诺顿来了!
检测99,修复47个!
[mw_shl_code=css,true]Resolved Threats:
W32.Ramnit.B
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
27 Registry Entries
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\->Userinit:C:\WINDOWS\system32\userinit.exe, - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->AntiVirusDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->AntiVirusDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->FirewallDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->FirewallDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->UpdatesDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->UpdatesDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->DoNotAllowExceptions:1 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->DoNotAllowExceptions:1 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->DisableNotifications:0 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->DisableNotifications:0 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->EnableFirewall:1 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->EnableFirewall:1 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv->Start:2 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv->Start:2 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinDefend\->Start:3 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinDefend\->Start:3 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system->EnableLUA:1 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system->EnableLUA:1 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center->AntiVirusOverride:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center->AntiVirusOverride:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center->FirewallOverride:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center->FirewallOverride:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center->UacDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center->UacDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wscsvc\->Start:2 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wscsvc\->Start:2 - Repaired
14 Files
e:\virus\huge\2015.4.24\021.vir - Deleted
e:\virus\huge\2015.4.24\009.vir - Deleted
e:\virus\huge\2015.4.24\014.vir - Deleted
e:\virus\huge\2015.4.24\008.vir - Deleted
e:\virus\huge\2015.4.24\012.vir - Deleted
e:\virus\huge\2015.4.24\025.vir - Deleted
e:\virus\huge\2015.4.24\052.vir - Deleted
e:\virus\huge\2015.4.24\046.vir - Deleted
e:\virus\huge\2015.4.24\057.vir - Deleted
e:\virus\huge\2015.4.24\074.vir - Deleted
e:\virus\huge\2015.4.24\080.vir - Deleted
e:\virus\huge\2015.4.24\083.vir - Deleted
e:\virus\huge\2015.4.24\086.vir - Deleted
e:\virus\huge\2015.4.24\096.vir - Deleted
1 Browser Cache
W32.Ramnit!inf
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
39 Files
e:\virus\huge\2015.4.24\042.vir - Repaired
e:\virus\huge\2015.4.24\006.vir - Repaired
e:\virus\huge\2015.4.24\016.vir - Repaired
e:\virus\huge\2015.4.24\026.vir - Repaired
e:\virus\huge\2015.4.24\030.vir - Repaired
e:\virus\huge\2015.4.24\031.vir - Repaired
e:\virus\huge\2015.4.24\028.vir - Repaired
e:\virus\huge\2015.4.24\032.vir - Repaired
e:\virus\huge\2015.4.24\034.vir - Repaired
e:\virus\huge\2015.4.24\047.vir - Repaired
e:\virus\huge\2015.4.24\048.vir - Repaired
e:\virus\huge\2015.4.24\039.vir - Repaired
e:\virus\huge\2015.4.24\051.vir - Repaired
e:\virus\huge\2015.4.24\045.vir - Repaired
e:\virus\huge\2015.4.24\053.vir - Repaired
e:\virus\huge\2015.4.24\055.vir - Repaired
e:\virus\huge\2015.4.24\056.vir - Repaired
e:\virus\huge\2015.4.24\059.vir - Repaired
e:\virus\huge\2015.4.24\060.vir - Repaired
e:\virus\huge\2015.4.24\058.vir - Repaired
e:\virus\huge\2015.4.24\061.vir - Repaired
e:\virus\huge\2015.4.24\069.vir - Repaired
e:\virus\huge\2015.4.24\072.vir - Repaired
e:\virus\huge\2015.4.24\062.vir - Repaired
e:\virus\huge\2015.4.24\066.vir - Repaired
e:\virus\huge\2015.4.24\076.vir - Repaired
e:\virus\huge\2015.4.24\073.vir - Repaired
e:\virus\huge\2015.4.24\067.vir - Repaired
e:\virus\huge\2015.4.24\077.vir - Repaired
e:\virus\huge\2015.4.24\078.vir - Repaired
e:\virus\huge\2015.4.24\079.vir - Repaired
e:\virus\huge\2015.4.24\081.vir - Repaired
e:\virus\huge\2015.4.24\088.vir - Repaired
e:\virus\huge\2015.4.24\085.vir - Repaired
e:\virus\huge\2015.4.24\089.vir - Repaired
e:\virus\huge\2015.4.24\097.vir - Repaired
e:\virus\huge\2015.4.24\094.vir - Repaired
e:\virus\huge\2015.4.24\098.vir - Repaired
e:\virus\huge\2015.4.24\100.vir - Repaired
1 Browser Cache
Suspicious.Cloud.7.F
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\005.vir - Deleted
1 Browser Cache
W32.Ramnit.B!inf
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
27 Registry Entries
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->AntiVirusDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->AntiVirusDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->FirewallDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->FirewallDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->UpdatesDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\->UpdatesDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->DoNotAllowExceptions:1 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->DoNotAllowExceptions:1 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->DisableNotifications:0 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->DisableNotifications:0 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->EnableFirewall:1 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile->EnableFirewall:1 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv->Start:2 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv->Start:2 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinDefend\->Start:3 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinDefend\->Start:3 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system->EnableLUA:1 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system->EnableLUA:1 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center->AntiVirusOverride:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center->AntiVirusOverride:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center->FirewallOverride:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center->FirewallOverride:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center->UacDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center->UacDisableNotify:0 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wscsvc\->Start:2 - Repaired
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wscsvc\->Start:2 - Repaired
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\->Userinit:C:\WINDOWS\system32\userinit.exe, - Repaired
8 Files
e:\virus\huge\2015.4.24\063.vir - Repaired
e:\virus\huge\2015.4.24\003.vir - Repaired
e:\virus\huge\2015.4.24\029.vir - Repaired
e:\virus\huge\2015.4.24\035.vir - Repaired
e:\virus\huge\2015.4.24\038.vir - Repaired
e:\virus\huge\2015.4.24\041.vir - Repaired
e:\virus\huge\2015.4.24\065.vir - Repaired
e:\virus\huge\2015.4.24\092.vir - Repaired
1 Browser Cache
Suspicious.Cloud.7.A
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\010.vir - Deleted
1 Browser Cache
SAPE.Graftor.76e
Type: Anomaly
Risk: Low (Low Stealth, Low Removal, Low Performance, Low Privacy)
Categories: Adware
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\007.vir - Deleted
1 Browser Cache
Suspicious.Epi.3t
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\013.vir - Deleted
1 Browser Cache
Suspicious.Cloud.7.A
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\002.vir - Deleted
1 Browser Cache
Backdoor.Trojan
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
2 Files
e:\virus\huge\2015.4.24\011.vir - Deleted
e:\virus\huge\2015.4.24\087.vir - Deleted
1 Browser Cache
Suspicious.Epi.3
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\015.vir - Deleted
1 Browser Cache
Wajam
Type: Anomaly
Risk: Low (Low Stealth, Low Removal, Low Performance, Low Privacy)
Categories: Security Risk
Status: Fully Resolved
-----------
119 Registry Entries
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Wajam - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Wajam - No Action Required
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Wajam - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Wajam - No Action Required
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Wajam - No Action Required
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Wajam - No Action Required
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Wajam - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Wajam - No Action Required
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Wajam - No Action Required
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Wajam - No Action Required
HKEY_USERS\S-1-5-19\SOFTWARE\Wajam - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\SOFTWARE\Wajam - No Action Required
HKEY_USERS\S-1-5-20\SOFTWARE\Wajam - No Action Required
HKEY_USERS\.DEFAULT\SOFTWARE\Wajam - No Action Required
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings->ProxyEnable:0 - Repaired
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings->ProxyEnable:0 - Repaired
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings->ProxyEnable:0 - Repaired
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings->ProxyEnable:0 - Repaired
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings->ProxyServer - Repaired
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings->ProxyServer - Repaired
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings->ProxyServer - Repaired
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings->ProxyServer - Repaired
HKEY_CLASSES_ROOT\AppID\priam_bho.DLL - No Action Required
HKEY_CLASSES_ROOT\AppID\priam_bho.DLL - No Action Required
HKEY_CLASSES_ROOT\AppID\Wajam.DLL - No Action Required
HKEY_CLASSES_ROOT\AppID\Wajam.DLL - No Action Required
HKEY_CLASSES_ROOT\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634} - No Action Required
HKEY_CLASSES_ROOT\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634} - No Action Required
HKEY_CLASSES_ROOT\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2} - No Action Required
HKEY_CLASSES_ROOT\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2} - No Action Required
HKEY_CLASSES_ROOT\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5} - No Action Required
HKEY_CLASSES_ROOT\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5} - No Action Required
HKEY_CLASSES_ROOT\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2} - No Action Required
HKEY_CLASSES_ROOT\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2} - No Action Required
HKEY_CLASSES_ROOT\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D} - No Action Required
HKEY_CLASSES_ROOT\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D} - No Action Required
HKEY_CLASSES_ROOT\wajam.WajamBHO.1 - No Action Required
HKEY_CLASSES_ROOT\wajam.WajamBHO.1 - No Action Required
HKEY_CLASSES_ROOT\wajam.WajamBHO - No Action Required
HKEY_CLASSES_ROOT\wajam.WajamBHO - No Action Required
HKEY_CLASSES_ROOT\wajam.WajamDownloader.1 - No Action Required
HKEY_CLASSES_ROOT\wajam.WajamDownloader.1 - No Action Required
HKEY_CLASSES_ROOT\wajam.WajamDownloader - No Action Required
HKEY_CLASSES_ROOT\wajam.WajamDownloader - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\WajamInternetEnhancer - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\WajamInternetEnhancer - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WaInterEnhance - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WaInterEnhance - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\WaInterEnhance - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\WaInterEnhance - No Action Required
HKEY_USERS\S-1-5-19\Software\WaInterEnhance - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\WaInterEnhance - No Action Required
HKEY_USERS\S-1-5-20\Software\WaInterEnhance - No Action Required
HKEY_USERS\.DEFAULT\Software\WaInterEnhance - No Action Required
HKEY_USERS\S-1-5-19\Software\WaInterEnhance - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\WaInterEnhance - No Action Required
HKEY_USERS\S-1-5-20\Software\WaInterEnhance - No Action Required
HKEY_USERS\.DEFAULT\Software\WaInterEnhance - No Action Required
HKEY_USERS\S-1-5-19\Software\WajIEnhance - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\WajIEnhance - No Action Required
HKEY_USERS\S-1-5-20\Software\WajIEnhance - No Action Required
HKEY_USERS\.DEFAULT\Software\WajIEnhance - No Action Required
HKEY_USERS\S-1-5-19\Software\WajIEnhance - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\WajIEnhance - No Action Required
HKEY_USERS\S-1-5-20\Software\WajIEnhance - No Action Required
HKEY_USERS\.DEFAULT\Software\WajIEnhance - No Action Required
HKEY_USERS\S-1-5-19\Software\Microsoft\FiddlerCore - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\Microsoft\FiddlerCore - No Action Required
HKEY_USERS\S-1-5-20\Software\Microsoft\FiddlerCore - No Action Required
HKEY_USERS\.DEFAULT\Software\Microsoft\FiddlerCore - No Action Required
HKEY_USERS\S-1-5-19\Software\Microsoft\FiddlerCore - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\Microsoft\FiddlerCore - No Action Required
HKEY_USERS\S-1-5-20\Software\Microsoft\FiddlerCore - No Action Required
HKEY_USERS\.DEFAULT\Software\Microsoft\FiddlerCore - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam Web Enhancer - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam Web Enhancer - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Wajam Web Enhancer - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Wajam Web Enhancer - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\3045035B-3C14-4698-8AC4-ADB18CC42C1E - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\3045035B-3C14-4698-8AC4-ADB18CC42C1E - No Action Required
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\DOMStorage\wajam.com - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\Microsoft\Internet Explorer\DOMStorage\wajam.com - No Action Required
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\DOMStorage\wajam.com - No Action Required
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\DOMStorage\wajam.com - No Action Required
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\DOMStorage\www.wajam.com - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\Microsoft\Internet Explorer\DOMStorage\www.wajam.com - No Action Required
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\DOMStorage\www.wajam.com - No Action Required
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\DOMStorage\www.wajam.com - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajaNEnhance - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajaNEnhance - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\WajaNEnhance - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\WajaNEnhance - No Action Required
HKEY_USERS\S-1-5-19\Software\WajaNEnhance - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\WajaNEnhance - No Action Required
HKEY_USERS\S-1-5-20\Software\WajaNEnhance - No Action Required
HKEY_USERS\.DEFAULT\Software\WajaNEnhance - No Action Required
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater - No Action Required
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17} - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17} - No Action Required
HKEY_USERS\S-1-5-19\SOFTWARE\Mozilla\Firefox\Extensions\->{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2} - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\SOFTWARE\Mozilla\Firefox\Extensions\->{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2} - No Action Required
HKEY_USERS\S-1-5-20\SOFTWARE\Mozilla\Firefox\Extensions\->{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2} - No Action Required
HKEY_USERS\.DEFAULT\SOFTWARE\Mozilla\Firefox\Extensions\->{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2} - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNetworkEnhance - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNetworkEnhance - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\WNetworkEnhance - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\WNetworkEnhance - No Action Required
HKEY_USERS\S-1-5-19\Software\WNetworkEnhance - No Action Required
HKEY_USERS\S-1-5-21-199303550-3880348569-3445812084-1001\Software\WNetworkEnhance - No Action Required
HKEY_USERS\S-1-5-20\Software\WNetworkEnhance - No Action Required
HKEY_USERS\.DEFAULT\Software\WNetworkEnhance - No Action Required
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlset\Services\Wajam Web Enhancer - No Action Required
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlset\Services\Wajam Web Enhancer - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\NativeMessagingHosts\com.wajam.chrome.messaging.host - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp - No Action Required
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp - No Action Required
1 File
e:\virus\huge\2015.4.24\017.vir - No Action Required
6 Services
Wajam Internet Enhancer Service - No Action Required
Internet Enhancer Service - No Action Required
Wajam Web Enhancer - No Action Required
Wajam Internet Enhancer Service - No action taken
Wajam Web Enhancer - No action taken
Internet Enhancer Service - No action taken
1 Browser Cache
SAPE.Heur.597d
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\017.vir - Deleted
1 Browser Cache
W32.Morto!gen2
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\022.vir - Deleted
1 Browser Cache
Suspicious.Epi.3
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\004.vir - Deleted
1 Browser Cache
SAPE.Graftor.776
Type: Anomaly
Risk: Low (Low Stealth, Low Removal, Low Performance, Low Privacy)
Categories: Adware
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\027.vir - Deleted
1 Browser Cache
Wajam
Type: Anomaly
Risk: Low (Low Stealth, Low Removal, Low Performance, Low Privacy)
Categories: Security Risk
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\023.vir - No Action Required
SAPE.Heur.59a2
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\023.vir - Deleted
1 Browser Cache
SAPE.Heur.604
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\033.vir - Deleted
1 Browser Cache
Trojan.Gen
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
4 Files
e:\virus\huge\2015.4.24\033.vir - No Action Required
e:\virus\huge\2015.4.24\043.vir - Deleted
e:\virus\huge\2015.4.24\068.vir - No Action Required
e:\virus\huge\2015.4.24\082.vir - Deleted
1 Browser Cache
Trojan.Gen.2
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
5 Files
e:\virus\huge\2015.4.24\018.vir - Deleted
e:\virus\huge\2015.4.24\019.vir - No Action Required
e:\virus\huge\2015.4.24\064.vir - No Action Required
e:\virus\huge\2015.4.24\091.vir - Deleted
e:\virus\huge\2015.4.24\099.vir - No Action Required
1 Browser Cache
W32.Morto
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\019.vir - Deleted
1 Browser Cache
Suspicious.Cloud.7.A
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\024.vir - Deleted
1 Browser Cache
W32.Yunsip
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\036.vir - Deleted
1 Browser Cache
Trojan Horse
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
2 Files
e:\virus\huge\2015.4.24\020.vir - Deleted
e:\virus\huge\2015.4.24\095.vir - No Action Required
1 Browser Cache
Suspicious.Epi.3
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\037.vir - Deleted
1 Browser Cache
Suspicious.Epi.3t
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\049.vir - Deleted
1 Browser Cache
Suspicious.Epi.3
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\044.vir - Deleted
1 Browser Cache
Gamevance
Type: Anomaly
Risk: Low (Low Stealth, Low Removal, High Performance, Low Privacy)
Categories: Security Risk
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\050.vir - Deleted
1 Browser Cache
SAPE.Gamevance.9d
Type: Anomaly
Risk: Low (Low Stealth, Low Removal, Low Performance, Low Privacy)
Categories: Adware
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\050.vir - No Action Required
1 Browser Cache
Suspicious.Cloud.7.A
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\040.vir - Deleted
1 Browser Cache
Trojan.Naid
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\054.vir - Deleted
1 Browser Cache
SAPE.Yontoo.m0e
Type: Anomaly
Risk: Low (Low Stealth, Low Removal, Low Performance, Low Privacy)
Categories: Security Risk
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\064.vir - Deleted
1 Browser Cache
SAPE.Heur.20a4
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\068.vir - Deleted
1 Browser Cache
W32.Tidserv.G
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\070.vir - Deleted
1 Browser Cache
Suspicious.Cloud.7.A
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\071.vir - Deleted
1 Browser Cache
Suspicious.Cloud.9.A
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\075.vir - Deleted
1 Browser Cache
Suspicious.Cloud.7.F
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Heuristic Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\084.vir - Deleted
1 Browser Cache
W32.Dromedan
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
2 Files
e:\virus\huge\2015.4.24\090.vir - Deleted
e:\virus\huge\2015.4.24\095.vir - Deleted
1 Browser Cache
SAPE.Heur.592e
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\093.vir - Deleted
1 Browser Cache
SAPE.Downloader.3943
Type: Anomaly
Risk: High (High Stealth, High Removal, High Performance, High Privacy)
Categories: Virus
Status: Fully Resolved
-----------
1 File
e:\virus\huge\2015.4.24\099.vir - Deleted
1 Browser Cache[/mw_shl_code] |
楼主: 挥泪斩情思
发表于 2015-4-24 16:35:08
