03b1d8729a8357efaa24e5f7fecf81f7571cad5c

360Tencent

https://www.jpcert.or.jp/magazine/acreport-ChChes.html

链接: https://pan.baidu.com/s/1sl0Hntj 密码: 3f9r

諾言敵不過時間

tomochan

avast kill 13X，剩余5X
基本都是malware-gen，一个PUP，剩下的扫描都是报信誉

fireherman

ESET-NOD32 ess 8 [v14851]

解压 kill 11x / 右键二扫 miss

[mw_shl_code=css,true]2017-1-30 14:11:43        Real-time file system protection        file        E:\VirZ\18x\efa0b414a831cbf724d1c67808b7483dec22a981ae670947793d114048f88057        a variant of Generik.LEERZDP trojan        cleaned by deleting        RAYMOND-9B1A7AC\Raymond        Event occurred on a new file created by the application: C:\Program Files\7-Zip\7zG.exe (95CE9136E708712C2A29EE18BE48DD028018B558).        16D0795E4864F67ACBB1AE2CE76EB16445DAE4B5        2017-1-30 13:44:39
2017-1-30 14:11:43        Real-time file system protection        file        E:\VirZ\18x\e90064884190b14a6621c18d1f9719a37b9e5f98506e28ff0636438e3282098b        Win32/Agent.YMO trojan        cleaned by deleting        RAYMOND-9B1A7AC\Raymond        Event occurred on a new file created by the application: C:\Program Files\7-Zip\7zG.exe (95CE9136E708712C2A29EE18BE48DD028018B558).        16A046D2557CC6377D713E21F14F1EBEA7128419        2017-1-30 13:44:39
2017-1-30 14:11:42        Real-time file system protection        file        E:\VirZ\18x\e6ecb146f469d243945ad8a5451ba1129c5b190f7d50c64580dbad4b8246f88e        a variant of Generik.BOJKVIH trojan        cleaned by deleting        RAYMOND-9B1A7AC\Raymond        Event occurred on a new file created by the application: C:\Program Files\7-Zip\7zG.exe (95CE9136E708712C2A29EE18BE48DD028018B558).        2C1B42E8C8ACEA5082275B6EA5F5C64EBAF4FA30        2017-1-30 13:44:38
2017-1-30 14:11:40        Real-time file system protection        file        E:\VirZ\18x\d26dae0d8e5c23ec35e8b9cf126cded45b8096fc07560ad1c06585357921eeed        a variant of Generik.IHMUILJ trojan        cleaned by deleting        RAYMOND-9B1A7AC\Raymond        Event occurred on a new file created by the application: C:\Program Files\7-Zip\7zG.exe (95CE9136E708712C2A29EE18BE48DD028018B558).        69620ADF44795EE5293CE301CD3D70045E332BBF        2017-1-30 13:44:39
2017-1-30 14:11:40        Real-time file system protection        file        E:\VirZ\18x\bc2f07066c624663b0a6f71cb965009d4d9b480213de51809cdc454ca55f1a91        a variant of Generik.NFKKZOQ trojan        cleaned by deleting        RAYMOND-9B1A7AC\Raymond        Event occurred on a new file created by the application: C:\Program Files\7-Zip\7zG.exe (95CE9136E708712C2A29EE18BE48DD028018B558).        A91669BB4DCB713E997DDF98417730DE78CB990A        2017-1-30 13:44:39
2017-1-30 14:11:39        Real-time file system protection        file        E:\VirZ\18x\ae6b45a92384f6e43672e617c53a44225e2944d66c1ffb074694526386074145        Win32/Agent.YLQ trojan        cleaned by deleting        RAYMOND-9B1A7AC\Raymond        Event occurred on a new file created by the application: C:\Program Files\7-Zip\7zG.exe (95CE9136E708712C2A29EE18BE48DD028018B558).        56D6C3FFA4F3D5AE742F937FAE85F0995814CF90        2017-1-30 13:44:38
2017-1-30 14:11:37        Real-time file system protection        file        E:\VirZ\18x\5961861d2b9f50d05055814e6bfd1c6291b30719f8a4d02d4cf80c2e87753fa1        a variant of Generik.KKYDWQT trojan        cleaned by deleting        RAYMOND-9B1A7AC\Raymond        Event occurred on a new file created by the application: C:\Program Files\7-Zip\7zG.exe (95CE9136E708712C2A29EE18BE48DD028018B558).        DF8F49A3FDF8A9D550B22D65D21A8006FF593AC4        2017-1-30 13:44:39
2017-1-30 14:11:37        Real-time file system protection        file        E:\VirZ\18x\316e89d866d5c710530c2103f183d86c31e9a90d55e2ebc2dda94f112f3bdb6d        a variant of Generik.MSCQC trojan        cleaned by deleting        RAYMOND-9B1A7AC\Raymond        Event occurred on a new file created by the application: C:\Program Files\7-Zip\7zG.exe (95CE9136E708712C2A29EE18BE48DD028018B558).        DE5AF856804974BA3DF03928FFF03447E8F4C9C2        2017-1-30 13:44:38
2017-1-30 14:11:37        Real-time file system protection        file        E:\VirZ\18x\2c71eb5c781daa43047fa6e3d85d51a061aa1dfa41feb338e0d4139a6dfd6910        a variant of Generik.NFTBSCD trojan        cleaned by deleting        RAYMOND-9B1A7AC\Raymond        Event occurred on a new file created by the application: C:\Program Files\7-Zip\7zG.exe (95CE9136E708712C2A29EE18BE48DD028018B558).        741E955A9E458A70B5C085B3BFBA800FDFB4CCDE        2017-1-30 13:44:38
2017-1-30 14:11:36        Real-time file system protection        file        E:\VirZ\18x\2965c1b6ab9d1601752cb4aa26d64a444b0a535b1a190a70d5ce935be3f91699        a variant of Generik.MYMTNQY trojan        cleaned by deleting        RAYMOND-9B1A7AC\Raymond        Event occurred on a new file created by the application: C:\Program Files\7-Zip\7zG.exe (95CE9136E708712C2A29EE18BE48DD028018B558).        2D0EE3B718EC4E391753616853286C22BE7BF521        2017-1-30 13:44:39
2017-1-30 14:11:36        Real-time file system protection        file        E:\VirZ\18x\19aa5019f3c00211182b2a80dd9675721dac7cfb31d174436d3b8ec9f97d898b        a variant of Win32/Kryptik.FGRE trojan        cleaned by deleting        RAYMOND-9B1A7AC\Raymond        Event occurred on a new file created by the application: C:\Program Files\7-Zip\7zG.exe (95CE9136E708712C2A29EE18BE48DD028018B558).        A7D0B38BDA630C927820380D311DDC70A9606407        2017-1-30 13:44:39[/mw_shl_code]


余下7x Live Gird [2个高危/3个未知/2个未收录]

欧阳宣

BD 15x

[mw_shl_code=css,true]Object Path Threat Name Final Status

D:\Virus\18x(2)\18x\316e89d866d5c710530c2103f183d86c31e9a90d55e2ebc2dda94f112f3bdb6d Trojan.GenericKD.4249379 Deleted
D:\Virus\18x(2)\18x\19aa5019f3c00211182b2a80dd9675721dac7cfb31d174436d3b8ec9f97d898b Trojan.GenericKD.3598366 Deleted
D:\Virus\18x(2)\18x\312dc69dd6ea16842d6e58cd7fd98ba4d28eefeb4fd4c4d198fac4eee76f93c3 Trojan.GenericKD.3641376 Deleted
D:\Virus\18x(2)\18x\2965c1b6ab9d1601752cb4aa26d64a444b0a535b1a190a70d5ce935be3f91699 Gen:Variant.Razy.106556 Deleted
D:\Virus\18x(2)\18x\e90064884190b14a6621c18d1f9719a37b9e5f98506e28ff0636438e3282098b Trojan.GenericKD.3816287 Deleted
D:\Virus\18x(2)\18x\2c71eb5c781daa43047fa6e3d85d51a061aa1dfa41feb338e0d4139a6dfd6910 Gen:Variant.Razy.123893 Deleted
D:\Virus\18x(2)\18x\efa0b414a831cbf724d1c67808b7483dec22a981ae670947793d114048f88057 Gen:Variant.Symmi.39804 Deleted
D:\Virus\18x(2)\18x\5961861d2b9f50d05055814e6bfd1c6291b30719f8a4d02d4cf80c2e87753fa1 Gen:Variant.Razy.112600 Deleted
D:\Virus\18x(2)\18x\4ff6a97d06e2e843755be8697f3324be36e1ebeb280bb45724962ce4b6710297 Exploit.Shellcode.BU Deleted
D:\Virus\18x(2)\18x\e88f5bf4be37e0dc90ba1a06a2d47faaeea9047fec07c17c2a76f9f7ab98acf0 Gen:Variant.Razy.106556 Deleted
D:\Virus\18x(2)\18x\e6ecb146f469d243945ad8a5451ba1129c5b190f7d50c64580dbad4b8246f88e Gen:Variant.Razy.106556 Deleted
D:\Virus\18x(2)\18x\bc2f07066c624663b0a6f71cb965009d4d9b480213de51809cdc454ca55f1a91 Trojan.GenericKD.3702660 Deleted
D:\Virus\18x(2)\18x\d26dae0d8e5c23ec35e8b9cf126cded45b8096fc07560ad1c06585357921eeed Gen:Variant.Razy.106556 Deleted
D:\Virus\18x(2)\18x\9a6692690c03ec33c758cb5648be1ed886ff039e6b72f1c43b23fbd9c342ce8c Trojan.Generic.19556043 Deleted
D:\Virus\18x(2)\18x\ae6b45a92384f6e43672e617c53a44225e2944d66c1ffb074694526386074145 Gen:Variant.Symmi.39804 Deleted [/mw_shl_code]

dongwenqi

卡巴杀16个，剩余2个，上报

Eset小粉絲

Avira 11x

心醉咖啡

火绒

[mw_shl_code=css,true]病毒库：2017/01/27 18:38
开始时间：2017/01/30 17:35
总计用时：00:00:28
扫描对象：39个
发现威胁：3个
已处理威胁：3个
发现系统修复项：0个
处理系统修复项：0个

病毒详情

威胁路径：F:\浏览器下载\18x%282%29\18x\19aa5019f3c00211182b2a80dd9675721dac7cfb31d174436d3b8ec9f97d898b, 病毒名：HEUR:Trojan/HVM07, 病毒ID：[614c57eaecf0220], 处理结果：已处理
威胁路径：F:\浏览器下载\18x%282%29\18x\312dc69dd6ea16842d6e58cd7fd98ba4d28eefeb4fd4c4d198fac4eee76f93c3, 病毒名：HEUR:Trojan/HVM07, 病毒ID：[614c57eaecf0220], 处理结果：已处理
威胁路径：F:\浏览器下载\18x%282%29\18x\cb0c8681a407a76f8c0fd2512197aafad8120aa62e5c871c29d1fd2a102bc628, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理
[/mw_shl_code]

275751198

360杀毒扫描日志

病毒库版本：
扫描时间：2017-01-30 16:42:14
扫描用时：00:00:04
扫描类型：右键扫描
扫描文件总数：18
项目总数：12
清除项目数：12

扫描选项
----------------------
扫描所有文件：是
扫描压缩包：是
发现病毒处理方式：由360杀毒自动处理
扫描磁盘引导区：是
扫描 Rootkit：是
使用云查杀引擎：是
使用QVM人工智能引擎：是
扫描建议修复项：是
常规引擎设置：未使用

扫描内容
----------------------
D:\360安全浏览器下载\18x(2)


白名单设置
----------------------


扫描结果
======================
高危风险项
----------------------
D:\360安全浏览器下载\18x(2)\18x\4ff6a97d06e2e843755be8697f3324be36e1ebeb280bb45724962ce4b6710297        virus.js.qexvmc.1        已删除
D:\360安全浏览器下载\18x(2)\18x\75ef6ea0265d2629c920a6a1c0d1dd91d3c0eda86445c7d67ebb9b30e35a2a9f        virus.js.qexvmc.1        已删除
D:\360安全浏览器下载\18x(2)\18x\316e89d866d5c710530c2103f183d86c31e9a90d55e2ebc2dda94f112f3bdb6d        HEUR/QVM10.1.74E4.Malware.Gen        已删除
D:\360安全浏览器下载\18x(2)\18x\5961861d2b9f50d05055814e6bfd1c6291b30719f8a4d02d4cf80c2e87753fa1        感染型病毒(Win32/Trojan.7b9)        已删除
D:\360安全浏览器下载\18x(2)\18x\9a6692690c03ec33c758cb5648be1ed886ff039e6b72f1c43b23fbd9c342ce8c        木马程序(Trojan.Generic)        已删除
D:\360安全浏览器下载\18x(2)\18x\cb0c8681a407a76f8c0fd2512197aafad8120aa62e5c871c29d1fd2a102bc628        感染型病毒(Win32/Trojan.4bd)        已删除
D:\360安全浏览器下载\18x(2)\18x\d26dae0d8e5c23ec35e8b9cf126cded45b8096fc07560ad1c06585357921eeed        感染型病毒(Win32/Trojan.11e)        已删除
D:\360安全浏览器下载\18x(2)\18x\e6ecb146f469d243945ad8a5451ba1129c5b190f7d50c64580dbad4b8246f88e        感染型病毒(Win32/Trojan.ed9)        已删除
D:\360安全浏览器下载\18x(2)\18x\e88f5bf4be37e0dc90ba1a06a2d47faaeea9047fec07c17c2a76f9f7ab98acf0        HEUR/QVM10.1.7FFF.Malware.Gen        已删除
D:\360安全浏览器下载\18x(2)\18x\e90064884190b14a6621c18d1f9719a37b9e5f98506e28ff0636438e3282098b        木马程序(Trojan.Generic)        已删除
D:\360安全浏览器下载\18x(2)\18x\efa0b414a831cbf724d1c67808b7483dec22a981ae670947793d114048f88057        感染型病毒(Win32/Trojan.97a)        已删除
D:\360安全浏览器下载\18x(2)\18x\2965c1b6ab9d1601752cb4aa26d64a444b0a535b1a190a70d5ce935be3f91699        HEUR/QVM10.1.4763.Malware.Gen        已删除

a939707506

zemana 12