17X

轩夏

每天一大包~~~~

轩夏

eset 13X

[mw_shl_code=css,true]Scan started at:   03/22/16 11:06:34
name="C:\Users\XuanXia\Desktop\Samples\1 (1).bin", threat="a variant of MSIL/Injector.OLU trojan", action="", info=""
name="C:\Users\XuanXia\Desktop\Samples\1 (10).bin", threat="a variant of Win32/Kryptik.ERJK trojan", action="", info=""
name="C:\Users\XuanXia\Desktop\Samples\1 (11).bin", threat="a variant of Win32/Kryptik.ERJK trojan", action="", info=""
name="C:\Users\XuanXia\Desktop\Samples\1 (12).bin", threat="a variant of Win32/Kryptik.ERJK trojan", action="", info=""
name="C:\Users\XuanXia\Desktop\Samples\1 (14).bin", threat="Win32/Filecoder.Locky.A trojan", action="", info=""
name="C:\Users\XuanXia\Desktop\Samples\1 (15).bin", threat="Win32/Dridex.AA trojan", action="", info=""
name="C:\Users\XuanXia\Desktop\Samples\1 (16).bin", threat="a variant of Win32/Injector.CUYZ trojan", action="", info=""
name="C:\Users\XuanXia\Desktop\Samples\1 (2).bin", threat="a variant of MSIL/Injector.OPP trojan", action="", info=""
name="C:\Users\XuanXia\Desktop\Samples\1 (4).bin", threat="a variant of Win32/Kryptik.ERPE trojan", action="", info=""
name="C:\Users\XuanXia\Desktop\Samples\1 (5).bin", threat="a variant of Win32/Kryptik.ERLL trojan", action="", info=""
name="C:\Users\XuanXia\Desktop\Samples\1 (6).bin", threat="a variant of Win32/Kryptik.ERLL trojan", action="", info=""
name="C:\Users\XuanXia\Desktop\Samples\1 (8).bin", threat="a variant of Win32/Kryptik.ERXQ trojan", action="", info=""
name="C:\Users\XuanXia\Desktop\Samples\1 (9).bin", threat="a variant of Win32/Kryptik.ERJK trojan", action="", info=""

Scan completed at: 03/22/16 11:06:36[/mw_shl_code]

MXCERILYF!

瑞星清空

蓝天二号

诺顿 KILL 12X

类别： 已解决的安全风险
日期和时间,风险,活动,状态,推荐的操作,活动
2016/3/22 11:30:59,高,1 (15).bin (Trojan.Cridex) 检测方 自动防护,已阻止,已解决 - 不需要操作,已执行的威胁操作: 0
2016/3/22 11:30:59,高,1 (11).bin (Trojan.Gen.2) 检测方 自动防护,已阻止,已解决 - 不需要操作,已执行的威胁操作: 0
2016/3/22 11:30:54,高,1 (1).bin (Infostealer.Limitail) 检测方 自动防护,已阻止,已解决 - 不需要操作,已执行的威胁操作: 0
2016/3/22 11:30:51,高,1 (14).bin (Trojan.Cryptolocker.N) 检测方 自动防护,已阻止,已解决 - 不需要操作,已执行的威胁操作: 0
2016/3/22 11:30:47,高,1 (13).bin (Trojan.Snifula.F) 检测方 自动防护,已阻止,已解决 - 不需要操作,已执行的威胁操作: 0
2016/3/22 11:30:45,高,1 (12).bin (Trojan.Cryptolocker.N) 检测方 自动防护,已阻止,已解决 - 不需要操作,已执行的威胁操作: 0
2016/3/22 11:30:45,高,1 (10).bin (Trojan.Cryptolocker.N) 检测方 自动防护,已阻止,已解决 - 不需要操作,已执行的威胁操作: 0
2016/3/22 11:30:45,高,1 (9).bin (Trojan.Cryptolocker.N) 检测方 自动防护,已阻止,已解决 - 不需要操作,已执行的威胁操作: 0
2016/3/22 11:30:45,高,1 (8).bin (Trojan.Gen) 检测方 自动防护,已阻止,已解决 - 不需要操作,已执行的威胁操作: 0
2016/3/22 11:30:45,高,1 (6).bin (Trojan.Cryptolocker.N) 检测方 自动防护,已阻止,已解决 - 不需要操作,已执行的威胁操作: 0
2016/3/22 11:30:45,高,1 (5).bin (Trojan.Cryptolocker.N) 检测方 自动防护,已阻止,已解决 - 不需要操作,已执行的威胁操作: 0
2016/3/22 11:30:45,高,1 (4).bin (Trojan.Cryptolocker.X) 检测方 自动防护,已阻止,已解决 - 不需要操作,已执行的威胁操作: 0

剩余

dongwenqi

@MXCERILYF!  我预测卡巴斯基清空

MXCERILYF!

dongwenqi 发表于 2016-3-22 11:37
@MXCERILYF!  我预测卡巴斯基清空

卡巴清空

900703

這都是勒索並病毒嗎?

dongwenqi

MXCERILYF! 发表于 2016-3-22 11:42
卡巴清空

哈哈哈，我早就猜到了

轩夏

900703 发表于 2016-3-22 11:43
這都是勒索並病毒嗎?

不全是，有部分

Eset小粉絲

每天一大包，希望樓樓能上傳到網盤。。。

[mw_shl_code=css,true]Start of the scan: Tuesday, March 22, 2016  15:32

Starting the file scan:

Begin scan in 'C:\Users\IVAN\Desktop\New Folder (2)'
C:\Users\IVAN\Desktop\New Folder (2)\1 (1).bin
  [DETECTION] Is the TR/Dropper.MSIL.272092 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '5123686b.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (10).bin
  [DETECTION] Is the TR/Crypt.EPACK.26017 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '49b447cc.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (11).bin
  [DETECTION] Is the TR/Crypt.EPACK.26026 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '1beb1d24.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (12).bin
  [DETECTION] Is the TR/Crypt.EPACK.26020 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '7ddc52e6.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (13).bin
  [DETECTION] Is the TR/Crypt.Xpack.435019 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '38587fd8.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (14).bin
  [DETECTION] Is the TR/FileCoder.184320.1 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '47434db9.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (15).bin
  [DETECTION] Is the TR/Crypt.Xpack.434662 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '0bfb61f3.qua'!
Successful Cloud SDK initialization and license check.
The file 'C:\Users\IVAN\Desktop\New Folder (2)\1 (16).bin' was scanned with the Protection Cloud. SHA256 = F67F06E64F46BBAED97032CB3788806BE0C2C97B75BC29D5FCEE77C415D28200
C:\Users\IVAN\Desktop\New Folder (2)\1 (16).bin (SHA-256: f67f06e64f46bbaed97032cb3788806be0c2c97b75bc29d5fcee77c415d28200)
  [DETECTION] Is the TR/AD.Locky.Y (Cloud) Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '5f585826.qua'!
The file 'C:\Users\IVAN\Desktop\New Folder (2)\1 (17).bin' has been uploaded to the Protection Cloud and analyzed. SHA256 = 20E5D156A81A8266731A18DEFDB47CB1A1FFE67856F0206A9C2341ACF7B7BC6C
C:\Users\IVAN\Desktop\New Folder (2)\1 (17).bin (SHA-256: 20e5d156a81a8266731a18defdb47cb1a1ffe67856f0206a9c2341acf7b7bc6c)
  [DETECTION] Contains suspicious code HEUR/APC (Cloud)
  [INFO]      The file 'C:\Users\IVAN\Desktop\New Folder (2)\1 (17).bin' has been uploaded to the Protection Cloud and analyzed.
  [NOTE]      The file was moved to the quarantine directory under the name '5f4c564a.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (2).bin
  [DETECTION] Is the TR/Dropper.MSIL.276873 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '77e32192.qua'!
The file 'C:\Users\IVAN\Desktop\New Folder (2)\1 (3).bin' was scanned with the Protection Cloud. SHA256 = 4F53A8377ECC43607D056483EC3FC38E36D81F35683DC1B989CC446EE8C361BC
C:\Users\IVAN\Desktop\New Folder (2)\1 (3).bin (SHA-256: 4f53a8377ecc43607d056483ec3fc38e36d81f35683dc1b989cc446ee8c361bc)
  [DETECTION] Is the TR/Crypt.XPACK.426175 (Cloud) Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '47cf77b5.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (4).bin
  [DETECTION] Is the TR/Crypt.ZPACK.237543 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '5ab90edf.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (5).bin
  [DETECTION] Is the TR/Locky.lcl Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '43d13545.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (6).bin
  [DETECTION] Is the TR/Crypt.EPACK.26053 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '2f8d1975.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (7).bin
  [DETECTION] Is the TR/Crypt.Xpack.426025 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '5e3420e0.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (8).bin
  [DETECTION] Is the TR/Locky.dhi Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '502e1027.qua'!
C:\Users\IVAN\Desktop\New Folder (2)\1 (9).bin
  [DETECTION] Is the TR/Crypt.EPACK.26016 Trojan
  [NOTE]      The file was moved to the quarantine directory under the name '15076965.qua'!


End of the scan: Tuesday, March 22, 2016  15:32
Used time: 00:19 Minute(s)

The scan has been done completely.[/mw_shl_code]