楼主: 和泉纱雾
收起左侧

[病毒样本] 精睿样本测试(17.11.10)

  [复制链接]
欧阳宣
头像被屏蔽
发表于 2017-11-10 11:04:49 | 显示全部楼层
mbam
I76700K
发表于 2017-11-10 11:12:19 | 显示全部楼层
毒霸Kill 55X

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
Dolby123
发表于 2017-11-10 11:12:30 | 显示全部楼层
本帖最后由 Dolby123 于 2017-11-10 11:15 编辑

EAM kill 72x  , 剩余28x
PS: 病毒发现是76x

  1. Scan type:
  2. Objects: C:\Users\Administrator\Desktop\2017.11.10

  3. Detect PUPs: On
  4. Scan archives: On
  5. Scan mail archives: Off
  6. ADS Scan: On
  7. File extension filter: Off
  8. Direct disk access: Off

  9. Scan start:        2017/11/10 11:10:52
  10. C:\Users\Administrator\Desktop\2017.11.10\007.vir -> com/sun/Main$14.class          Java.Trojan.GenericGB.19908 (B) [krnl.xmd]
  11. C:\Users\Administrator\Desktop\2017.11.10\007.vir -> com/sun/LibraryManager$13.class          Java.Trojan.GenericGB.19917 (B) [krnl.xmd]
  12. C:\Users\Administrator\Desktop\2017.11.10\007.vir -> com/sun/LibraryLoader$10.class          Java.Trojan.GenericGB.19913 (B) [krnl.xmd]
  13. C:\Users\Administrator\Desktop\2017.11.10\007.vir -> org/apache/LibraryLoader$9.class          Java.Trojan.GenericGB.19906 (B) [krnl.xmd]
  14. C:\Users\Administrator\Desktop\2017.11.10\007.vir -> com/sun/Main$4.class          Java.Trojan.GenericGB.19924 (B) [krnl.xmd]
  15. C:\Users\Administrator\Desktop\2017.11.10\044.vir -> word/embeddings/oleObject1.bin -> 4.lnk -> (LNK Command 0)          Trojan.Downloader.JTXT (B) [krnl.xmd]
  16. C:\Users\Administrator\Desktop\2017.11.10\053.vir -> word/embeddings/oleObject1.bin -> 3.lnk -> (LNK Command 0)          Trojan.Downloader.JTXT (B) [krnl.xmd]
  17. C:\Users\Administrator\Desktop\2017.11.10\001.vir          Trojan.Agent (A) [291326]
  18. C:\Users\Administrator\Desktop\2017.11.10\003.vir          Trojan.GenericKD.6166186 (B) [krnl.xmd]
  19. C:\Users\Administrator\Desktop\2017.11.10\005.vir          Gen:Trojan.Heur.FU.fmX@aql2c5d (B) [krnl.xmd]
  20. C:\Users\Administrator\Desktop\2017.11.10\009.vir          Trojan.GenericKD.12542239 (B) [krnl.xmd]
  21. C:\Users\Administrator\Desktop\2017.11.10\011.vir          Trojan.Crypt (A) [291305]
  22. C:\Users\Administrator\Desktop\2017.11.10\010.vir          Gen:Trojan.Heur2.FU.GuX@aad@3Wh (B) [krnl.xmd]
  23. C:\Users\Administrator\Desktop\2017.11.10\012.vir          Trojan.PDF.Phishing.YI (B) [krnl.xmd]
  24. C:\Users\Administrator\Desktop\2017.11.10\013.vir          Gen:Variant.Barys.55497 (B) [krnl.xmd]
  25. C:\Users\Administrator\Desktop\2017.11.10\015.vir          Trojan.Agent.CPVN (B) [krnl.xmd]
  26. C:\Users\Administrator\Desktop\2017.11.10\016.vir          Trojan.GenericKD.6166101 (B) [krnl.xmd]
  27. C:\Users\Administrator\Desktop\2017.11.10\019.vir          Gen:Variant.Barys.55497 (B) [krnl.xmd]
  28. C:\Users\Administrator\Desktop\2017.11.10\020.vir          Gen:Variant.Johnnie.74440 (B) [krnl.xmd]
  29. C:\Users\Administrator\Desktop\2017.11.10\021.vir          Trojan.TrickBot (A) [291330]
  30. C:\Users\Administrator\Desktop\2017.11.10\022.vir          Generic.ServStart.A.341722AE (B) [krnl.xmd]
  31. C:\Users\Administrator\Desktop\2017.11.10\024.vir          Trojan.GenericKD.6153428 (B) [krnl.xmd]
  32. C:\Users\Administrator\Desktop\2017.11.10\026.vir          Trojan.Generic.22609119 (B) [krnl.xmd]
  33. C:\Users\Administrator\Desktop\2017.11.10\027.vir          Trojan.GenericKD.6167581 (B) [krnl.xmd]
  34. C:\Users\Administrator\Desktop\2017.11.10\031.vir          Gen:Variant.Razy.222150 (B) [krnl.xmd]
  35. C:\Users\Administrator\Desktop\2017.11.10\030.vir          Trojan.GenericKD.12541463 (B) [krnl.xmd]
  36. C:\Users\Administrator\Desktop\2017.11.10\033.vir          W97M.Downloader.GLJ (B) [krnl.xmd]
  37. C:\Users\Administrator\Desktop\2017.11.10\032.vir          Trojan.Generic.22602777 (B) [krnl.xmd]
  38. C:\Users\Administrator\Desktop\2017.11.10\037.vir          Trojan.JS.Downloader.ICO (B) [krnl.xmd]
  39. C:\Users\Administrator\Desktop\2017.11.10\038.vir          Trojan.Injector (A) [290864]
  40. C:\Users\Administrator\Desktop\2017.11.10\035.vir          Trojan.GenericKD.6167836 (B) [krnl.xmd]
  41. C:\Users\Administrator\Desktop\2017.11.10\041.vir          Trojan.GenericKD.12546421 (B) [krnl.xmd]
  42. C:\Users\Administrator\Desktop\2017.11.10\039.vir          GenPack:Generic.Malware.Tk.FF63503C (B) [krnl.xmd]
  43. C:\Users\Administrator\Desktop\2017.11.10\042.vir          Gen:Variant.Symmi.79127 (B) [krnl.xmd]
  44. C:\Users\Administrator\Desktop\2017.11.10\040.vir          Gen:Variant.Razy.221944 (B) [krnl.xmd]
  45. C:\Users\Administrator\Desktop\2017.11.10\046.vir          Trojan.GenericKD.6169400 (B) [krnl.xmd]
  46. C:\Users\Administrator\Desktop\2017.11.10\047.vir          Gen:Variant.Zusy.207562 (B) [krnl.xmd]
  47. C:\Users\Administrator\Desktop\2017.11.10\017.vir          Gen:Variant.Zusy.261569 (B) [krnl.xmd]
  48. C:\Users\Administrator\Desktop\2017.11.10\049.vir          Gen:Trojan.Heur.VB.dm1@diF2rHii (B) [krnl.xmd]
  49. C:\Users\Administrator\Desktop\2017.11.10\050.vir          Backdoor.Generic.1005197 (B) [krnl.xmd]
  50. C:\Users\Administrator\Desktop\2017.11.10\054.vir          Trojan.GenericKD.5771336 (B) [krnl.xmd]
  51. C:\Users\Administrator\Desktop\2017.11.10\052.vir          Gen:Trojan.Heur.DP.DGX@aCsbpEh (B) [krnl.xmd]
  52. C:\Users\Administrator\Desktop\2017.11.10\056.vir          Gen:Variant.Graftor.423616 (B) [krnl.xmd]
  53. C:\Users\Administrator\Desktop\2017.11.10\057.vir          Gen:Variant.Barys.875 (B) [krnl.xmd]
  54. C:\Users\Administrator\Desktop\2017.11.10\059.vir          Gen:Variant.Strictor.98970 (B) [krnl.xmd]
  55. C:\Users\Administrator\Desktop\2017.11.10\061.vir          Gen:Variant.Zusy.141304 (B) [krnl.xmd]
  56. C:\Users\Administrator\Desktop\2017.11.10\063.vir          Gen:Variant.Zusy.263391 (B) [krnl.xmd]
  57. C:\Users\Administrator\Desktop\2017.11.10\043.vir          Gen:Variant.Graftor.335361 (B) [krnl.xmd]
  58. C:\Users\Administrator\Desktop\2017.11.10\062.vir          Trojan.GenericKD.12541332 (B) [krnl.xmd]
  59. C:\Users\Administrator\Desktop\2017.11.10\065.vir          Trojan.GenericKD.12541634 (B) [krnl.xmd]
  60. C:\Users\Administrator\Desktop\2017.11.10\068.vir          Trojan.Generic.22471218 (B) [krnl.xmd]
  61. C:\Users\Administrator\Desktop\2017.11.10\069.vir          Trojan.GenericKD.12541721 (B) [krnl.xmd]
  62. C:\Users\Administrator\Desktop\2017.11.10\071.vir          Trojan.GenericKD.6167462 (B) [krnl.xmd]
  63. C:\Users\Administrator\Desktop\2017.11.10\070.vir          Gen:Variant.Strictor.150728 (B) [krnl.xmd]
  64. C:\Users\Administrator\Desktop\2017.11.10\074.vir          Trojan.Injector (A) [291307]
  65. C:\Users\Administrator\Desktop\2017.11.10\064.vir          Trojan.PSW.Glacier (B) [krnl.xmd]
  66. C:\Users\Administrator\Desktop\2017.11.10\075.vir          Application.AdSearch (A) [286179]
  67. C:\Users\Administrator\Desktop\2017.11.10\076.vir          Trojan.GenericKD.12542189 (B) [krnl.xmd]
  68. C:\Users\Administrator\Desktop\2017.11.10\078.vir          Gen:Variant.Strictor.41753 (B) [krnl.xmd]
  69. C:\Users\Administrator\Desktop\2017.11.10\079.vir          Trojan.GenericKD.6167829 (B) [krnl.xmd]
  70. C:\Users\Administrator\Desktop\2017.11.10\082.vir          Trojan.GenericKD.12542115 (B) [krnl.xmd]
  71. C:\Users\Administrator\Desktop\2017.11.10\084.vir          Trojan.VBS.VCE (B) [krnl.xmd]
  72. C:\Users\Administrator\Desktop\2017.11.10\083.vir          Trojan.GenericKD.6166225 (B) [krnl.xmd]
  73. C:\Users\Administrator\Desktop\2017.11.10\085.vir          Gen:Variant.Razy.222183 (B) [krnl.xmd]
  74. C:\Users\Administrator\Desktop\2017.11.10\088.vir          Gen:Variant.MSIL.Krypt.16 (B) [krnl.xmd]
  75. C:\Users\Administrator\Desktop\2017.11.10\089.vir          Trojan.GenericKD.12541889 (B) [krnl.xmd]
  76. C:\Users\Administrator\Desktop\2017.11.10\090.vir          Trojan.GenericKD.12541084 (B) [krnl.xmd]
  77. C:\Users\Administrator\Desktop\2017.11.10\092.vir          Gen:Variant.Razy.222183 (B) [krnl.xmd]
  78. C:\Users\Administrator\Desktop\2017.11.10\087.vir          Gen:Variant.Graftor.10 (B) [krnl.xmd]
  79. C:\Users\Administrator\Desktop\2017.11.10\096.vir          Trojan.GenericKD.12550157 (B) [krnl.xmd]
  80. C:\Users\Administrator\Desktop\2017.11.10\094.vir          Trojan.GenericKD.6152322 (B) [krnl.xmd]
  81. C:\Users\Administrator\Desktop\2017.11.10\098.vir          Trojan-PSW.Fareit (A) [290937]
  82. C:\Users\Administrator\Desktop\2017.11.10\095.vir          Generic.ServStart.B.776191C2 (B) [krnl.xmd]
  83. C:\Users\Administrator\Desktop\2017.11.10\100.vir          Trojan.Crypt (A) [291305]
  84. C:\Users\Administrator\Desktop\2017.11.10\097.vir          Gen:Variant.Razy.188507 (B) [krnl.xmd]
  85. C:\Users\Administrator\Desktop\2017.11.10\099.vir          Trojan.GenericKD.6167832 (B) [krnl.xmd]

  86. Scanned        100
  87. Found        76

  88. Scan end:        2017/11/10 11:10:56
  89. Scan time:        0:00:04
复制代码



小飞侠.net
发表于 2017-11-10 11:59:14 | 显示全部楼层
本帖最后由 小飞侠.net 于 2017-11-10 20:06 编辑

火绒安全---( Windows 7 Ultimate with SP1 简体中文旗舰版....):部分未知文件已发送到seclab@huorong.cn,等处理中。。。

病毒库:2017/11/09 15:58
开始时间:2017/11/10 19:36
总计用时:00:00:33
扫描对象:606个
扫描文件:100个
发现风险:23个
已处理风险:0个
发现系统修复项:0个
处理系统修复项:0个

病毒详情

风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\005.vir, 病毒名:Ransom/Cryproto, 病毒ID:[95ae9645c31a2d55], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\003.vir, 病毒名:HVM:Trojan/Injector.gen!A, 病毒ID:[cc4a875f53a5d678], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\008.vir, 病毒名:HEUR:Worm/Autorun.ab, 病毒ID:[6663d44f39ff9e2c], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\016.vir, 病毒名:Trojan/Generic!D88EC3A43E372B43, 病毒ID:[d88ec3a43e372b43], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\015.vir, 病毒名:HVM:Trojan/Injector.gen!A, 病毒ID:[cc4a875f53a5d678], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\022.vir, 病毒名:HVM:Trojan/MalBehav.gen!C, 病毒ID:[ff7d5bea1499d14f], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\033.vir, 病毒名:HEUR:OMacro/Obfuscated.c, 病毒ID:[7e6f1720bf6936fa], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\044.vir >> word\embeddings\oleObject1.bin, 病毒名:TrojanDownloader/LNK.Agent.c, 病毒ID:[160722932bd2f32c], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\045.vir >> [NSIS].nsi, 病毒名:TrojanDownloader/Adload.x, 病毒ID:[824af4dba5411252], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\052.vir, 病毒名:Trojan/Generic!DF0E86E455EA8D96, 病毒ID:[df0e86e455ea8d96], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\053.vir >> word\embeddings\oleObject1.bin, 病毒名:TrojanDownloader/LNK.Agent.c, 病毒ID:[160722932bd2f32c], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\061.vir, 病毒名:HVM:Trojan/MalBehav.gen!B, 病毒ID:[411a09904a3cb3fb], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\056.vir, 病毒名:HVM:Trojan/Injector.gen!A, 病毒ID:[cc4a875f53a5d678], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\063.vir, 病毒名:Trojan/Generic!6FA40989AAD29E4D, 病毒ID:[6fa40989aad29e4d], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\070.vir, 病毒名:HVM:VirTool/Obfuscator.gen!A, 病毒ID:[b27d4294cde6a1ec], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\074.vir, 病毒名:HVM:Trojan/Injector.gen!A, 病毒ID:[cc4a875f53a5d678], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\079.vir, 病毒名:Trojan/Generic!719926C4073B0CF4, 病毒ID:[719926c4073b0cf4], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\064.vir, 病毒名:HEUR:Trojan/Delf.z, 病毒ID:[22e68e92aff1cc78], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\090.vir, 病毒名:VirTool/Kovter.p, 病毒ID:[e92bbf97494898d2], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\095.vir, 病毒名:HVM:Trojan/MalBehav.gen!C, 病毒ID:[ff7d5bea1499d14f], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\099.vir, 病毒名:HVM:Trojan/Injector.gen!A, 病毒ID:[cc4a875f53a5d678], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\098.vir, 病毒名:TrojanSpy/Fareit, 病毒ID:[bd34f6179b074a8d], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10\089.vir, 病毒名:VirTool/Kovter.p, 病毒ID:[e92bbf97494898d2], 处理结果:已忽略

文件名称: C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\2017.11.10.7z
文件大小: 12.7 MB (13,364,857 字节)
修改时间: 2017年11月10日,19:35:43
MD5: 460AD8981877741B1746BAA7B652E8A1
SHA1: 4A9E9E9CBB0E0DAA49E64759956936F3FF542582
SHA256: EDD288DF932307D6B2E3B545D6B82F6F082D3D258487E35B84BB013D4EE59CB3
SHA512: AB436229744CA2FAE95666B51E924F829E82EF5665BAFC1CC2E90FE556D870A177CAEEA93E55B2DD1403E9C58FE3D2554CFBE021C3E0E03B726BC8FADDAA974F
CRC32: 703E6737
计算时间: 1.12s (11.90 MB/s)

其它杀毒软件扫描结果: https://pan.baidu.com/s/1boGItyv 密码: 2yw3
瑞星、X-Sec Antivirus、ESET Smart Security Premium、Emsisoft Emergency Kit



电脑管家

【扫描信息】

开始时间:2017-11-10 12:29:29
扫描用时:00:01:02
扫描类型:指定位置杀毒
扫描引擎:管家云查杀引擎 管家反病毒引擎 管家系统修复引擎 Bitdefender本地查杀引擎
扫描状态:扫描完成


【扫描结果】

扫描文件数:100
发现风险数:32
已处理风险数:32


---------------------
2017-11-10 12:30:37 MD5:418efdc9ce19317ec38e26fbe3e55c7a C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\010.vir [Win32.Trojan.Filecoder.Pbfq]  [删除成功]
2017-11-10 12:30:37 MD5:00deef0d366a42c7ce492b234b0e2ff9 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\047.vir [Win32.Backdoor.Runagry.Eyo]  [删除成功]
2017-11-10 12:30:38 MD5:a6d6f2bf39b1e1bbde87584d6d651a15 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\064.vir [Win32.Trojan-qqpass.Qqrob.Lorm]  [删除成功]
2017-11-10 12:30:38 MD5:3c3ec7d9485894c160817a1652d85c81 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\005.vir [Win32.Trojan.Filecoder.Lkoc]  [删除成功]
2017-11-10 12:30:38 MD5:05c3c78cfe0d41ea8a423f6664c6fc46 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\061.vir [Win32.Trojan.Generic.Gln]  [删除成功]
2017-11-10 12:30:38 MD5:fe17c15be9689e49a7c8c183df68f915 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\088.vir [Win32.Trojan.Generic.Edxf]  [删除成功]
2017-11-10 12:30:38 MD5:9db4b24b60bc1c402f38cdb1fd2581af C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\027.vir [Win32.Trojan.Vbkrypt.Hxqa]  [删除成功]
2017-11-10 12:30:38 MD5:608e0b7a8f86dafdd993d2737217e8c6 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\045.vir [Nsis.Trojan-downloader.Adload.Wmta]  [删除成功]
2017-11-10 12:30:39 MD5:ad64c2e05066e7e2705b620923aacd1a C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\016.vir [Win32.Trojan.Vbkrypt.Lork]  [删除成功]
2017-11-10 12:30:39 MD5:bf22b9523f74acc5d295cb6d381c04eb C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\059.vir [Win32.Trojan.Generic.Pgwg]  [删除成功]
2017-11-10 12:30:39 MD5:04d41c6a346283dcccc8da2c836194ca C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\083.vir [Win32.Trojan.Vbkrypt.Glo]  [删除成功]
2017-11-10 12:30:39 MD5:8008a3a240bed4ef41313e604d6516b6 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\049.vir [Win32.Trojan.Dropper.Dvpg]  [删除成功]
2017-11-10 12:30:40 MD5:5e557f1a3f6815ea5e0c3144bb5a73a1 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\042.vir [Win32.Trojan.Symmi.Sxyj]  [删除成功]
2017-11-10 12:30:40 MD5:8ec9c65498995a7019b0bdcf0683559a C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\098.vir [Win32.Trojan-qqpass.Qqrob.Eflh]  [删除成功]
2017-11-10 12:30:40 MD5:aff70b3d570f6c4a1b6f597f15e500ad C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\019.vir [Win32.Trojan.Generic.Lsvv]  [删除成功]
2017-11-10 12:30:40 MD5:55630baf2bafcd04387cec8188abbfed C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\057.vir [Win32.Trojan.Inject.Auto]  [删除成功]
2017-11-10 12:30:41 MD5:d8e72d0bf8ae581af22e953ffd2ceb28 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\076.vir [Win32.Trojan-spy.Noon.Wuqx]  [删除成功]
2017-11-10 12:30:41 MD5:dbd3e9da14ebfb6aa20da998f8ced25b C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\078.vir [Win32.Trojan.Strictor.Wvkl]  [删除成功]
2017-11-10 12:30:41 MD5:c5fdec59767afe0d09d910fdb5c7cc58 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\040.vir [Win32.Trojan.Generic.Tayv]  [删除成功]
2017-11-10 12:30:41 MD5:dc82f72822b3c3262845bcc3be088e36 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\097.vir [Win32.Trojan.Generic.Wtxa]  [删除成功]
2017-11-10 12:30:42 MD5:21d34999b6a5377a1b6ee7f6d3528bd9 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\020.vir [Win32.Trojan-downloader.Banload.Hrff]  [删除成功]
2017-11-10 12:30:42 MD5:22ce288ea80cf118f91ec2d70c6435ce C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\054.vir [Win32.Trojan.Generic.Hrfq]  [删除成功]
2017-11-10 12:30:42 MD5:fa935c63d3cf92eaa5de550b14b8a5e1 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\071.vir [Win32.Trojan.Vbkrypt.Efkl]  [删除成功]
2017-11-10 12:30:43 MD5:e9370a75035c37067618e5e2eee537dd C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\094.vir [Win32.Trojan.Generic.Ajvb]  [删除成功]
2017-11-10 12:30:43 MD5:9119a345b573e0ba7bfd3a8f2dfe95c9 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\031.vir [Win32.Trojan.Dropper.Hphp]  [删除成功]
2017-11-10 12:30:43 MD5:4bcf53c65a5e72dcec0a2c58f0da9ac5 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\095.vir [Win32.Trojan.Generic.Pgnn]  [删除成功]
2017-11-10 12:30:43 MD5:f19284cedc33a25c80510ba87c0f9f3e C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\022.vir [Win32.Worm.Rbot.Ebzu]  [删除成功]
2017-11-10 12:30:43 MD5:8eb422ef07c2195eb578c2f6308cc396 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\026.vir [Js.Trojan-downloader.Agent.Efbg]  [删除成功]
2017-11-10 12:30:44 MD5:b96a4f0c2d910381f2f1990021f519a2 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\052.vir [Win32.Trojan.Heur.Pgcw]  [删除成功]
2017-11-10 12:30:44 MD5:a376f190fc6e182db0533674cc3cd31e C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\070.vir [Win32.Trojan.Strictor.Llgw]  [删除成功]
2017-11-10 12:30:44 MD5:212ef3cf00a67d5ae1ecb932b54962fe C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\089.vir [Win32.Trojan.Filecoder.Hnbi]  [删除成功]
2017-11-10 12:30:44 MD5:3e9187c0d0fc8399231a336148cb9c80 C:\Documents and Settings\Administrator\桌面\2017.11.10\2017.11.10\013.vir [Win32.Trojan.Generic.Lnoj]  [删除成功]
---------------------



金山毒霸

扫描时间:[2017-11-10 12:03:11]
扫描用时:[00:00:27]
扫描类型:自定义查杀
扫描文件总数:262
扫描速度:9文件/秒
发现威胁:67个
清除威胁:67个
=============================================
[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\001.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\003.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\004.vir
类型:win32.heur.kvmh008.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\005.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\014.vir
类型:win32.heur.kvmh008.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\026.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\008.vir
类型:win32.heur.kvmh008.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\009.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\010.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\011.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\013.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\015.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\016.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\017.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\019.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\021.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\022.vir
类型:win32.heur.kvm005.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\024.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\027.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\028.vir
类型:win32.heur.kvm003.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\033.vir
类型:win32.scriptc.undef.a.(kcloud)
处理方式:修复

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\045.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\046.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\074.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\086.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\030.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\031.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\032.vir
类型:win32.troj.hosts2.w.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\035.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\038.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\039.vir
类型:win32.heur.kvmh008.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\040.vir
类型:win32.heur.kvmh008.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\041.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\042.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\043.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\047.vir
类型:win32.hack.runagry.v.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\048.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\049.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\052.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\054.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\056.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\057.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\058.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\059.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\061.vir
类型:win32.hack.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\062.vir
类型:win32.heur.kvmh008.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\063.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\064.vir
类型:win32.pswtroj.glacier.v.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\070.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\071.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\076.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\078.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\079.vir
类型:win32.heur.kvmh008.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\082.vir
类型:win32.heur.kvmh008.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\083.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\084.vir
类型:win32.scriptc.undef.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\085.vir
类型:win32.heur.kvmh008.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\088.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\089.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\090.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\092.vir
类型:win32.heur.kvmh008.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\094.vir
类型:win32.troj.generic_a.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\095.vir
类型:win32.heur.kvm005.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\096.vir
类型:win32.troj.agent.uu.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\097.vir
类型:win32.heur.kvmh008.a.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\098.vir
类型:win32.pswtroj.tepfer.g.(kcloud)
处理方式:删除

[2017-11-10 12:03:59]
威胁:c:\documents and settings\administrator\桌面\2017.11.10\100.vir
类型:win32.troj.undef.(kcloud)
处理方式:删除



欧阳宣
头像被屏蔽
发表于 2017-11-10 12:08:19 | 显示全部楼层
mbam 44x,双击7个PDF,火狐拦截3个
Eset小粉絲
发表于 2017-11-10 12:31:48 | 显示全部楼层
Bitdefender 72x

  1. 031.vir"  threatName="Gen:Variant.Razy.222150" fileSize="130562"
  2. 013.vir"  threatName="Gen:Variant.Barys.55497" fileSize="143362"
  3. 099.vir"  threatName="Trojan.GenericKD.6167832" fileSize="496130"
  4. 100.vir"  threatName="Trojan.GenericKD.12540076" fileSize="104962"
  5. 076.vir"  threatName="Trojan.GenericKD.12542189" fileSize="360961"
  6. 094.vir"  threatName="Trojan.GenericKD.6152322" fileSize="217602"
  7. 041.vir"  threatName="Trojan.GenericKD.12546421" fileSize="156674"
  8. 005.vir"  threatName="Gen:Trojan.Heur.FU.fmX@aql2c5d" fileSize="90114"
  9. 078.vir"  threatName="Gen:Variant.Strictor.41753" fileSize="465922"
  10. 096.vir"  threatName="Trojan.GenericKD.12550157" fileSize="330242"
  11. 079.vir"  threatName="Trojan.GenericKD.6167829" fileSize="232450"
  12. 097.vir"  threatName="Gen:Variant.Razy.188507" fileSize="139266"
  13. 059.vir"  threatName="Gen:Variant.Strictor.98970" fileSize="282626"
  14. 095.vir"  threatName="Generic.ServStart.B.776191C2" fileSize="139266"
  15. 038.vir"  threatName="Trojan.GenericKDZ.40753" fileSize="345602"
  16. 056.vir"  threatName="Gen:Variant.Graftor.423616" fileSize="267266"
  17. 074.vir"  threatName="Trojan.Agent.CPWK" fileSize="508138"
  18. 092.vir"  threatName="Gen:Variant.Razy.222183" fileSize="209410"
  19. 054.vir"  threatName="Trojan.GenericKD.5771336" fileSize="507906"
  20. 090.vir"  threatName="Trojan.GenericKD.12541084" fileSize="223234"
  21. 089.vir"  threatName="Trojan.GenericKD.12541889" fileSize="307202"
  22. 098.vir"  threatName="Gen:Variant.Razy.11684" fileSize="34818"
  23. 043.vir"  threatName="Gen:Variant.Graftor.335361" fileSize="53793"
  24. 061.vir"  threatName="Gen:Variant.Zusy.141304" fileSize="143499"
  25. 069.vir"  threatName="Trojan.GenericKD.12541721" fileSize="466946"
  26. 087.vir"  threatName="Gen:Variant.Graftor.10" fileSize="103258"
  27. 048.vir"  threatName="Trojan.GenericKD.12550668" fileSize="310786"
  28. 084.vir"  threatName="Trojan.VBS.VCE" fileSize="5550"
  29. 047.vir"  threatName="Gen:Variant.Zusy.207562" fileSize="224354"
  30. 065.vir"  threatName="Trojan.GenericKD.12541634" fileSize="183298"
  31. 083.vir"  threatName="Trojan.GenericKD.6166225" fileSize="491522"
  32. 046.vir"  threatName="Trojan.GenericKD.6169400" fileSize="223319"
  33. 064.vir"  threatName="Trojan.PSW.Glacier" fileSize="262297"
  34. 082.vir"  threatName="Trojan.GenericKD.12542115" fileSize="233474"
  35. 088.vir"  threatName="Gen:Variant.MSIL.Krypt.16" fileSize="114690"
  36. 049.vir"  threatName="Gen:Trojan.Heur.VB.dm1@diF2rHii" fileSize="52986"
  37. 085.vir"  threatName="Gen:Variant.Razy.222183" fileSize="207874"
  38. 039.vir"  threatName="GenPack:Generic.Malware.Tk.FF63503C" fileSize="81658"
  39. 057.vir"  threatName="Gen:Variant.Barys.875" fileSize="461826"
  40. 075.vir"  threatName="Trojan.Agent.CPSG" fileSize="267786"
  41. 035.vir"  threatName="Trojan.GenericKD.6167836" fileSize="323586"
  42. 071.vir"  threatName="Trojan.GenericKD.6167462" fileSize="471042"
  43. 016.vir"  threatName="Trojan.GenericKD.6166101" fileSize="466946"
  44. 052.vir"  threatName="Gen:Trojan.Heur.DP.DGX@aCsbpEh" fileSize="477186"
  45. 070.vir"  threatName="Gen:Variant.Strictor.150728" fileSize="719874"
  46. 068.vir"  threatName="Trojan.Generic.22471218" fileSize="57346"
  47. 027.vir"  threatName="Trojan.GenericKD.6167581" fileSize="188418"
  48. 063.vir"  threatName="Gen:Variant.Zusy.263391" fileSize="466946"
  49. 053.vir=>word=>embeddings=>oleObject1.bin=>3.lnk=>(LNK Command 0)"  threatName="Trojan.Downloader.JTXT" fileSize="195"
  50. 032.vir"  threatName="Trojan.Generic.22602777" fileSize="573439"
  51. 050.vir"  threatName="Backdoor.Generic.1005197" fileSize="215554"
  52. 044.vir=>word=>embeddings=>oleObject1.bin=>4.lnk=>(LNK Command 0)"  threatName="Trojan.Downloader.JTXT" fileSize="200"
  53. 026.vir"  threatName="Trojan.Generic.22609119" fileSize="232972"
  54. 062.vir"  threatName="Trojan.GenericKD.12541332" fileSize="233474"
  55. 040.vir"  threatName="Gen:Variant.Razy.221944" fileSize="240130"
  56. 019.vir"  threatName="Gen:Variant.Barys.55497" fileSize="147458"
  57. 037.vir"  threatName="Trojan.JS.Downloader.ICO" fileSize="834"
  58. 015.vir"  threatName="Trojan.Agent.CPVN" fileSize="360962"
  59. 033.vir"  threatName="W97M.Downloader.GLJ" fileSize="199170"
  60. 024.vir"  threatName="Trojan.GenericKD.6153428" fileSize="339028"
  61. 042.vir"  threatName="Gen:Variant.Symmi.79127" fileSize="401922"
  62. 012.vir"  threatName="Trojan.PDF.Phishing.YI" fileSize="57792"
  63. 021.vir"  threatName="Trojan.GenericKD.12541893" fileSize="470530"
  64. 020.vir"  threatName="Gen:Variant.Johnnie.74440" fileSize="28674"
  65. 030.vir"  threatName="Trojan.GenericKD.12541463" fileSize="466946"
  66. 022.vir"  threatName="Generic.ServStart.A.341722AE" fileSize="61442"
  67. 017.vir"  threatName="Gen:Variant.Zusy.261569" fileSize="200706"
  68. 011.vir"  threatName="Trojan.GenericKD.12540169" fileSize="103426"
  69. 009.vir"  threatName="Trojan.GenericKD.12542239" fileSize="232450"
  70. 007.vir=>com/sun/Main$14.class"  threatName="Java.Trojan.GenericGB.19908" fileSize="470"
  71. 010.vir"  threatName="Gen:Trojan.Heur2.FU.GuX@aad@3Wh" fileSize="535554"
  72. 003.vir"  threatName="Trojan.GenericKD.6166186" fileSize="301570"
  73. 007.vir=>com/sun/LibraryManager$13.class"  threatName="Java.Trojan.GenericGB.19917" fileSize="487"
  74. 007.vir=>com/sun/LibraryLoader$10.class"  threatName="Java.Trojan.GenericGB.19913" fileSize="769"
  75. 007.vir=>org/apache/LibraryLoader$9.class"  threatName="Java.Trojan.GenericGB.19906" fileSize="617"
  76. 007.vir=>com/sun/Main$4.class"  threatName="Java.Trojan.GenericGB.19924" fileSize="594"
  77. 044.vir=>word=>embeddings=>oleObject1.bin=>4.lnk"  threatName="" fileSize="0"
复制代码
bbs2811125
发表于 2017-11-10 12:33:42 | 显示全部楼层
本帖最后由 bbs2811125 于 2017-11-13 10:16 编辑

红伞占位68/100
  1. 11/10/2017,12-34-55        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\001.vir
  2. 11/10/2017,12-34-55        [INFO]        [DETECTION] file contains 'TR/AD.AtomicRat.hifkw'
  3. 11/10/2017,12-34-55        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\003.vir
  4. 11/10/2017,12-34-55        [INFO]        [DETECTION] file contains 'TR/Crypt.Xpack.rxqsc'
  5. 11/10/2017,12-34-56        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\005.vir
  6. 11/10/2017,12-34-56        [INFO]        [DETECTION] file contains 'TR/FileCoder.fivip'
  7. 11/10/2017,12-34-56        [INFO]        repair.rdf loaded (version: 1.0.34.12)
  8. 11/10/2017,12-34-57        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\008.vir
  9. 11/10/2017,12-34-57        [INFO]        [DETECTION] file contains 'TR/Crypt.XPACK.Gen2'
  10. 11/10/2017,12-34-57        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\009.vir
  11. 11/10/2017,12-34-57        [INFO]        [DETECTION] file contains 'TR/AD.Emotet.rghte'
  12. 11/10/2017,12-34-57        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\010.vir
  13. 11/10/2017,12-34-57        [INFO]        [DETECTION] file contains 'TR/AD.Locky.frmyf'
  14. 11/10/2017,12-34-58        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\011.vir
  15. 11/10/2017,12-34-58        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.ledmy'
  16. 11/10/2017,12-34-58        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\013.vir
  17. 11/10/2017,12-34-58        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.rxdfg'
  18. 11/10/2017,12-34-58        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\014.vir
  19. 11/10/2017,12-34-58        [INFO]        [DETECTION] file contains 'ADWARE/MultiPlug.Gen4'
  20. 11/10/2017,12-35-04        [INFO]        Repair of Generic started.
  21. 11/10/2017,12-35-10        [INFO]        Repair of Generic finished successfully.
  22. 11/10/2017,12-35-10        [INFO]        Repair of TR/AD.AtomicRat.hifkw started.
  23. 11/10/2017,12-35-20        [INFO]        Successful Cloud SDK initialization and license check.
  24. 11/10/2017,12-35-20        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\015.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 04F3A14CADF24AF548FBD325CC6F0185D94625A6A9D31558BB497A42AC105023
  25. 11/10/2017,12-35-20        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\015.vir
  26. 11/10/2017,12-35-20        [INFO]        [DETECTION] file contains 'TR/Crypt.Agent.04f3a1'
  27. 11/10/2017,12-35-20        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\016.vir
  28. 11/10/2017,12-35-20        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.uytww'
  29. 11/10/2017,12-35-20        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\017.vir
  30. 11/10/2017,12-35-20        [INFO]        [DETECTION] file contains 'TR/AD.Zegost.tzrgv'
  31. 11/10/2017,12-35-34        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\019.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 60A7F522D93B45B40156544A461CDB8897B916FC48CADDF27965C68690767EB1
  32. 11/10/2017,12-35-34        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\019.vir
  33. 11/10/2017,12-35-34        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.Gen'
  34. 11/10/2017,12-35-34        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\020.vir
  35. 11/10/2017,12-35-34        [INFO]        [DETECTION] file contains 'TR/VB.Downloader.Gen'
  36. 11/10/2017,12-35-34        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\021.vir
  37. 11/10/2017,12-35-34        [INFO]        [DETECTION] file contains 'TR/Crypt.Xpack.rbpvr'
  38. 11/10/2017,12-35-34        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\022.vir
  39. 11/10/2017,12-35-34        [INFO]        [DETECTION] file contains 'WORM/Rbot.Gen'
  40. 11/10/2017,12-35-34        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\023.vir
  41. 11/10/2017,12-35-34        [INFO]        [DETECTION] file contains 'TR/Crypt.XPACK.Gen2'
  42. 11/10/2017,12-35-42        [INFO]        Repair of TR/AD.AtomicRat.hifkw finished successfully.
  43. 11/10/2017,12-35-42        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\001.vir
  44. 11/10/2017,12-35-42        [INFO]        [ACTION] Clean
  45. 11/10/2017,12-35-42        [INFO]        Repair of TR/Crypt.Xpack.rxqsc started.
  46. 11/10/2017,12-35-48        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\024.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 48EC83DFA8A1E7B9AF31136E7345C282D45445AE04E4C612B81C29B8EC3786E0
  47. 11/10/2017,12-35-48        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\024.vir
  48. 11/10/2017,12-35-48        [INFO]        [DETECTION] file contains 'TR/Dropper.VB.Gen'
  49. 11/10/2017,12-36-00        [INFO]        Repair of TR/Crypt.Xpack.rxqsc finished successfully.
  50. 11/10/2017,12-36-00        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\003.vir
  51. 11/10/2017,12-36-00        [INFO]        [ACTION] Clean
  52. 11/10/2017,12-36-00        [INFO]        Repair of TR/FileCoder.fivip started.
  53. 11/10/2017,12-36-02        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\026.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 99184A7412D3B20A042EF5CB3DA738C0230E7350A7B49841DB1596AF93918E11
  54. 11/10/2017,12-36-02        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\026.vir
  55. 11/10/2017,12-36-02        [INFO]        [DETECTION] file contains 'HEUR/APC'
  56. 11/10/2017,12-36-02        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\027.vir
  57. 11/10/2017,12-36-02        [INFO]        [DETECTION] file contains 'TR/Dropper.VB.wsqhg'
  58. 11/10/2017,12-36-18        [INFO]        Repair of TR/FileCoder.fivip finished successfully.
  59. 11/10/2017,12-36-18        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\005.vir
  60. 11/10/2017,12-36-18        [INFO]        [ACTION] Clean
  61. 11/10/2017,12-36-18        [INFO]        Repair of TR/Crypt.XPACK.Gen2 started.
  62. 11/10/2017,12-36-20        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\028.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = F9542CC4286CCF2513F0B495DD3B64F5274358662E0360D26DA7C10FBA0BAC9A
  63. 11/10/2017,12-36-29        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\029.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = D23F39D934BC5E4FCDEFFD62FB6724DF057F0DA311FA0850F051A0A04E14F8D8
  64. 11/10/2017,12-36-29        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\030.vir
  65. 11/10/2017,12-36-29        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.qeong'
  66. 11/10/2017,12-36-29        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\031.vir
  67. 11/10/2017,12-36-29        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.dqzca'
  68. 11/10/2017,12-36-29        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\032.vir
  69. 11/10/2017,12-36-29        [INFO]        [DETECTION] file contains 'Adware/Taranis.3958'
  70. 11/10/2017,12-36-29        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\035.vir
  71. 11/10/2017,12-36-29        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.fykkv'
  72. 11/10/2017,12-36-29        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\038.vir
  73. 11/10/2017,12-36-30        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.wwdmp'
  74. 11/10/2017,12-36-30        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\039.vir
  75. 11/10/2017,12-36-30        [INFO]        [DETECTION] file contains 'TR/Crypt.XPACK.Gen2'
  76. 11/10/2017,12-36-30        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\040.vir
  77. 11/10/2017,12-36-30        [INFO]        [DETECTION] file contains 'TR/Crypt.XPACK.Gen'
  78. 11/10/2017,12-36-30        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\042.vir
  79. 11/10/2017,12-36-30        [INFO]        [DETECTION] file contains 'TR/Crypt.Agent.rqfxu'
  80. 11/10/2017,12-36-30        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\043.vir
  81. 11/10/2017,12-36-30        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.jccjt'
  82. 11/10/2017,12-36-36        [INFO]        Repair of TR/Crypt.XPACK.Gen2 finished successfully.
  83. 11/10/2017,12-36-36        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\008.vir
  84. 11/10/2017,12-36-36        [INFO]        [ACTION] Clean
  85. 11/10/2017,12-36-36        [INFO]        Repair of TR/AD.Emotet.rghte started.
  86. 11/10/2017,12-36-41        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\045.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 97AAC74C06C0703954D010BDD06A38E2C86EE063FC2568CD516CDC0D6F447470
  87. 11/10/2017,12-36-41        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\045.vir
  88. 11/10/2017,12-36-41        [INFO]        [DETECTION] file contains 'TR/Dldr.Adload.97aac7'
  89. 11/10/2017,12-36-41        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\046.vir
  90. 11/10/2017,12-36-41        [INFO]        [DETECTION] file contains 'TR/Dropper.fdxpw'
  91. 11/10/2017,12-36-41        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\047.vir
  92. 11/10/2017,12-36-41        [INFO]        [DETECTION] file contains 'TR/Agent.hbyk'
  93. 11/10/2017,12-36-41        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\048.vir
  94. 11/10/2017,12-36-41        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.qdbko'
  95. 11/10/2017,12-36-41        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\049.vir
  96. 11/10/2017,12-36-41        [INFO]        [DETECTION] file contains 'TR/Dropper.Gen'
  97. 11/10/2017,12-36-54        [INFO]        Repair of TR/AD.Emotet.rghte finished successfully.
  98. 11/10/2017,12-36-54        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\009.vir
  99. 11/10/2017,12-36-54        [INFO]        [ACTION] Clean
  100. 11/10/2017,12-36-54        [INFO]        Repair of TR/AD.Locky.frmyf started.
  101. 11/10/2017,12-36-56        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\050.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 1D4BF4CD2AE30A7D5805AE58B00A1A1DF507B9818D70D4DD7415C0639F0CE3B9
  102. 11/10/2017,12-37-08        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\051.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = B0DCF0608CC67080BCE3F9A823E9905C497F980D0CBB31D17B8BB8BEE172A2A8
  103. 11/10/2017,12-37-12        [INFO]        Repair of TR/AD.Locky.frmyf finished successfully.
  104. 11/10/2017,12-37-12        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\010.vir
  105. 11/10/2017,12-37-12        [INFO]        [ACTION] Clean
  106. 11/10/2017,12-37-12        [INFO]        Repair of TR/Crypt.ZPACK.ledmy started.
  107. 11/10/2017,12-37-24        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\052.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = E21E92A0423BAFB4702BA307A171814E81AEA1A8566B60BAD66070FED51BC4DD
  108. 11/10/2017,12-37-24        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\052.vir
  109. 11/10/2017,12-37-24        [INFO]        [DETECTION] file contains 'HEUR/APC'
  110. 11/10/2017,12-37-24        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\054.vir
  111. 11/10/2017,12-37-24        [INFO]        [DETECTION] file contains 'TR/Dropper.Gen'
  112. 11/10/2017,12-37-31        [INFO]        Repair of TR/Crypt.ZPACK.ledmy finished successfully.
  113. 11/10/2017,12-37-31        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\011.vir
  114. 11/10/2017,12-37-31        [INFO]        [ACTION] Clean
  115. 11/10/2017,12-37-31        [INFO]        Repair of TR/Dropper.MSIL.rxdfg started.
  116. 11/10/2017,12-37-49        [INFO]        Repair of TR/Dropper.MSIL.rxdfg finished successfully.
  117. 11/10/2017,12-37-49        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\013.vir
  118. 11/10/2017,12-37-49        [INFO]        [ACTION] Clean
  119. 11/10/2017,12-37-49        [INFO]        Repair of ADWARE/MultiPlug.Gen4 started.
  120. 11/10/2017,12-37-49        [INFO]        Retry 1 for the file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\055.vir'. SHA256 = DB57AE6AE1E1FC3065E7958EB6B56B4A7BDB2F8E4B1FD0054AE6026F7983FC42
  121. 11/10/2017,12-38-02        [INFO]        Retry 2 for the file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\055.vir'. SHA256 = DB57AE6AE1E1FC3065E7958EB6B56B4A7BDB2F8E4B1FD0054AE6026F7983FC42
  122. 11/10/2017,12-38-15        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\055.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = DB57AE6AE1E1FC3065E7958EB6B56B4A7BDB2F8E4B1FD0054AE6026F7983FC42
  123. 11/10/2017,12-38-15        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\056.vir
  124. 11/10/2017,12-38-15        [INFO]        [DETECTION] file contains 'TR/Crypt.Xpack.pmncd'
  125. 11/10/2017,12-38-15        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\057.vir
  126. 11/10/2017,12-38-15        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.mazae'
  127. 11/10/2017,12-38-32        [INFO]        Retry 1 for the file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\058.vir'. SHA256 = 18CC51472FE34ADA43EF595B2EB5D89B702B22E98443C443A4F25A90A48A2A16
  128. 11/10/2017,12-38-44        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\058.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 18CC51472FE34ADA43EF595B2EB5D89B702B22E98443C443A4F25A90A48A2A16
  129. 11/10/2017,12-38-45        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\059.vir
  130. 11/10/2017,12-38-45        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.hjqhv'
  131. 11/10/2017,12-38-45        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\061.vir
  132. 11/10/2017,12-38-45        [INFO]        [DETECTION] file contains 'TR/Agent.143497'
  133. 11/10/2017,12-38-45        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\062.vir
  134. 11/10/2017,12-38-45        [INFO]        [DETECTION] file contains 'TR/Crypt.EPACK.fqgnw'
  135. 11/10/2017,12-38-45        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\063.vir
  136. 11/10/2017,12-38-45        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.uytww'
  137. 11/10/2017,12-38-45        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\064.vir
  138. 11/10/2017,12-38-45        [INFO]        [DETECTION] file contains 'TR/Glacier'
  139. 11/10/2017,12-38-45        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\065.vir
  140. 11/10/2017,12-38-45        [INFO]        [DETECTION] file contains 'TR/Drop.Agent.ceuii'
  141. 11/10/2017,12-38-45        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\067.vir
  142. 11/10/2017,12-38-45        [INFO]        [DETECTION] file contains 'TR/Zusy.193536.2'
  143. 11/10/2017,12-38-58        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\068.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 00529306FF4A4D867CDB78D1ED64E6C9D1BF704FEE0634712A80B8691B064E51
  144. 11/10/2017,12-38-58        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\069.vir
  145. 11/10/2017,12-38-58        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.geegn'
  146. 11/10/2017,12-39-14        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\070.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = DFF861FA5BFC583E9E45F14D71EEEA79FF950B6C0B70EA04838C701A0866ED10
  147. 11/10/2017,12-39-14        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\070.vir
  148. 11/10/2017,12-39-14        [INFO]        [DETECTION] file contains 'TR/Crypt.Agent.dff861'
  149. 11/10/2017,12-39-14        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\071.vir
  150. 11/10/2017,12-39-14        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.ssohg'
  151. 11/10/2017,12-39-27        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\073.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = FB3FD568DC6DF6F46F5B583A14DDB30ED254DCB80B06B2F6A2E021B07C5EE60F
  152. 11/10/2017,12-39-27        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\074.vir
  153. 11/10/2017,12-39-27        [INFO]        [DETECTION] file contains 'TR/Injector.illcf'
  154. 11/10/2017,12-39-41        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\075.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 7B83EF6A62ECFDCC6207019A908C062CA88CD74528DD03C48FD909A74CEAF9A2
  155. 11/10/2017,12-39-41        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\075.vir
  156. 11/10/2017,12-39-41        [INFO]        [DETECTION] file contains 'PUA/WinWrapper'
  157. 11/10/2017,12-39-41        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\076.vir
  158. 11/10/2017,12-39-41        [INFO]        [DETECTION] file contains 'TR/Dropper.VB.kjgnd'
  159. 11/10/2017,12-39-41        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\078.vir
  160. 11/10/2017,12-39-41        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.hwvbn'
  161. 11/10/2017,12-39-41        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\079.vir
  162. 11/10/2017,12-39-41        [INFO]        [DETECTION] file contains 'TR/Crypt.EPACK.grokb'
  163. 11/10/2017,12-40-09        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\081.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 7C30B0A1B2EF7A65DA929C266F1DD48ED1DB7EA7A1394ECFA2F49AE1E8C42284
  164. 11/10/2017,12-40-09        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\082.vir
  165. 11/10/2017,12-40-09        [INFO]        [DETECTION] file contains 'TR/Crypt.EPACK.onxjx'
  166. 11/10/2017,12-40-09        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\083.vir
  167. 11/10/2017,12-40-09        [INFO]        [DETECTION] file contains 'TR/Dropper.VB.lqzir'
  168. 11/10/2017,12-40-09        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\085.vir
  169. 11/10/2017,12-40-09        [INFO]        [DETECTION] file contains 'TR/AD.Emotet.ybjwz'
  170. 11/10/2017,12-40-11        [INFO]        Repair of ADWARE/MultiPlug.Gen4 finished successfully.
  171. 11/10/2017,12-40-11        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\014.vir
  172. 11/10/2017,12-40-11        [INFO]        [ACTION] Clean
  173. 11/10/2017,12-40-11        [INFO]        Repair of TR/Crypt.Agent.04f3a1 started.
  174. 11/10/2017,12-40-21        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\086.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = 102236F3EA1B8B7BE3DD10FC90D164417236B8BF8AF09A861F6A437225D53804
  175. 11/10/2017,12-40-21        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\086.vir
  176. 11/10/2017,12-40-21        [INFO]        [DETECTION] file contains 'HEUR/APC'
  177. 11/10/2017,12-40-27        [INFO]        Repair of TR/Crypt.Agent.04f3a1 finished successfully.
  178. 11/10/2017,12-40-27        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\015.vir
  179. 11/10/2017,12-40-27        [INFO]        [ACTION] Clean
  180. 11/10/2017,12-40-27        [INFO]        Repair of TR/Crypt.ZPACK.uytww started.
  181. 11/10/2017,12-40-34        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\087.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = C2E4FAE1212075A91F0CF98A51EBF53265DF6138D03464C9F32843C0831A9A44
  182. 11/10/2017,12-40-34        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\088.vir
  183. 11/10/2017,12-40-34        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.141272'
  184. 11/10/2017,12-40-34        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\089.vir
  185. 11/10/2017,12-40-34        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.oztsk'
  186. 11/10/2017,12-40-34        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\090.vir
  187. 11/10/2017,12-40-34        [INFO]        [DETECTION] file contains 'TR/Crypt.Xpack.wskbk'
  188. 11/10/2017,12-40-44        [INFO]        Repair of TR/Crypt.ZPACK.uytww finished successfully.
  189. 11/10/2017,12-40-44        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\016.vir
  190. 11/10/2017,12-40-44        [INFO]        [ACTION] Clean
  191. 11/10/2017,12-40-44        [INFO]        Repair of TR/AD.Zegost.tzrgv started.
  192. 11/10/2017,12-40-47        [INFO]        The file 'c:\users\kyss\desktop\2017.11.10\2017.11.10\091.vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = F56C143FF4486FB95441AACA957DD60E057CF6F852A9FDAC0780F902B3056A63
  193. 11/10/2017,12-40-47        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\092.vir
  194. 11/10/2017,12-40-47        [INFO]        [DETECTION] file contains 'TR/AD.Emotet.haljt'
  195. 11/10/2017,12-40-47        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\094.vir
  196. 11/10/2017,12-40-47        [INFO]        [DETECTION] file contains 'TR/Dropper.MSIL.xtzef'
  197. 11/10/2017,12-40-47        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\095.vir
  198. 11/10/2017,12-40-47        [INFO]        [DETECTION] file contains 'BDS/Backdoor.Gen2'
  199. 11/10/2017,12-40-47        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\096.vir
  200. 11/10/2017,12-40-47        [INFO]        [DETECTION] file contains 'TR/AD.Nanocore.zerxq'
  201. 11/10/2017,12-40-47        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\097.vir
  202. 11/10/2017,12-40-47        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.mbmfu'
  203. 11/10/2017,12-40-47        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\098.vir
  204. 11/10/2017,12-40-47        [INFO]        [DETECTION] file contains 'TR/PSW.Fareit.iloen'
  205. 11/10/2017,12-40-48        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\099.vir
  206. 11/10/2017,12-40-48        [INFO]        [DETECTION] file contains 'TR/Dropper.vxbii'
  207. 11/10/2017,12-40-48        [INFO]        c:\users\kyss\desktop\2017.11.10\2017.11.10\100.vir
  208. 11/10/2017,12-40-48        [INFO]        [DETECTION] file contains 'TR/Crypt.ZPACK.kxkrp'
复制代码



卡巴补充5x
红伞+卡巴合计73x


13日上午更新病毒库后卡巴补充4x,红伞补充2x
目前剩余21x
cloud01
头像被屏蔽
发表于 2017-11-10 13:11:06 | 显示全部楼层

怎么不用ESET了,难道eset在卡饭群被放逐了吗?
zst470396853
发表于 2017-11-10 13:22:56 | 显示全部楼层
本帖最后由 zst470396853 于 2017-11-10 13:27 编辑

3Q

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
dolphin
发表于 2017-11-10 13:27:38 | 显示全部楼层
SEP kill 62x

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-3-29 21:07 , Processed in 0.106066 second(s), 14 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表