☣外国人收集的样本x57 （2015-11-04）解压密码kf

显示全部楼层 · 发表于 2015-11-4 11:51:55

迅雷http://kuai.xunlei.com/d/0VAcH-EvE4A5VgQAfaa

百度云链接: http://pan.baidu.com/s/1BMUcA 密码: 9gmh

为了安全请用虚拟机测试样本

显示全部楼层 · 发表于 2015-11-4 11:58:57

本帖最后由欧阳宣于 2015-11-4 12:01 编辑

McAfee
检测33，修复2个。
[mw_shl_code=css,true]11/3/2015 11:00:11 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (25).vir" "Artemis!77E641198B2F" "3"

11/3/2015 11:00:11 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir" "Artemis!37126226B566" "3"

11/3/2015 11:00:12 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (11).vir" "Fareit-FCD!76E05C414D2F" "2"

11/3/2015 11:00:13 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (54).vir" "Upatre-FADQ!1AC7F02C38C0" "2"

11/3/2015 11:00:16 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (28).vir" "Artemis!F776759FFD57" "3"

11/3/2015 11:00:16 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir" "Generic BackDoor.adv" "2"

11/3/2015 10:59:59 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (29).vir" "W97M/Dropper.v" "2"

11/3/2015 10:59:59 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (32).vir" "W97M/Downloader.aps" "2"

11/3/2015 10:59:59 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (34).vir" "W97M/Downloader.aps" "2"

11/3/2015 10:59:59 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (35).vir" "W97M/Downloader.aps" "2"

11/3/2015 10:59:59 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (36).vir" "W97M/Downloader.aps" "2"

11/3/2015 11:00:00 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (37).vir" "W97M/Downloader.aps" "2"

11/3/2015 11:00:00 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (38).vir" "W97M/Downloader.aps" "2"

11/3/2015 11:00:00 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (39).vir" "W97M/Downloader.aps" "2"

11/3/2015 11:00:00 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (28).vir" "Artemis!F776759FFD57" "3"

11/3/2015 11:00:00 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir" "Artemis!37126226B566" "3"

11/3/2015 11:00:01 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (56).vir" "JS/Nemucod.q" "2"

11/3/2015 11:00:01 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (57).vir" "W32/Rontokbro.gen!txt" "1"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (14).vir" "Artemis!B066B7D33686" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir" "Artemis!0330C5925A49" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (19).vir" "Artemis!4D01EEA7DA6D" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (17).vir" "Artemis!1D115FCA7918" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (33).vir" "Fareit-FCD!9039E025BAC5" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (18).vir" "Artemis!FA2D33154DF4" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (2).vir" "Artemis!8273A094585D" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (20).vir" "Artemis!9C61F7922CBE" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (23).vir" "Artemis!68DA890F5905" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (21).vir" "Artemis!5384F752E3A2" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir" "Artemis!01CE88845098" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (31).vir" "Artemis!942EC5F51A5D" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (7).vir" "Generic BackDoor.adv" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (42).vir" "Artemis!E53F57E8C5E9" "2"

11/3/2015 11:00:02 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (46).vir" "Artemis!C77B81805575" "2"

11/3/2015 11:00:03 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (6).vir" "Artemis!F0D1E46F5821" "2"

11/3/2015 11:00:03 PM "D:\Virus\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (9).vir" "Fareit-FCD!0593195F41E2" "2"[/mw_shl_code]

显示全部楼层 · 发表于 2015-11-4 12:02:11

本帖最后由 wjy19800315 于 2015-11-4 12:06 编辑

360卫士引擎全开杀21个

显示全部楼层 · 发表于 2015-11-4 12:02:30

本帖最后由 wjy19800315 于 2015-11-4 12:11 编辑

wd监控关闭只测扫描
杀35个，还不包括修复样本，（没有测修复）

剩余样本

@驭龙 @ericdj @ELOHIM

显示全部楼层 · 发表于 2015-11-4 12:03:45

本帖最后由诸葛亮于 2015-11-4 12:08 编辑

红伞 kill 19

显示全部楼层 · 发表于 2015-11-4 12:06:41

本帖最后由毛豆新人于 2015-11-4 12:11 编辑

CIS  kill  5x

☣ (14).vir                                                                               Malware@#1bwqshu5z57yr
☣ (25).vir|keygen.exe                                                          Malware@#249vcd4x7f179
☣ (3).vir|Project Stigma Reborn\Launch Me.exe                ApplicUnsaf@#jj38jizu5rm8
☣ (22).vir                                                                               Malware@#20ntm2y4g9k5s
☣ (31).vir                                                                               Malware@#2s9rss1lbort9

显示全部楼层 · 发表于 2015-11-4 12:12:06

诸葛亮发表于 2015-11-4 12:03
红伞 kill 19

wd完胜啊

显示全部楼层 · 发表于 2015-11-4 12:30:17

[mw_shl_code=css,true]=============================================================================
Dr.Web Scanner SE for Windows v11.0.0.09070
=============================================================================
Scanning Engine version: 11.0.1.10200
Virus Finding Engine version: 7.0.16.10090
-----------------------------------------------------------------------------
Start scanning
-----------------------------------------------------------------------------
Object(s) to scan:
- C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf

C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir:Zone.Identifier - Ok - 11ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir:Zone.Identifier - Ok - 15ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir is OPEN XML container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (11).vir:Zone.Identifier - Ok - 19ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (11).vir is ZIP archive
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir is RAR archive
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\[Content_Types].xml - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (12).vir:Zone.Identifier - Ok - 12ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\_rels\.rels - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\xl\_rels\workbook.xml.rels - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\xl\workbook.xml - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\xl\sharedStrings.xml - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (13).vir - Ok - 51ms, 444706 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (13).vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\xl\drawings\_rels\drawing1.xml.rels - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\xl\worksheets\_rels\sheet1.xml.rels - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (11).vir\Quotation_1104152206_pdf.exe - infected with Trojan.PWS.Siggen1.41296
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (11).vir\Quotation_1104152206_pdf.exe - infected
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (11).vir - infected archive
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (11).vir - infected archive - 135ms, 635049 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (14).vir:Zone.Identifier - Ok - 16ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\xl\theme\theme1.xml - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\xl\styles.xml - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\xl\worksheets\sheet1.xml - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\docProps\thumbnail.wmf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\xl\media\image1.png - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\xl\drawings\drawing1.xml - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\docProps\app.xml - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\docProps\core.xml - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir\xl\printerSettings\printerSettings1.bin - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (1).vir - container - 320ms, 2592329 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir:Zone.Identifier - Ok - 7ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir is ZIP archive
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (14).vir - packed by FLY-CODE
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (16).vir - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir\System.Data.SQLite.xml - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe is BINARYRES container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data001 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data002 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data003 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data004 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir\DPE.exe - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data005 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir\DPE.exe.config - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data006 - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data007 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data007\wtoypohmz - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data007 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir\Interop.NetFwTypeLib.dll - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data008 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data008\wtoyztyfr - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data008 - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data009 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data009\wtoydqfmz - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data009 - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data010 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data010\wtoymroyp - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data010 - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data011 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data011\wtoydtydz - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data011 - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir\System.Data.SQLite.dll is BINARYRES container
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data012 is NET container
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir\System.Data.SQLite.dll\data001 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir\System.Data.SQLite.dll\data001 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data012\wtoygnwzz - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data012 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir\System.Data.SQLite.dll\data002 - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (14).vir - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir\System.Data.SQLite.dll\data003 - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data013 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data013 - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data014 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data014 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir\System.Data.SQLite.dll\data004 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir\System.Data.SQLite.dll - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data015 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data015 - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data016 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data016 - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data017 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data017 - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data018 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data018 - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data019 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data019\wtoytmodw - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data019 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir\System.Data.SQLite.Linq.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (15).vir - archive - 613ms, 412828 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (16).vir:Zone.Identifier - Ok - 13ms, 26 bytes
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data020 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data020\wtoywiljo - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe\data020 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir\305,000$.exe - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (10).vir - archive - 837ms, 695500 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (17).vir:Zone.Identifier - Ok - 18ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (16).vir - Ok - 526ms, 380928 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (18).vir:Zone.Identifier - Ok - 9ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (17).vir - infected with Trojan.MulDrop6.12200
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (17).vir - infected - 98ms, 342528 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (19).vir:Zone.Identifier - Ok - 13ms, 26 bytes
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (14).vir - packed by BINARYRES
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (19).vir - Ok - 185ms, 320512 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (2).vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (14).vir - Ok - 976ms, 440832 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (20).vir:Zone.Identifier - Ok - 13ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (20).vir - infected with Trojan.DownLoader13.28999
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (20).vir - infected - 54ms, 319488 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (21).vir:Zone.Identifier - Ok - 8ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (21).vir - infected with Trojan.DownLoader17.39349
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (21).vir - infected - 72ms, 319488 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir:Zone.Identifier - Ok - 9ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (18).vir - Ok - 345ms, 326144 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (23).vir:Zone.Identifier - Ok - 11ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (2).vir is SETUP FACTORY container
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (24).vir is ZIP archive
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (12).vir - packed by FLY-CODE
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (2).vir\0.file - packed by XOREXE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (23).vir - infected with Trojan.Inject2.4518
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (23).vir - infected - 61ms, 303345 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (24).vir:Zone.Identifier - Ok - 10ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (25).vir is RAR archive
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (25).vir\Crack\RemoteDesktopManager.cfg - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (24).vir\TT~USD54,000.exe is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (24).vir\TT~USD54,000.exe\vVzWJrYnjUOgh - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (24).vir\TT~USD54,000.exe - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (24).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (24).vir - archive - 152ms, 299927 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (25).vir:Zone.Identifier - Ok - 8ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (26).vir is ZIP archive
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir is BINARYRES container
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir\data001 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir\data001 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir\data002 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir\data003 - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir\data004 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir\data004 - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir\data005 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir\data005 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (22).vir - container - 288ms, 310752 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (26).vir:Zone.Identifier - Ok - 7ms, 26 bytes
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (26).vir\Q-Dir\Q-Dir.exe is BINARYRES container
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (26).vir\Q-Dir\Q-Dir.exe\data001 is JS-HTML container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (26).vir\Q-Dir\Q-Dir.exe\data001 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (26).vir\Q-Dir\Q-Dir.exe - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (26).vir\Q-Dir\Q-Dir.ini - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (26).vir\Q-Dir\start.qdr - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (25).vir\keygen.exe - infected with BackDoor.Bifrost.20804
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (25).vir\keygen.exe - infected
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (25).vir\PirateCity.Net.url - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (26).vir\Q-Dir\start2.qdr - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (26).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (26).vir - archive - 384ms, 273637 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (27).vir:Zone.Identifier - Ok - 8ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (25).vir\Readme.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (25).vir - infected archive
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (25).vir - infected archive - 499ms, 273768 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (28).vir:Zone.Identifier - Ok - 9ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (29).vir - infected with W97M.MulDrop.67
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (29).vir - infected - 16ms, 267776 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (29).vir:Zone.Identifier - Ok - 8ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir is RAR archive
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (27).vir - packed by UPX
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (2).vir\0.file - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir\Project Stigma Reborn\Launch Me.exe - is hacktool program Tool.InjDll.12
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir\Project Stigma Reborn\Launch Me.exe - infected
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir\Project Stigma Reborn\Read Me.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir\Project Stigma Reborn\Stigma Bypasser.exe - infected with Trojan.PWS.Siggen1.43490
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir\Project Stigma Reborn\Stigma Bypasser.exe - infected
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (27).vir is AUTOIT container
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir\Project Stigma Reborn\Stigma DLL.dll - packed by UPX
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (27).vir\Temp\aut21C.tmp - packed by ASCRIPT
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (27).vir\Temp\aut21C.tmp - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (27).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (27).vir - container - 967ms, 269947 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir:Zone.Identifier - Ok - 5ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (2).vir\0.file - Ok
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir\Project Stigma Reborn\Stigma DLL.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (2).vir\1.file - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir\Project Stigma Reborn\Stigma DLL.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir - infected archive
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir - infected archive - 746ms, 1775793 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (30).vir - Ok - 123ms, 233602 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (30).vir:Zone.Identifier - Ok - 8ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (2).vir\irsetup.dat - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (2).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (2).vir - container - 1614ms, 1799803 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (31).vir:Zone.Identifier - Ok - 10ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (32).vir:Zone.Identifier - Ok - 9ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (33).vir - infected with Trojan.PWS.Siggen1.41296
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (33).vir - infected - 26ms, 213504 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (33).vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (32).vir - Ok - 54ms, 217088 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (34).vir:Zone.Identifier - Ok - 8ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (34).vir - Ok - 45ms, 196608 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (35).vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (35).vir - Ok - 51ms, 194560 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (36).vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (36).vir - Ok - 51ms, 180736 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (37).vir:Zone.Identifier - Ok - 9ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (37).vir - Ok - 50ms, 180736 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (38).vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (28).vir - infected with Trojan.Siggen6.36073
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (28).vir - infected - 990ms, 269912 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (39).vir:Zone.Identifier - Ok - 11ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (38).vir - Ok - 49ms, 171520 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (4).vir:Zone.Identifier - Ok - 15ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (39).vir - Ok - 60ms, 167424 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (40).vir:Zone.Identifier - Ok - 12ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (40).vir - Ok - 51ms, 119739 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (41).vir:Zone.Identifier - Ok - 8ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (41).vir - packed by BINARYRES
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (42).vir - infected with Trojan.DownLoader13.28999
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (42).vir - infected - 27ms, 102400 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (31).vir - infected with Trojan.Amonetize.10061
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (31).vir - infected - 336ms, 218112 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (42).vir:Zone.Identifier - Ok - 10ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (43).vir:Zone.Identifier - Ok - 8ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (43).vir - Ok - 63ms, 97792 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (41).vir - Ok - 140ms, 112128 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (44).vir - Ok - 59ms, 97792 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (44).vir:Zone.Identifier - Ok - 11ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (45).vir:Zone.Identifier - Ok - 10ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (46).vir:Zone.Identifier - Ok - 9ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (45).vir - Ok - 65ms, 97792 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (47).vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (46).vir - infected with BackDoor.Plasma.1
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (46).vir - infected - 64ms, 97792 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (48).vir:Zone.Identifier - Ok - 14ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (47).vir - Ok - 83ms, 79872 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (49).vir is PDF container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (49).vir:Zone.Identifier - Ok - 11ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (49).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (49).vir - container - 36ms, 59000 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir:Zone.Identifier - Ok - 19ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (50).vir is BINARYRES container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (50).vir\data001 - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (50).vir\data002 is NET container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (50).vir\data002 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (12).vir - Ok - 3188ms, 538112 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (50).vir:Zone.Identifier - Ok - 7ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (50).vir\data003 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (50).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (50).vir - container - 101ms, 43008 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (51).vir:Zone.Identifier - Ok - 8ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (52).vir is RAR archive
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (48).vir is JS-HTML container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (48).vir\JSTAG_1[21][eb1a] - infected with Trojan.Bankfraud.2764
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (48).vir\JSTAG_1[21][eb1a] - infected
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (48).vir - infected container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (48).vir - infected container - 247ms, 60228 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (52).vir:Zone.Identifier - Ok - 9ms, 26 bytes
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (52).vir\fsg.exe - packed by FSG
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (53).vir is ZIP archive
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (4).vir is BINARYRES container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (4).vir\data001 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (4).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (4).vir - container - 504ms, 1762304 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (53).vir:Zone.Identifier - Ok - 8ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (54).vir is ZIP archive
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (54).vir\1411214375700.exe - packed by PESTUB
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (52).vir\fsg.exe - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (54).vir\1411214375700.exe - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (54).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (54).vir - archive - 90ms, 14584 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (53).vir\0810121.scr - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (53).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (53).vir - archive - 131ms, 22928 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (54).vir:Zone.Identifier - Ok - 11ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (55).vir is ZIP archive
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (55).vir:Zone.Identifier - Ok - 8ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (56).vir - probably infected with SCRIPT.Virus
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (56).vir is JS-HTML container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (52).vir\fsg.exe - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (52).vir\xt.nfo - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (52).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (52).vir - archive - 307ms, 23585 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (56).vir:Zone.Identifier - Ok - 6ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (57).vir - Ok - 10ms, 51 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (56).vir\JSFile_1[0][2621] - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (57).vir:Zone.Identifier - Ok - 9ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (56).vir\JSEval_2[2f4] - infected with JS.DownLoader.536
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (56).vir\JSEval_2[2f4] - infected
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (56).vir - infected container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (56).vir - infected container - 143ms, 9761 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (6).vir:Zone.Identifier - Ok - 16ms, 26 bytes
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir is INNO SETUP container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (6).vir - infected with Trojan.SMSSend.6503
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (6).vir - infected - 82ms, 1473024 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\Script0.bin - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (7).vir:Zone.Identifier - Ok - 10ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\Script1.bin - Ok
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (51).vir - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (7).vir - infected with Trojan.PWS.Siggen1.43490
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (7).vir - infected - 269ms, 1361920 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (8).vir:Zone.Identifier - Ok - 9ms, 26 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (9).vir - infected with Trojan.PWS.Stealer.15120
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (9).vir - infected - 64ms, 711168 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (9).vir:Zone.Identifier - Ok - 9ms, 26 bytes
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (55).vir\VOICE593-624-3662.scr - packed by FLY-CODE
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\Script2.bin is BINARYRES container
>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (8).vir - packed by UPX
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\Script2.bin\data001 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\Script2.bin\data002 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\Script2.bin\data003 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\Script2.bin - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\0.object - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\Embedded_Setup.exe - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (8).vir is AUTOIT container
>>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (8).vir\Users\Ashwin\AppData\Local\Temp\autE4CB.tmp - packed by ASCRIPT
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (8).vir\Users\Ashwin\AppData\Local\Temp\autE4CB.tmp - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\wircd.exe - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\WIRCD.pdb - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\CHANGES.NEW.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\CONFIG.RANT.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\RELEASE.NOTES.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\SICI.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\badwords.channel.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\badwords.message.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\badwords.quit.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\spamfilter.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\dccallow.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\Changes.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\Changes.old.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\Donation.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\help.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\LICENSE.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\Unreal.nfo - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\Authors - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\coding-guidelines - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\compiling_win32.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\example.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\example.de.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\example.es.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\example.fr.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\example.hu.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\example.nl.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\example.ru.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\example.tr.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\help.de.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\help.fr.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (51).vir - Ok - 1892ms, 34816 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\help.ru.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\help.tr.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\tao.of.irc - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\translations.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (55).vir\VOICE593-624-3662.scr - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (55).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (55).vir - archive - 1745ms, 13154 bytes
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.de.html is JS-HTML container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.de.html - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.es.html is JS-HTML container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.es.html - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.fr.html is JS-HTML container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.fr.html - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.html is JS-HTML container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.html - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.hu.html is JS-HTML container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.hu.html - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.ru.html is JS-HTML container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.ru.html - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.tr.html is JS-HTML container
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\unreal32docs.tr.html - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\technical\005.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\technical\base64.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\technical\protoctl.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\technical\serverprotocol.html - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\technical\token.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\doc\technical\vl.txt - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\aliases\aliases.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\aliases\anope.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\aliases\atheme.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\aliases\auspice.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\aliases\cygnus.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\aliases\epona.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\aliases\generic.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\aliases\genericstats.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\aliases\ircservices.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\aliases\operstats.conf - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\unreal.exe - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (8).vir\Users\Ashwin\AppData\Local\Temp\7s3NUZC2I88UuCqWvcSv\BMouM1.exe - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\cloak.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\commands.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_addline.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_addmotd.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_addmotd.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_addomotd.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_admin.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_adminchat.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_akill.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_away.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_botmotd.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_cap.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_chatops.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_chghost.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_chgident.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_chgname.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (8).vir\Users\Ashwin\AppData\Local\Temp\7s3NUZC2I88UuCqWvcSv\BMouM1 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_close.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_connect.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_cycle.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_cycle.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_dccallow.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_dccdeny.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_eos.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_globops.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_guest.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_help.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (8).vir\Users\Ashwin\AppData\Local\Temp\7s3NUZC2I88UuCqWvcSv\BMouM1.au3 - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (8).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (8).vir - container - 2266ms, 1182470 bytes
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_htm.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_invite.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_invite.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_ison.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_issecure.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_join.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_kick.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_kick.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_kill.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_kill.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_knock.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_lag.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_links.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_list.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_locops.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_lusers.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_lusers.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_map.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_map.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_message.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_mkpasswd.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_mode.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_motd.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_nachat.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_names.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_names.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_netinfo.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_netinfo.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_nick.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_nopost.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_oper.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_opermotd.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_part.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_part.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_pass.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_pass.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_pingpong.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_protoctl.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_protoctl.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_quit.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_rakill.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_rping.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_rules.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_sajoin.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_samode.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_sapart.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_sasl.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_sasl.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_sdesc.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_sendsno.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_sendumode.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_server.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_sethost.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_setident.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_setname.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_silence.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_sjoin.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_sqline.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_squit.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_starttls.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_stats.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svsfline.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svsjoin.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svskill.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svslusers.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svsmode.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svsmotd.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svsnick.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svsnline.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svsnolag.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svsnoop.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svso.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svspart.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svssilence.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svssno.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_svswatch.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_swhois.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_time.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_tkl.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_topic.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_trace.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_tsctl.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_tsctl.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_umode2.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_undccdeny.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_unkline.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_unsqline.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_unzline.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_user.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_userhost.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_userip.dll - Ok
>>C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_vhost.dll - packed by FLY-CODE
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_vhost.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_wallops.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_watch.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_who.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_whois.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\modules\m_whowas.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\tre.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\cares.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\zlibwapi.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir\{app}\libcurl.dll - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir - Ok
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (5).vir - container - 4661ms, 1740116 bytes
-----------------------------------------------------------------------------
Start curing
-----------------------------------------------------------------------------

C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (11).vir - quarantined - 1256 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (17).vir - quarantined - 73 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (20).vir - quarantined - 63 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (21).vir - quarantined - 63 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (23).vir - quarantined - 62 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (25).vir - quarantined - 67 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (29).vir - quarantined - 55 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (3).vir - quarantined - 79 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (33).vir - quarantined - 57 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (28).vir - quarantined - 258 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (42).vir - quarantined - 76 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (31).vir - quarantined - 151 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (46).vir - quarantined - 58 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (48).vir - quarantined - 36 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (56).vir - quarantined - 107 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (6).vir - quarantined - 100 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (7).vir - quarantined - 172 ms
C:\Users\Shiloh\Desktop\☣外国人收集的样本x57 （2015-11-04）解压密码kf\☣ (9).vir - quarantined - 86 ms

Total 24905900 bytes in 114 files scanned (389 objects, 3 containers)
Total 96 files (365 objects) are clean
Total 18 files (19 objects) are infected
Total 0 files (1 object) is suspicious
Total 18 files (20 objects) are neutralized
Scan time is 00:00:07.836[/mw_shl_code]

显示全部楼层 · 发表于 2015-11-4 12:37:32

wjy19800315 发表于 2015-11-4 12:02
wd监控关闭只测扫描
杀35个，还不包括修复样本，（没有测修复）

WD这次很给力。

显示全部楼层 · 发表于 2015-11-4 12:41:30

wjy19800315 发表于 2015-11-4 12:02
wd监控关闭只测扫描
杀35个，还不包括修复样本，（没有测修复）

BD
剩余３６，其中包括６个修复（kill 57-36+6=27）

@230f4 @君陌潇 @sunnyjianna

@pal家族 BD被WD干掉了，卡巴呢？

[病毒样本] ☣外国人收集的样本x57 （2015-11-04）解压密码kf

本帖子中包含更多资源

本帖子中包含更多资源

评分

本帖子中包含更多资源

评分

浏览过的版块

[病毒样本] ☣外国人收集的样本x57 （2015-11-04） 解压密码kf

本帖子中包含更多资源

本帖子中包含更多资源

评分

本帖子中包含更多资源

评分

浏览过的版块

[病毒样本] ☣外国人收集的样本x57 （2015-11-04）解压密码kf