloads\Compressed\2017.9.22\014.vir - infected
E:\Downloads\Compressed\2017.9.22\018.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\019.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\020.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\020.vir - Ok
E:\Downloads\Compressed\2017.9.22\021.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\019.vir - infected with BackDoor.Bebloh.310
E:\Downloads\Compressed\2017.9.22\019.vir - infected
E:\Downloads\Compressed\2017.9.22\022.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\023.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\021.vir - infected with BackDoor.Meterpreter.4
E:\Downloads\Compressed\2017.9.22\021.vir - infected
E:\Downloads\Compressed\2017.9.22\023.vir - Ok
E:\Downloads\Compressed\2017.9.22\024.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\026.vir is PDF container
E:\Downloads\Compressed\2017.9.22\026.vir - container
E:\Downloads\Compressed\2017.9.22\027.vir - infected with VBS.DownLoader.974
E:\Downloads\Compressed\2017.9.22\027.vir - infected
E:\Downloads\Compressed\2017.9.22\025.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\026.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\022.vir - infected with Trojan.NtRootKit.13619
E:\Downloads\Compressed\2017.9.22\022.vir - infected
E:\Downloads\Compressed\2017.9.22\027.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\029.vir - infected with VBS.DownLoader.974
E:\Downloads\Compressed\2017.9.22\029.vir - infected
E:\Downloads\Compressed\2017.9.22\024.vir - infected with Trojan.DownLoader25.35515
E:\Downloads\Compressed\2017.9.22\024.vir - infected
E:\Downloads\Compressed\2017.9.22\028.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\028.vir - Ok
E:\Downloads\Compressed\2017.9.22\029.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\032.vir is OPEN XML container
>>E:\Downloads\Compressed\2017.9.22\032.vir\word\embeddings\oleObject1.bin is OLE container
E:\Downloads\Compressed\2017.9.22\032.vir\word\embeddings\oleObject1.bin\ord_conf_9202017.js - infected with JS.Siggen.1459
>>E:\Downloads\Compressed\2017.9.22\032.vir\word\embeddings\oleObject2.bin is OLE container
E:\Downloads\Compressed\2017.9.22\032.vir\word\embeddings\oleObject2.bin\ord_conf_9202017.js - infected with JS.Siggen.1459
E:\Downloads\Compressed\2017.9.22\030.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\031.vir - Ok
E:\Downloads\Compressed\2017.9.22\032.vir - infected container
E:\Downloads\Compressed\2017.9.22\018.vir - infected with Trojan.DownLoader.60627
E:\Downloads\Compressed\2017.9.22\018.vir - infected
E:\Downloads\Compressed\2017.9.22\031.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\032.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\033.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\030.vir - infected with Trojan.PWS.Panda.11620
E:\Downloads\Compressed\2017.9.22\030.vir - infected
>E:\Downloads\Compressed\2017.9.22\036.vir is RTF container
E:\Downloads\Compressed\2017.9.22\033.vir - Ok
>E:\Downloads\Compressed\2017.9.22\035.vir - packed by FLY-CODE
E:\Downloads\Compressed\2017.9.22\036.vir\OLEstream-1 - infected with Exploit.CVE-2017-8759.5
E:\Downloads\Compressed\2017.9.22\036.vir - infected container
E:\Downloads\Compressed\2017.9.22\034.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\035.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\037.vir is PDF container
E:\Downloads\Compressed\2017.9.22\037.vir - container
E:\Downloads\Compressed\2017.9.22\036.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\034.vir - infected with Trojan.PWS.Stealer.1932
E:\Downloads\Compressed\2017.9.22\034.vir - infected
E:\Downloads\Compressed\2017.9.22\039.vir - Ok
E:\Downloads\Compressed\2017.9.22\037.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\038.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\041.vir - infected with VBS.DownLoader.974
E:\Downloads\Compressed\2017.9.22\041.vir - infected
E:\Downloads\Compressed\2017.9.22\040.vir - Ok
E:\Downloads\Compressed\2017.9.22\039.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\038.vir - infected with Trojan.DownLoader25.35456
E:\Downloads\Compressed\2017.9.22\038.vir - infected
E:\Downloads\Compressed\2017.9.22\040.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\041.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\043.vir is PDF container
E:\Downloads\Compressed\2017.9.22\043.vir - container
E:\Downloads\Compressed\2017.9.22\042.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\044.vir - Ok
E:\Downloads\Compressed\2017.9.22\045.vir - Ok
E:\Downloads\Compressed\2017.9.22\043.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\042.vir - infected with Trojan.PWS.Stealer.19347
E:\Downloads\Compressed\2017.9.22\042.vir - infected
E:\Downloads\Compressed\2017.9.22\046.vir - infected with Trojan.PWS.Stealer.1932
E:\Downloads\Compressed\2017.9.22\046.vir - infected
E:\Downloads\Compressed\2017.9.22\044.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\045.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\046.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\047.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\049.vir - packed by FLY-CODE
E:\Downloads\Compressed\2017.9.22\048.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\049.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\047.vir - infected with Trojan.Encoder.13570
E:\Downloads\Compressed\2017.9.22\047.vir - infected
E:\Downloads\Compressed\2017.9.22\050.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\050.vir - infected with Trojan.DownLoader25.35586
E:\Downloads\Compressed\2017.9.22\050.vir - infected
E:\Downloads\Compressed\2017.9.22\048.vir - infected with Trojan.Proxy2.164
E:\Downloads\Compressed\2017.9.22\048.vir - infected
E:\Downloads\Compressed\2017.9.22\049.vir - Ok
E:\Downloads\Compressed\2017.9.22\052.vir - Ok
E:\Downloads\Compressed\2017.9.22\051.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\052.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\053.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\054.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\055.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\053.vir - Ok
E:\Downloads\Compressed\2017.9.22\056.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\051.vir - infected with Trojan.PWS.Stealer.17779
E:\Downloads\Compressed\2017.9.22\057.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\051.vir - infected
E:\Downloads\Compressed\2017.9.22\058.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\058.vir is OPEN XML container
>E:\Downloads\Compressed\2017.9.22\059.vir is PDF container
E:\Downloads\Compressed\2017.9.22\059.vir - container
>E:\Downloads\Compressed\2017.9.22\055.vir - packed by FLY-CODE
>>E:\Downloads\Compressed\2017.9.22\058.vir\word\embeddings\oleObject1.bin is OLE container
E:\Downloads\Compressed\2017.9.22\058.vir\word\embeddings\oleObject1.bin\Tax Return MsWord.js - infected with JS.Siggen.1493
E:\Downloads\Compressed\2017.9.22\059.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\054.vir - infected with Trojan.PWS.Panda.10151
E:\Downloads\Compressed\2017.9.22\054.vir - infected
E:\Downloads\Compressed\2017.9.22\060.vir:Zone.Identifier - Ok
>>E:\Downloads\Compressed\2017.9.22\058.vir\word\embeddings\oleObject2.bin is OLE container
E:\Downloads\Compressed\2017.9.22\058.vir\word\embeddings\oleObject2.bin\Tax Return Excel.js - infected with JS.Siggen.1493
E:\Downloads\Compressed\2017.9.22\061.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\061.vir is PDF container
E:\Downloads\Compressed\2017.9.22\061.vir - container
E:\Downloads\Compressed\2017.9.22\062.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\063.vir is PDF container
E:\Downloads\Compressed\2017.9.22\063.vir - container
E:\Downloads\Compressed\2017.9.22\063.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\064.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\058.vir - infected container
E:\Downloads\Compressed\2017.9.22\065.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\066.vir - infected with VBS.DownLoader.974
E:\Downloads\Compressed\2017.9.22\066.vir - infected
E:\Downloads\Compressed\2017.9.22\066.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\064.vir - infected with Trojan.DownLoader24.60823
E:\Downloads\Compressed\2017.9.22\064.vir - infected
E:\Downloads\Compressed\2017.9.22\067.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\068.vir is PDF container
E:\Downloads\Compressed\2017.9.22\068.vir - container
E:\Downloads\Compressed\2017.9.22\068.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\060.vir - packed by UPX
>E:\Downloads\Compressed\2017.9.22\056.vir is BINARYRES container
E:\Downloads\Compressed\2017.9.22\069.vir - infected with BackDoor.Comet.2020
E:\Downloads\Compressed\2017.9.22\069.vir - infected
E:\Downloads\Compressed\2017.9.22\069.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\065.vir - infected with Trojan.PWS.Stealer.17779
E:\Downloads\Compressed\2017.9.22\065.vir - infected
E:\Downloads\Compressed\2017.9.22\070.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\067.vir - packed by FLY-CODE
>>E:\Downloads\Compressed\2017.9.22\056.vir\data001 is NET container
>>E:\Downloads\Compressed\2017.9.22\056.vir\data002 is NET container
>>>E:\Downloads\Compressed\2017.9.22\056.vir\data002\MetroFramework_Design_dll is GZIP archive
E:\Downloads\Compressed\2017.9.22\056.vir\data002\MetroFramework_Design_dll - Ok
>>>E:\Downloads\Compressed\2017.9.22\056.vir\data002\MetroFramework_Fonts_dll is GZIP archive
E:\Downloads\Compressed\2017.9.22\056.vir\data002\MetroFramework_Fonts_dll - Ok
>>>E:\Downloads\Compressed\2017.9.22\056.vir\data002\MetroFramework_dll is GZIP archive
E:\Downloads\Compressed\2017.9.22\056.vir\data002\MetroFramework_dll - Ok
E:\Downloads\Compressed\2017.9.22\056.vir\data002 - Ok
E:\Downloads\Compressed\2017.9.22\056.vir - Ok
E:\Downloads\Compressed\2017.9.22\056.vir - container
E:\Downloads\Compressed\2017.9.22\071.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\072.vir is OPEN XML container
>>E:\Downloads\Compressed\2017.9.22\072.vir\word\embeddings\oleObject1.bin is OLE container
E:\Downloads\Compressed\2017.9.22\072.vir\word\embeddings\oleObject1.bin\Shiping Label AUSPOST.JS - infected with JS.Siggen.1499
E:\Downloads\Compressed\2017.9.22\070.vir - infected with Trojan.Inject2.57150
E:\Downloads\Compressed\2017.9.22\070.vir - infected
E:\Downloads\Compressed\2017.9.22\072.vir:Zone.Identifier - Ok
>>E:\Downloads\Compressed\2017.9.22\072.vir\word\embeddings\oleObject2.bin is OLE container
E:\Downloads\Compressed\2017.9.22\072.vir\word\embeddings\oleObject2.bin\Shiping Label AUSPOST.JS - infected with JS.Siggen.1499
E:\Downloads\Compressed\2017.9.22\072.vir - infected container
E:\Downloads\Compressed\2017.9.22\073.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\067.vir - Ok
E:\Downloads\Compressed\2017.9.22\074.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\075.vir is RTF container
E:\Downloads\Compressed\2017.9.22\073.vir - infected with Trojan.DownLoader25.35767
E:\Downloads\Compressed\2017.9.22\073.vir - infected
E:\Downloads\Compressed\2017.9.22\075.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\071.vir - is adware program Adware.Downware.11148
E:\Downloads\Compressed\2017.9.22\071.vir - infected
E:\Downloads\Compressed\2017.9.22\076.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\074.vir - infected with Trojan.Encoder.14737
E:\Downloads\Compressed\2017.9.22\074.vir - infected
E:\Downloads\Compressed\2017.9.22\077.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\078.vir - infected with Trojan.MulDrop7.41330
E:\Downloads\Compressed\2017.9.22\078.vir - infected
E:\Downloads\Compressed\2017.9.22\078.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\077.vir is PDF container
E:\Downloads\Compressed\2017.9.22\077.vir - container
E:\Downloads\Compressed\2017.9.22\079.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\060.vir - infected with Trojan.PWS.Stealer.1932
E:\Downloads\Compressed\2017.9.22\060.vir - infected
E:\Downloads\Compressed\2017.9.22\080.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\081.vir is PDF container
E:\Downloads\Compressed\2017.9.22\081.vir - container
E:\Downloads\Compressed\2017.9.22\081.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\075.vir\OLEstream-1 - infected with Exploit.Rtf.209
E:\Downloads\Compressed\2017.9.22\075.vir - infected container
E:\Downloads\Compressed\2017.9.22\082.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\083.vir - infected with Trojan.PWS.Stealer.17779
E:\Downloads\Compressed\2017.9.22\083.vir - infected
E:\Downloads\Compressed\2017.9.22\083.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\062.vir - packed by UPX
E:\Downloads\Compressed\2017.9.22\080.vir - infected with Trojan.DownLoader25.692
E:\Downloads\Compressed\2017.9.22\082.vir - infected with Trojan.DownLoader25.35438
E:\Downloads\Compressed\2017.9.22\082.vir - infected
E:\Downloads\Compressed\2017.9.22\084.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\084.vir - infected with Trojan.Packed.28561
E:\Downloads\Compressed\2017.9.22\084.vir - infected
E:\Downloads\Compressed\2017.9.22\080.vir - infected
E:\Downloads\Compressed\2017.9.22\085.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\086.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\085.vir - infected with Trojan.PWS.Stealer.19373
E:\Downloads\Compressed\2017.9.22\085.vir - infected
E:\Downloads\Compressed\2017.9.22\087.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\088.vir - infected with Trojan.DownLoader25.34837
E:\Downloads\Compressed\2017.9.22\088.vir - infected
E:\Downloads\Compressed\2017.9.22\088.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\086.vir - packed by FLY-CODE
>E:\Downloads\Compressed\2017.9.22\076.vir - packed by UPX
E:\Downloads\Compressed\2017.9.22\025.vir - infected with Trojan.PWS.Panda.311
E:\Downloads\Compressed\2017.9.22\025.vir - infected
E:\Downloads\Compressed\2017.9.22\089.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\079.vir - packed by UPX
E:\Downloads\Compressed\2017.9.22\090.vir - Ok
E:\Downloads\Compressed\2017.9.22\090.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\091.vir - infected with VBS.DownLoader.974
E:\Downloads\Compressed\2017.9.22\091.vir - infected
E:\Downloads\Compressed\2017.9.22\091.vir:Zone.Identifier - Ok
>>E:\Downloads\Compressed\2017.9.22\076.vir is XZ container
E:\Downloads\Compressed\2017.9.22\076.vir - container
E:\Downloads\Compressed\2017.9.22\092.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\092.vir - infected with Trojan.PWS.Panda.11620
E:\Downloads\Compressed\2017.9.22\092.vir - infected
E:\Downloads\Compressed\2017.9.22\093.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\094.vir - packed by PESTUB
E:\Downloads\Compressed\2017.9.22\093.vir - infected with Trojan.PWS.Panda.11620
E:\Downloads\Compressed\2017.9.22\093.vir - infected
E:\Downloads\Compressed\2017.9.22\094.vir:Zone.Identifier - Ok
>E:\Downloads\Compressed\2017.9.22\095.vir is PDF container
E:\Downloads\Compressed\2017.9.22\095.vir - container
E:\Downloads\Compressed\2017.9.22\095.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\096.vir - infected with Trojan.Encoder.13570
E:\Downloads\Compressed\2017.9.22\096.vir - infected
E:\Downloads\Compressed\2017.9.22\096.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\097.vir - infected with JS.DownLoader.4237
E:\Downloads\Compressed\2017.9.22\097.vir - infected
E:\Downloads\Compressed\2017.9.22\097.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\098.vir - Ok
E:\Downloads\Compressed\2017.9.22\098.vir:Zone.Identifier - Ok
>>E:\Downloads\Compressed\2017.9.22\094.vir - packed by FLY-CODE
E:\Downloads\Compressed\2017.9.22\099.vir - Ok
E:\Downloads\Compressed\2017.9.22\099.vir:Zone.Identifier - Ok
>>E:\Downloads\Compressed\2017.9.22\062.vir is AUTOIT container
E:\Downloads\Compressed\2017.9.22\062.vir - container
E:\Downloads\Compressed\2017.9.22\100.vir:Zone.Identifier - Ok
E:\Downloads\Compressed\2017.9.22\079.vir - infected with Win32.HLLW.Autoruner1.41846
E:\Downloads\Compressed\2017.9.22\079.vir - infected
>E:\Downloads\Compressed\2017.9.22\100.vir - packed by FLY-CODE
E:\Downloads\Compressed\2017.9.22\100.vir - Ok
E:\Downloads\Compressed\2017.9.22\094.vir - Ok
>>E:\Downloads\Compressed\2017.9.22\086.vir is BINARYRES container
>>>E:\Downloads\Compressed\2017.9.22\086.vir\data001 - packed by FLY-CODE
>>E:\Downloads\Compressed\2017.9.22\035.vir - packed by PESTUB
E:\Downloads\Compressed\2017.9.22\035.vir - Ok
E:\Downloads\Compressed\2017.9.22\086.vir - container
E:\Downloads\Compressed\2017.9.22\057.vir - infected with Trojan.DownLoader25.35682
E:\Downloads\Compressed\2017.9.22\057.vir - infected
E:\Downloads\Compressed\2017.9.22\087.vir - infected with Trojan.MulDrop7.40740
E:\Downloads\Compressed\2017.9.22\087.vir - infected
E:\Downloads\Compressed\2017.9.22\089.vir - infected with Trojan.LoadMoney.2496
E:\Downloads\Compressed\2017.9.22\089.vir - infected
E:\Downloads\Compressed\2017.9.22\055.vir - Ok

Total 23206144 bytes in 200 files scanned (297 objects)
Total 142 files (225 objects) are clean
Total 58 files (61 objects) are infected
Scan time is 00:00:11.023

显示全部楼层 · 发表于 2017-9-22 09:34:34

Avira检测到70个，上报云后又检测出5个，余25个

显示全部楼层 · 发表于 2017-9-22 09:46:41

ESET kill 68x
Log
Scan Log
Version of virus signature database: 16120 (20170921)
Date: 2017/9/22  Time: 9:38:26
Scanned disks, folders and files: C:\Users\tom-lei.zhu\Desktop\2017.9.22\2017.9.22
C:\Users\Desktop\2017.9.22\2017.9.22\002.vir - a variant of Win32/EHDoor.A trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\003.vir - a variant of Win32/Agent.YIJ trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\004.vir - a variant of Win32/BitCoinMiner.DN potentially unsafe application - action selection postponed until scan completion
C:\Users\Desktop\2017.9.22\2017.9.22\005.vir - a variant of Win32/Delf.AKH trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\006.vir - a variant of Generik.BZIVCIA trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\007.vir - a variant of Win32/Kryptik.FWUH trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\009.vir - a variant of MSIL/Injector.NIK trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\010.vir » EZIRIZ » protected.exe » DOTNETREACTOR - is OK
C:\Users\Desktop\2017.9.22\2017.9.22\011.vir - a variant of MSIL/Packed.Confuser.J suspicious application - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\012.vir - a variant of Win32/Kryptik.FWUU trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\013.vir - a variant of Win32/Rozena.AM trojan - action selection postponed until scan completion
C:\Users\Desktop\2017.9.22\2017.9.22\014.vir - Win32/TrojanDownloader.Necurs.B trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\016.vir - a variant of Win32/Kryptik.FWUH trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\018.vir - Win32/Optix.Pro.13 trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\019.vir - Win32/Spy.Bebloh.O trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\020.vir - a variant of Win32/Kryptik.FWUH trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\021.vir - a variant of Win32/RiskWare.CobaltStrike.Beacon.A application - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\022.vir - Win32/AutoRun.Qhost.AB worm - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\023.vir - VBA/TrojanDownloader.Agent.EHP trojan - cleaned
C:\Users\Desktop\2017.9.22\2017.9.22\024.vir - a variant of Win32/Injector.DRVD trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\025.vir - a variant of Win32/Spy.Zbot.NJ trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\027.vir - VBS/TrojanDownloader.Agent.PFE trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\028.vir - a variant of Win32/Kryptik.FWUH trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\029.vir - VBS/TrojanDownloader.Agent.PFE trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\030.vir - Win32/Spy.Zbot.ACZ trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\032.vir » ZIP » word/embeddings/oleObject1.bin » OLEDATA » ord_conf_9202017.js - JS/TrojanDownloader.Nemucod.DRT trojan - action selection postponed until scan completion
C:\Users\Desktop\2017.9.22\2017.9.22\032.vir » ZIP » word/embeddings/oleObject2.bin » OLEDATA » ord_conf_9202017.js - JS/TrojanDownloader.Nemucod.DRT trojan - action selection postponed until scan completion
C:\Users\Desktop\2017.9.22\2017.9.22\034.vir - Win32/PSW.Fareit.A trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\038.vir - Win32/TrojanProxy.Agent.NYH trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\040.vir - a variant of Win32/Kryptik.FWUU trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\041.vir - VBS/TrojanDownloader.Agent.PFE trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\042.vir - a variant of MSIL/Injector.SVU trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\045.vir - a variant of Win32/Kryptik.FWUH trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\046.vir - a variant of MSIL/Injector.STS trojan - cleaned by deleting [1]
C:\UsersDesktop\2017.9.22\2017.9.22\047.vir - Win32/Filecoder.Locky.L trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\048.vir - a variant of Win32/Kryptik.FWTZ trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\050.vir - a variant of Win32/Injector.DRUX trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\051.vir - a variant of Win32/Injector.DRPL trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\052.vir - VBA/TrojanDownloader.Agent.EHP trojan - cleaned
C:\Users\Desktop\2017.9.22\2017.9.22\053.vir - Win32/Emotet.AZ trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\054.vir - Suspicious Object - action selection postponed until scan completion
C:\Users\Desktop\2017.9.22\2017.9.22\055.vir - Win32/TrojanDownloader.Zurgop.CO trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\057.vir - a variant of MSIL/Kryptik.KPP trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\058.vir » ZIP » word/embeddings/oleObject1.bin » OLEDATA » Tax Return MsWord.js - JS/TrojanDownloader.Nemucod.DRT trojan - action selection postponed until scan completion
C:\Users\Desktop\2017.9.22\2017.9.22\058.vir » ZIP » word/embeddings/oleObject2.bin » OLEDATA » Tax Return Excel.js - JS/TrojanDownloader.Nemucod.DRT trojan - action selection postponed until scan completion
C:\Users\Desktop\2017.9.22\2017.9.22\060.vir - a variant of Win32/PSW.Fareit.A trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\062.vir » UPX v13_m14 » AUTOIT »  - archive damaged
C:\Users\Desktop\2017.9.22\2017.9.22\064.vir » BAT2EXE - archive damaged
C:\Users\Desktop\2017.9.22\2017.9.22\065.vir - a variant of Win32/Injector.DRTT trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\066.vir - VBS/TrojanDownloader.Agent.PFE trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\067.vir - a variant of Win32/Kryptik.FWTK trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\069.vir - a variant of MSIL/Kryptik.KVD trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\070.vir - a variant of MSIL/Injector.SRM trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\071.vir - a variant of Win32/4Shared.O potentially unwanted application - action selection postponed until scan completion
C:\Users\Desktop\2017.9.22\2017.9.22\072.vir » ZIP » word/embeddings/oleObject1.bin » OLEDATA » Shiping Label AUSPOST.JS - JS/TrojanDownloader.Nemucod.DRT trojan - action selection postponed until scan completion
C:\Users\Desktop\2017.9.22\2017.9.22\072.vir » ZIP » word/embeddings/oleObject2.bin » OLEDATA » Shiping Label AUSPOST.JS - JS/TrojanDownloader.Nemucod.DRT trojan - action selection postponed until scan completion
C:\Users\Desktop\2017.9.22\2017.9.22\073.vir - Win32/TrojanDownloader.Zurgop.CO trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\074.vir - a variant of MSIL/Filecoder.FF trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\079.vir » UPX v13_m8 » AUTOIT » script.au3 - Win32/AutoRun.Autoit.FN worm - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\079.vir » UPX v13_m8 » AUTOIT » script.bin - a variant of Win32/AutoRun.Autoit.FU worm - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\079.vir » AUTOIT - is OK
C:\Users\Desktop\2017.9.22\2017.9.22\080.vir - a variant of Generik.EYNPYCR trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\082.vir - a variant of MSIL/Kryptik.ISS trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\083.vir - a variant of Win32/Injector.DRTT trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\084.vir - a variant of Win32/AdWare.iBryte.X application - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\085.vir - a variant of Win32/PSW.Fareit.Q trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\086.vir - a variant of Win32/GenKryptik.AWTT trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\087.vir - a variant of Win32/Kryptik.FWSH trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\088.vir - a variant of Win32/TrojanDownloader.Banload.YBB trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\089.vir - a variant of Win32/Adware.SearchGo.B application - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\090.vir - VBA/TrojanDownloader.Agent.EHP trojan - cleaned
C:\Users\Desktop\2017.9.22\2017.9.22\091.vir - VBS/TrojanDownloader.Agent.PFE trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\092.vir - a variant of Win32/GenKryptik.AWTP trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\093.vir - Win32/Spy.Zbot.ACZ trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\094.vir - a variant of Win32/Kryptik.FVPB trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\096.vir - Win32/Spy.Zbot.ACZ trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\097.vir - VBS/TrojanDownloader.Agent.PFM trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\099.vir » MPressNet - a variant of MSIL/Bladabindi.BB trojan - deleted
C:\Users\Desktop\2017.9.22\2017.9.22\100.vir - Win32/Emotet.AZ trojan - cleaned by deleting [1]
C:\Users\Desktop\2017.9.22\2017.9.22\004.vir - a variant of Win32/BitCoinMiner.DN potentially unsafe application - deleted
C:\Users\Desktop\2017.9.22\2017.9.22\013.vir - a variant of Win32/Rozena.AM trojan - deleted
C:\Users\Desktop\2017.9.22\2017.9.22\032.vir » ZIP » word/embeddings/oleObject1.bin » OLEDATA » ord_conf_9202017.js - JS/TrojanDownloader.Nemucod.DRT trojan - deleted
C:\Users\Desktop\2017.9.22\2017.9.22\032.vir » ZIP » word/embeddings/oleObject2.bin » OLEDATA » ord_conf_9202017.js - JS/TrojanDownloader.Nemucod.DRT trojan - deleted
C:\Users\Desktop\2017.9.22\2017.9.22\054.vir - Suspicious Object - deleted
C:\Users\Desktop\2017.9.22\2017.9.22\058.vir » ZIP » word/embeddings/oleObject1.bin » OLEDATA » Tax Return MsWord.js - JS/TrojanDownloader.Nemucod.DRT trojan - deleted
C:\Users\Desktop\2017.9.22\2017.9.22\058.vir » ZIP » word/embeddings/oleObject2.bin » OLEDATA » Tax Return Excel.js - JS/TrojanDownloader.Nemucod.DRT trojan - deleted
C:\Users\Desktop\2017.9.22\2017.9.22\071.vir - a variant of Win32/4Shared.O potentially unwanted application - deleted
C:\Users\Desktop\2017.9.22\2017.9.22\072.vir » ZIP » word/embeddings/oleObject1.bin » OLEDATA » Shiping Label AUSPOST.JS - JS/TrojanDownloader.Nemucod.DRT trojan - deleted
C:\Users\Desktop\2017.9.22\2017.9.22\072.vir » ZIP » word/embeddings/oleObject2.bin » OLEDATA » Shiping Label AUSPOST.JS - JS/TrojanDownloader.Nemucod.DRT trojan - deleted
Number of scanned objects: 185
Number of threats found: 75
Number of cleaned objects: 76
Time of completion: 9:39:40  Total scanning time: 74 sec (00:01:14)

Notes:
[1] Object has been deleted as it only contained the virus body.

[病毒样本] 精睿样本测试（17.9.22）

评分

本帖子中包含更多资源

评分

本帖子中包含更多资源

本帖子中包含更多资源

X-Sec VS 瑞星---X-Sec胜

本帖子中包含更多资源

本帖子中包含更多资源

评分

浏览过的版块