¾«î£Ñù±¾²âÊÔ£¨15.8.30£©

itismelsy

ûÓв⿨°ÍµÄÂð£¿×î½ü×ÛºÏÖ¢·¸ÁË£¬´ÓKISÌøµ½µ°Ì¢ÁË

steven_lzs

¼ÇµÃ¿¨°Íɱ¶¾µÄÐÅÏ¢»¹Õæ²»ºÃ²é¿´.¸ôÀëÇøûÓÐÏÔʾÏàÓ¦ÊýÁ¿°É..

ÖZÑÔ”³²»ß^•rég

Avira kill30  fix1
¹²™zœy31

cxyÃÜ˹

[mw_shl_code=css,true]Dr.Web Scanner SE for Windows v9.1.3.08170

Platform: Windows 10 Professional x64/WOW (Build 10240)

Scanning Engine version: 10.0.8.8100
Virus Finding Engine version: 7.0.14.8060
-----------------------------------------------------------------------------
Start scanning
-----------------------------------------------------------------------------
Object(s) to scan:
- C:\Users\Shiloh\Desktop\2015.8.30

C:\Users\Shiloh\Desktop\2015.8.30\01.vir:Zone.Identifier - Ok - 10ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\02.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\01.vir is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.30\01.vir\JSFile_1[0][d8d] - Ok
C:\Users\Shiloh\Desktop\2015.8.30\01.vir\JSEval_2[690] - Ok
C:\Users\Shiloh\Desktop\2015.8.30\01.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\01.vir - container - 45ms, 3469 bytes
C:\Users\Shiloh\Desktop\2015.8.30\03.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\03.vir is OPEN XML container
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\[Content_Types].xml - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\_rels\.rels - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\word\_rels\document.xml.rels - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\word\document.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\word\_rels\vbaProject.bin.rels - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\word\vbaProject.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\word\theme\theme1.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\word\vbaData.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\word\settings.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\word\webSettings.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\word\styles.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\word\numbering.xml - Ok
>C:\Users\Shiloh\Desktop\2015.8.30\02.vir is BINARYRES container
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\docProps\app.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\word\stylesWithEffects.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\word\fontTable.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir\docProps\core.xml - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\03.vir - container - 387ms, 33153 bytes
C:\Users\Shiloh\Desktop\2015.8.30\04.vir - infected with Trojan.MulDrop.63206
C:\Users\Shiloh\Desktop\2015.8.30\04.vir - infected - 373ms, 570880 bytes
C:\Users\Shiloh\Desktop\2015.8.30\04.vir:Zone.Identifier - Ok - 23ms, 26 bytes
>>C:\Users\Shiloh\Desktop\2015.8.30\02.vir\data001 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\05.vir:Zone.Identifier - Ok - 8ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\02.vir\data001 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\05.vir - infected with W97M.DownLoader.586
C:\Users\Shiloh\Desktop\2015.8.30\05.vir - infected - 14ms, 89088 bytes
C:\Users\Shiloh\Desktop\2015.8.30\06.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\07.vir - probably infected with SCRIPT.Virus
>C:\Users\Shiloh\Desktop\2015.8.30\07.vir is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.30\07.vir\JSFile_1[0][24ad] - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\02.vir\data002 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\07.vir\JSEval_2[32e] - infected with JS.DownLoader.365
C:\Users\Shiloh\Desktop\2015.8.30\07.vir\JSEval_2[32e] - infected
C:\Users\Shiloh\Desktop\2015.8.30\07.vir - infected container
C:\Users\Shiloh\Desktop\2015.8.30\07.vir - infected container - 99ms, 9389 bytes
C:\Users\Shiloh\Desktop\2015.8.30\07.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\08.vir is ZIP archive
>>C:\Users\Shiloh\Desktop\2015.8.30\08.vir\IMG_8916.js is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.30\08.vir\IMG_8916.js\JSFile_1[0][d8d] - Ok
C:\Users\Shiloh\Desktop\2015.8.30\08.vir\IMG_8916.js\JSEval_2[690] - Ok
C:\Users\Shiloh\Desktop\2015.8.30\08.vir\IMG_8916.js - Ok
C:\Users\Shiloh\Desktop\2015.8.30\08.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\08.vir - archive - 54ms, 1618 bytes
C:\Users\Shiloh\Desktop\2015.8.30\08.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\02.vir\data002\ON - Ok
C:\Users\Shiloh\Desktop\2015.8.30\02.vir\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\02.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\02.vir - container - 620ms, 282112 bytes
C:\Users\Shiloh\Desktop\2015.8.30\09.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\06.vir - infected with Trojan.KillMBR.144
C:\Users\Shiloh\Desktop\2015.8.30\06.vir - infected - 458ms, 44032 bytes
C:\Users\Shiloh\Desktop\2015.8.30\10.vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\09.vir - infected with Trojan.PWS.Panda.8013
C:\Users\Shiloh\Desktop\2015.8.30\09.vir - infected - 319ms, 45568 bytes
C:\Users\Shiloh\Desktop\2015.8.30\11.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\12.vir - Ok - 8ms, 157 bytes
C:\Users\Shiloh\Desktop\2015.8.30\12.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\10.vir - infected with Win32.Rmnet
C:\Users\Shiloh\Desktop\2015.8.30\10.vir - infected - 457ms, 482816 bytes
C:\Users\Shiloh\Desktop\2015.8.30\13.vir:Zone.Identifier - Ok - 8ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\13.vir - infected with Trojan.PWS.Siggen1.40914
C:\Users\Shiloh\Desktop\2015.8.30\13.vir - infected - 322ms, 98554 bytes
C:\Users\Shiloh\Desktop\2015.8.30\14.vir:Zone.Identifier - Ok - 17ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\14.vir - packed by PEPACK
C:\Users\Shiloh\Desktop\2015.8.30\14.vir - infected with Trojan.DownLoader15.56889
C:\Users\Shiloh\Desktop\2015.8.30\14.vir - infected - 417ms, 114688 bytes
C:\Users\Shiloh\Desktop\2015.8.30\15.vir:Zone.Identifier - Ok - 5ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\16.vir - packed by UPX
>>C:\Users\Shiloh\Desktop\2015.8.30\16.vir - packed by FLY-CODE
>C:\Users\Shiloh\Desktop\2015.8.30\15.vir is BINARYRES container
C:\Users\Shiloh\Desktop\2015.8.30\15.vir\data001 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\15.vir\data002 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\15.vir\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\15.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\15.vir - container - 699ms, 836608 bytes
C:\Users\Shiloh\Desktop\2015.8.30\16.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\16.vir - Ok - 541ms, 43008 bytes
C:\Users\Shiloh\Desktop\2015.8.30\17.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\18.vir is JAR container
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\META-INF\MANIFEST.MF - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\META-INF\JAVACERT.SF - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\META-INF\JAVACERT.RSA - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\Base64Coder.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\Base64FileEDCoder.class - Ok
>C:\Users\Shiloh\Desktop\2015.8.30\17.vir is PDF container
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\FileDownloader.class - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\17.vir\JavaString[00000001][00000042] is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\FileExtractor.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\17.vir\JavaString[00000001][00000042]\JSTAG_1[20][44] - Ok
C:\Users\Shiloh\Desktop\2015.8.30\17.vir\JavaString[00000001][00000042] - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\IParameterLoader.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\JWSMain.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\17.vir\EmbeddedStream[00000001][000003E0] - Ok
C:\Users\Shiloh\Desktop\2015.8.30\17.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\17.vir - container - 212ms, 10381 bytes
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\MainGui$1.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\MainGui$2.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\MainGui$InterfaceStarter.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\MainGui.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\PART2CADApplet$1.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\PART2CADApplet$IFaceParameter.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\PART2CADApplet.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\StreamGobbler$1.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\StreamGobbler$Type.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\StreamGobbler.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir\cadenas\TR.class - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\18.vir - container - 211ms, 42216 bytes
C:\Users\Shiloh\Desktop\2015.8.30\19.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\20.vir - infected with Trojan.DownLoader13.8311
C:\Users\Shiloh\Desktop\2015.8.30\20.vir - infected - 320ms, 300032 bytes
C:\Users\Shiloh\Desktop\2015.8.30\20.vir:Zone.Identifier - Ok - 7ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\19.vir - packed by UPX
>>C:\Users\Shiloh\Desktop\2015.8.30\19.vir - packed by FLY-CODE
C:\Users\Shiloh\Desktop\2015.8.30\21.vir - Ok - 312ms, 780 bytes
C:\Users\Shiloh\Desktop\2015.8.30\21.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\11.vir is NSIS container
C:\Users\Shiloh\Desktop\2015.8.30\11.vir\script.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.30\11.vir\_š€\System.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.30\19.vir - Ok - 815ms, 91648 bytes
C:\Users\Shiloh\Desktop\2015.8.30\22.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\23.vir is RAR archive
C:\Users\Shiloh\Desktop\2015.8.30\11.vir\_š€\inetc.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.30\11.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\11.vir - container - 2162ms, 66638 bytes
C:\Users\Shiloh\Desktop\2015.8.30\23.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\23.vir\¤_______?4pm.scr - infected with Trojan.PWS.Stealer.15081
C:\Users\Shiloh\Desktop\2015.8.30\23.vir\¤_______?4pm.scr - infected
C:\Users\Shiloh\Desktop\2015.8.30\23.vir - infected archive
C:\Users\Shiloh\Desktop\2015.8.30\23.vir - infected archive - 65ms, 577437 bytes
C:\Users\Shiloh\Desktop\2015.8.30\24.vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\24.vir - Ok - 485ms, 535552 bytes
C:\Users\Shiloh\Desktop\2015.8.30\25.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\25.vir - Ok - 474ms, 582144 bytes
C:\Users\Shiloh\Desktop\2015.8.30\26.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\27.vir is ZIP archive
C:\Users\Shiloh\Desktop\2015.8.30\27.vir\requisites_blank_703268823050.exe - infected with Trojan.Upatre.7384
C:\Users\Shiloh\Desktop\2015.8.30\27.vir\requisites_blank_703268823050.exe - infected
C:\Users\Shiloh\Desktop\2015.8.30\27.vir - infected archive
C:\Users\Shiloh\Desktop\2015.8.30\27.vir - infected archive - 46ms, 23364 bytes
C:\Users\Shiloh\Desktop\2015.8.30\27.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\22.vir is NSIS container
C:\Users\Shiloh\Desktop\2015.8.30\22.vir\script.bin - Ok
C:\Users\Shiloh\Desktop\2015.8.30\22.vir\_š€\InstallOptions.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.30\22.vir\_š€\ioSpecial.ini - Ok
C:\Users\Shiloh\Desktop\2015.8.30\22.vir\_š€\modern-wizard.bmp - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\22.vir\DPPUIRSC.dll - packed by PECOMPACT
C:\Users\Shiloh\Desktop\2015.8.30\22.vir\DPPUIRSC.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.30\22.vir\DPPUIRSC.dll.eng.bak - Ok
C:\Users\Shiloh\Desktop\2015.8.30\22.vir\readme.txt - Ok
C:\Users\Shiloh\Desktop\2015.8.30\22.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\22.vir - container - 1042ms, 191010 bytes
C:\Users\Shiloh\Desktop\2015.8.30\28.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\29.vir is RAR archive
>C:\Users\Shiloh\Desktop\2015.8.30\26.vir - packed by UPX
>>C:\Users\Shiloh\Desktop\2015.8.30\29.vir\DSC0034685.JPG.vbe - packed by ENCODED SCRIPT
C:\Users\Shiloh\Desktop\2015.8.30\29.vir\DSC0034685.JPG.vbe - Ok
C:\Users\Shiloh\Desktop\2015.8.30\29.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\29.vir - archive - 99ms, 920 bytes
C:\Users\Shiloh\Desktop\2015.8.30\29.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\30.vir - infected with W97M.DownLoader.581
C:\Users\Shiloh\Desktop\2015.8.30\30.vir - infected - 20ms, 86016 bytes
C:\Users\Shiloh\Desktop\2015.8.30\28.vir - Ok - 463ms, 655360 bytes
C:\Users\Shiloh\Desktop\2015.8.30\30.vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\31.vir:Zone.Identifier - Ok - 8ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\31.vir - packed by ENCODED SCRIPT
>>C:\Users\Shiloh\Desktop\2015.8.30\26.vir - packed by FLY-CODE
C:\Users\Shiloh\Desktop\2015.8.30\31.vir - infected with VBS.DownLoader.367
C:\Users\Shiloh\Desktop\2015.8.30\31.vir - infected - 45ms, 4922 bytes
C:\Users\Shiloh\Desktop\2015.8.30\32.vir:Zone.Identifier - Ok - 5ms, 26 bytes
>>>C:\Users\Shiloh\Desktop\2015.8.30\26.vir - packed by PESTUB
C:\Users\Shiloh\Desktop\2015.8.30\26.vir - Ok - 717ms, 58368 bytes
C:\Users\Shiloh\Desktop\2015.8.30\33.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\32.vir - infected with Trojan.Dridex.192
C:\Users\Shiloh\Desktop\2015.8.30\32.vir - infected - 307ms, 184320 bytes
C:\Users\Shiloh\Desktop\2015.8.30\34.vir:Zone.Identifier - Ok - 5ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\33.vir is NET container
C:\Users\Shiloh\Desktop\2015.8.30\33.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\33.vir - container - 359ms, 205824 bytes
C:\Users\Shiloh\Desktop\2015.8.30\35.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\34.vir is BINARYRES container
>>C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data001 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data001\hCJJHXY - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data001 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data003 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data004 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data005 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data006 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data007 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data008 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data009 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data010 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data011 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir\data012 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\34.vir - container - 471ms, 425984 bytes
C:\Users\Shiloh\Desktop\2015.8.30\36.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\35.vir is BINARYRES container
C:\Users\Shiloh\Desktop\2015.8.30\35.vir\data001 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\35.vir\data002 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\35.vir\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\35.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\35.vir - container - 359ms, 64512 bytes
C:\Users\Shiloh\Desktop\2015.8.30\37.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\36.vir - is adware program Adware.Downware.11286
C:\Users\Shiloh\Desktop\2015.8.30\36.vir - infected - 413ms, 639616 bytes
C:\Users\Shiloh\Desktop\2015.8.30\38.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\37.vir - infected with Trojan.KeyLogger.23529
C:\Users\Shiloh\Desktop\2015.8.30\37.vir - infected - 312ms, 400384 bytes
C:\Users\Shiloh\Desktop\2015.8.30\39.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\40.vir is ZIP archive
C:\Users\Shiloh\Desktop\2015.8.30\40.vir\Court_Notification_00000134562.doc.js - probably infected with SCRIPT.Virus
>>C:\Users\Shiloh\Desktop\2015.8.30\40.vir\Court_Notification_00000134562.doc.js is JS-HTML container
C:\Users\Shiloh\Desktop\2015.8.30\40.vir\Court_Notification_00000134562.doc.js\JSFile_1[0][24ad] - Ok
C:\Users\Shiloh\Desktop\2015.8.30\40.vir\Court_Notification_00000134562.doc.js\JSEval_2[32e] - infected with JS.DownLoader.365
C:\Users\Shiloh\Desktop\2015.8.30\40.vir\Court_Notification_00000134562.doc.js\JSEval_2[32e] - infected
C:\Users\Shiloh\Desktop\2015.8.30\40.vir\Court_Notification_00000134562.doc.js - infected container
C:\Users\Shiloh\Desktop\2015.8.30\40.vir - infected archive
C:\Users\Shiloh\Desktop\2015.8.30\40.vir - infected archive - 93ms, 1791 bytes
C:\Users\Shiloh\Desktop\2015.8.30\40.vir:Zone.Identifier - Ok - 6ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\38.vir is BINARYRES container
>>C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data001 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data001 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data002 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data002 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data003 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data003 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data004 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data004 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data005 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data006 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data006 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data007 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data007 - Ok
>C:\Users\Shiloh\Desktop\2015.8.30\41.vir - packed by FLY-CODE
>>C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data008 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data008 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data009 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data010 is ZLIB container
>C:\Users\Shiloh\Desktop\2015.8.30\39.vir is ZIP archive
C:\Users\Shiloh\Desktop\2015.8.30\41.vir - Ok - 462ms, 167946 bytes
C:\Users\Shiloh\Desktop\2015.8.30\41.vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data010\data001 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data010 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data011 is ZLIB container
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data011\data001 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\39.vir\Counter Strike Global Generator CD Key Generator.exe is BINARYRES container
>>>C:\Users\Shiloh\Desktop\2015.8.30\39.vir\Counter Strike Global Generator CD Key Generator.exe\data001 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\39.vir\Counter Strike Global Generator CD Key Generator.exe\data001 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\38.vir\data011 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\38.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\38.vir - container - 997ms, 1497088 bytes
C:\Users\Shiloh\Desktop\2015.8.30\39.vir\Counter Strike Global Generator CD Key Generator.exe\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\42.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>>>C:\Users\Shiloh\Desktop\2015.8.30\39.vir\Counter Strike Global Generator CD Key Generator.exe\data003 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\39.vir\Counter Strike Global Generator CD Key Generator.exe\data003 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\39.vir\Counter Strike Global Generator CD Key Generator.exe - Ok
C:\Users\Shiloh\Desktop\2015.8.30\39.vir\Microsoft.vbs - Ok
C:\Users\Shiloh\Desktop\2015.8.30\39.vir\sfx.ini - Ok
C:\Users\Shiloh\Desktop\2015.8.30\39.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\39.vir - archive - 872ms, 698662 bytes
C:\Users\Shiloh\Desktop\2015.8.30\43.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\42.vir - infected with Trojan.Swizzor.17843
C:\Users\Shiloh\Desktop\2015.8.30\42.vir - infected - 329ms, 44420 bytes
C:\Users\Shiloh\Desktop\2015.8.30\44.vir:Zone.Identifier - Ok - 9ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\43.vir - infected with Trojan.AVKill.37563
C:\Users\Shiloh\Desktop\2015.8.30\43.vir - infected - 303ms, 49170 bytes
C:\Users\Shiloh\Desktop\2015.8.30\45.vir:Zone.Identifier - Ok - 5ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\44.vir is BINARYRES container
C:\Users\Shiloh\Desktop\2015.8.30\44.vir\data001 - Ok
>>C:\Users\Shiloh\Desktop\2015.8.30\44.vir\data002 is NET container
C:\Users\Shiloh\Desktop\2015.8.30\44.vir\data002 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\44.vir\data003 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\44.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\44.vir - container - 363ms, 159744 bytes
C:\Users\Shiloh\Desktop\2015.8.30\46.vir:Zone.Identifier - Ok - 4ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\45.vir - infected with BackDoor.Wirenet.9
C:\Users\Shiloh\Desktop\2015.8.30\45.vir - infected - 348ms, 217088 bytes
C:\Users\Shiloh\Desktop\2015.8.30\47.vir:Zone.Identifier - Ok - 4ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\48.vir is GZIP archive
>>C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz is TAR archive
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\wow_helper.exe.28719.info - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\wow_helper.exe.28719 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\wextract.exe.22913.info - Ok
C:\Users\Shiloh\Desktop\2015.8.30\46.vir - infected with Trojan.KillFiles.26473
C:\Users\Shiloh\Desktop\2015.8.30\46.vir - infected - 432ms, 737626 bytes
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\wextract.exe.22913 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir:Zone.Identifier - Ok - 8ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\wextract.exe.17746.info - Ok
>>>C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\wextract.exe.17746 - packed by FLY-CODE
>C:\Users\Shiloh\Desktop\2015.8.30\47.vir - packed by ASPROTECT
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\wextract.exe.17746 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\wextract.exe.15624.info - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\wextract.exe.15624 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\KBDGKL.DLL.25471.info - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\KBDGKL.DLL.25471 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\KBDGKL.DLL.12728.info - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\KBDGKL.DLL.12728 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\ehsched.exe.4132.info - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\ehsched.exe.4132 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\cmbins.exe.27067.info - Ok
>>>C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\cmbins.exe.27067 is CAB archive
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\cmbins.exe.27067\cmcfg32.dll - Ok
>C:\Users\Shiloh\Desktop\2015.8.30\49.vir is RAR archive
C:\Users\Shiloh\Desktop\2015.8.30\49.vir\___­_________í__.txt - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\cmbins.exe.27067\cmdial32.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\cmbins.exe.27067\cmdl32.exe - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\cmbins.exe.27067\cmutil.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.30\49.vir\setups.exe - infected with BackDoor.Ddoser.101
C:\Users\Shiloh\Desktop\2015.8.30\49.vir\setups.exe - infected
C:\Users\Shiloh\Desktop\2015.8.30\49.vir - infected archive
C:\Users\Shiloh\Desktop\2015.8.30\49.vir - infected archive - 840ms, 200919 bytes
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\cmbins.exe.27067\cmexcept.inf - Ok
C:\Users\Shiloh\Desktop\2015.8.30\49.vir:Zone.Identifier - Ok - 7ms, 26 bytes
>C:\Users\Shiloh\Desktop\2015.8.30\50.vir is RAR archive
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\cmbins.exe.27067\cmmon32.exe - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\cmbins.exe.27067\cmpbk32.dll - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\cmbins.exe.27067\cmstp.exe - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\cmbins.exe.27067 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\bcdboot.exe.23462.info - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\bcdboot.exe.23462 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\bcdboot.exe.19646.info - Ok
C:\Users\Shiloh\Desktop\2015.8.30\50.vir\Salute_TV.exe - infected with Win32.Parite.1
C:\Users\Shiloh\Desktop\2015.8.30\50.vir\Salute_TV.exe - infected
C:\Users\Shiloh\Desktop\2015.8.30\50.vir - infected archive
C:\Users\Shiloh\Desktop\2015.8.30\50.vir - infected archive - 266ms, 829287 bytes
C:\Users\Shiloh\Desktop\2015.8.30\50.vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz\bcdboot.exe.19646 - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir\gziped.gz - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir - Ok
C:\Users\Shiloh\Desktop\2015.8.30\48.vir - archive - 1340ms, 803527 bytes
C:\Users\Shiloh\Desktop\2015.8.30\47.vir - infected with Trojan.DownLoader16.1649
C:\Users\Shiloh\Desktop\2015.8.30\47.vir - infected - 1536ms, 512000 bytes

Total 13723136 bytes in 100 files scanned (236 objects, 5 containers)
Total 76 files (205 objects) are clean
Total 24 files are infected
Total 0 files (2 objects) are suspicious
Scan time is 00:00:07.722
-----------------------------------------------------------------------------
Start curing
-----------------------------------------------------------------------------
C:\Users\Shiloh\Desktop\2015.8.30\04.vir - quarantined - 86 ms
C:\Users\Shiloh\Desktop\2015.8.30\05.vir - cured - 20 ms
C:\Users\Shiloh\Desktop\2015.8.30\07.vir - quarantined - 118 ms
C:\Users\Shiloh\Desktop\2015.8.30\06.vir - quarantined - 69 ms
C:\Users\Shiloh\Desktop\2015.8.30\09.vir - quarantined - 51 ms
C:\Users\Shiloh\Desktop\2015.8.30\10.vir - cured - 1013 ms
C:\Users\Shiloh\Desktop\2015.8.30\13.vir - quarantined - 48 ms
C:\Users\Shiloh\Desktop\2015.8.30\14.vir - quarantined - 93 ms
C:\Users\Shiloh\Desktop\2015.8.30\20.vir - quarantined - 56 ms
C:\Users\Shiloh\Desktop\2015.8.30\23.vir - quarantined - 43 ms
C:\Users\Shiloh\Desktop\2015.8.30\27.vir - quarantined - 50 ms
C:\Users\Shiloh\Desktop\2015.8.30\30.vir - cured - 22 ms
C:\Users\Shiloh\Desktop\2015.8.30\31.vir - quarantined - 56 ms
C:\Users\Shiloh\Desktop\2015.8.30\32.vir - quarantined - 59 ms
C:\Users\Shiloh\Desktop\2015.8.30\36.vir - quarantined - 52 ms
C:\Users\Shiloh\Desktop\2015.8.30\37.vir - quarantined - 64 ms
C:\Users\Shiloh\Desktop\2015.8.30\40.vir - quarantined - 75 ms
C:\Users\Shiloh\Desktop\2015.8.30\42.vir - quarantined - 51 ms
C:\Users\Shiloh\Desktop\2015.8.30\43.vir - quarantined - 101 ms
C:\Users\Shiloh\Desktop\2015.8.30\45.vir - quarantined - 60 ms
C:\Users\Shiloh\Desktop\2015.8.30\46.vir - quarantined - 107 ms
C:\Users\Shiloh\Desktop\2015.8.30\49.vir - quarantined - 41 ms
C:\Users\Shiloh\Desktop\2015.8.30\50.vir - quarantined - 64 ms
C:\Users\Shiloh\Desktop\2015.8.30\47.vir - quarantined - 964 ms

Total 13723136 bytes in 100 files scanned (236 objects, 5 containers)
Total 76 files (205 objects) are clean
Total 24 files are infected
Total 0 files (2 objects) are suspicious
Total 24 files (26 objects) are neutralized
Scan time is 00:00:07.722[/mw_shl_code]

Éñ¼£°ã´æÔÚ

KIS 2015 killed 26x, fixed 5x, missed 19x.

ELOHIM

¾üÍÅÔÙÁÙ ·¢±íÓÚ 2015-8-30 10:46
MSE 19

¾ÍÕ⼸¸öÎÞÑÕ¼û½­¶«¸¸ÀÏÍÛ¡£¡£

ericdj

ELOHIM ·¢±íÓÚ 2015-8-30 19:36
¾ÍÕ⼸¸öÎÞÑÕ¼û½­¶«¸¸ÀÏÍÛ¡£¡£

²»ÊÇ£¬ÊÇÕ⼸Ìì¡°»ù×¼Ïß¡±²»±Ä´ïÁË

ELOHIM

ericdj ·¢±íÓÚ 2015-8-30 20:08
²»ÊÇ£¬ÊÇÕ⼸Ìì¡°»ù×¼Ïß¡±²»±Ä´ïÁË

¹þ£¬Ò»Ö±Ò²Ã»Óбģ¬Ã»ÓÐʱ¼äÈ¥¼±×ÅÕù¡£

dance111

itismelsy ·¢±íÓÚ 2015-8-30 16:22
ûÓв⿨°ÍµÄÂð£¿×î½ü×ÛºÏÖ¢·¸ÁË£¬´ÓKISÌøµ½µ°Ì¢ÁË

ºÍÄãÒ»Ñù£¬Ò²ÊÇÓÿ¨°ÍµÄ£¬ÄåÁË£¬Ïë»»¡£
ÖØÎäÆ÷BD£¬¿¨¿ª»ú£¬·ÅÆú¡£
µ°Ì¢ºÍESETµÄIO¶ÁдʵÔÚÌ«´ó£¬·ÅÆú¡£
ÈýAÀïÃæÖ»½Ó´¥¹ýСºìÉ¡£¬µ«ÊÇòËÆǽ²»¹»Ç¿´ó£¬ºÍKISµÄǽûÓа취±È£¬»¹¿¨Íø£¬¸üÐÂÒ²³é·ç¡£·ÅÆú¡£
ʣϵÄÂ󿧷ȡ¢Åµ¶Ù¡¢Ç÷ÊÆ£¬×Ô¼ºÒ²ÄÃÄó²»×¼¡£¡£

ÓÚÊÇÏÖÔÚ³ÉΪÂã±¼Óû§ÁË¡£¡£²éɱ¸ß¡¢Ç½ºÃ¡¢¶Áд²»ÒªÌ«´ó£¬Õ¼ÓÃÊÊÖС£¡£ÎÒ¹À¼Æµ½Í·À´£¬»¹ÊÇKISÁË¡£

¹²ºÍʱ´ú

»ðÈÞ kill 12x    miss 38x