收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 样本集奉上_10
123456下一页
返回列表 发新帖
楼主: www-tekeze
 收起左侧

[病毒样本] 样本集奉上_10

[复制链接]
petr0vic
发表于 2018-7-4 17:21:18 | 显示全部楼层
Emsisoft
38/50
  1. 0c4656a58d72104a584aca0bdd07b9a0.vir -> (NSIS o) -> zlib_nsis0001          Gen:Variant.Adware.DotDo.2 (B) [krnl.xmd]
  2. 0c4656a58d72104a584aca0bdd07b9a0.vir -> (NSIS o) -> zlib_nsis0002          Adware.DotDo.GR (B) [krnl.xmd]
  3. 0c4656a58d72104a584aca0bdd07b9a0.vir -> (NSIS o) -> zlib_nsis0003          Trojan.GenericKD.30949964 (B) [krnl.xmd]
  4. 0c4656a58d72104a584aca0bdd07b9a0.vir -> (NSIS o) -> zlib_nsis0004          Gen:Variant.Razy.317505 (B) [krnl.xmd]
  5. 0afbd6be4df29551e35ceab27dcf65cf.vir          Trojan.Generic.22910406 (B) [krnl.xmd]
  6. 01dfcf14819176c2a0473d7208ad51c1.vir          Trojan.GenericKD.30645025 (B) [krnl.xmd]
  7. 01a07a90a66348fa97013b6b2ff1e53a.vir          Worm.Generic.24869 (B) [krnl.xmd]
  8. 0c9fd70a78ee92180e21875581106295.vir          Trojan.GenericKD.30948854 (B) [krnl.xmd]
  9. 002b40545db9e48cb990218fcc80632d.vir          Gen:Variant.Jaik.24161 (B) [krnl.xmd]
  10. 0ea5d0e8d6c6024d08ee3a26ca048745.vir          Trojan.GenericKD.30637141 (B) [krnl.xmd]
  11. 00aaae4dbf8166b37b4204ec5ea545f8.vir          Gen:Variant.Strictor.41388 (B) [krnl.xmd]
  12. 1aade3b4bec69d9a923cb1e9831405c0.vir          Trojan.GenericKD.30866138 (B) [krnl.xmd]
  13. 1b4d3c4125c3aa620a470b65d7a664c6.vir          Application.AdBundle (A) [294266]
  14. 1bfa401c-aef1-11e6-aa2d-80e65024849a.vir          Application.NSISmod (A) [285327]
  15. 0f41b002adf7b2030157da819267bce0.vir          Trojan.GenericKD.30929630 (B) [krnl.xmd]
  16. 1c16636469c63cdeb9c48e6c7fbb3258.vir          Gen:Trojan.Heur.RP.nuW@a4@4IPii (B) [krnl.xmd]
  17. 1d58d6ec609428e74f912929ff88cc8e.vir          Trojan.GenericKD.30865084 (B) [krnl.xmd]
  18. 1d642a531e5c032720bfc3d5f202e4df.vir          Trojan.GenericKD.30908496 (B) [krnl.xmd]
  19. 1ce0846fe8a09f289fe5c0d26c0e79f2.vir          Gen:Variant.Graftor.129912 (B) [krnl.xmd]
  20. 1f56477213a560eb28b6d1b7cfdae996.vir          Trojan.Generic.6964446 (B) [krnl.xmd]
  21. 1db0fa3456b2265a5f188e0099244c95.vir          Gen:Variant.Graftor.359279 (B) [krnl.xmd]
  22. 2adda71a8af70140665fd91f1cecfc5f.vir          Application.AdOffer (A) [285399]
  23. 2ab08a94-310e-11e8-93a3-80e65024849a.vir          Gen:Variant.Zusy.76227 (B) [krnl.xmd]
  24. 2b97155e-310e-11e8-88ee-80e65024849a.vir          Trojan.GenericKD.30446036 (B) [krnl.xmd]
  25. 2c82fadc-310e-11e8-ad18-80e65024849a.vir          Trojan.GenericKD.30451419 (B) [krnl.xmd]
  26. 2c1ef76405d4c62f32b75cd29df2c0f8.vir          Application.AdLoad (A) [293894]
  27. 2d7197d1-310e-11e8-94aa-80e65024849a.vir          Trojan.GenericKD.30454219 (B) [krnl.xmd]
  28. 1dd3ae8ba9b73a36bc5db256a45938ca.vir          Gen:Variant.Graftor.290659 (B) [krnl.xmd]
  29. 3b6be19e-ae92-11e6-8e46-80e65024849a.vir          Application.Chindo (A) [283416]
  30. 3b8f63fb8b01751cb762f1d6b5b091be.vir          Trojan.GenericKD.30970365 (B) [krnl.xmd]
  31. 3c69cd68abbf06603de76e05e2fe2d6f.vir          Trojan.Crypt (A) [294015]
  32. 3d17b3903787ec236f4fa2258f4052cc.vir          Gen:Variant.MSILPerseus.101138 (B) [krnl.xmd]
  33. 3df46b97-4ffa-11e7-abba-80e65024849a.vir          Gen:Variant.Application.Downloader.Nezchi.1 (B) [krnl.xmd]
  34. 2d57ecf2cdb2334135c094ead729c614.vir          Gen:Variant.Strictor.41727 (B) [krnl.xmd]
  35. 3fdf97f1a7e8d0664d1236d9c5b20e93.vir          Trojan.GenericKD.4531923 (B) [krnl.xmd]
  36. 4bef8206990765ed4a289a5830f2a55c.vir          Trojan.GenericKD.30970411 (B) [krnl.xmd]
  37. 3ec67acd30d4143d299302c6fa2e30b0.vir          Gen:Variant.Zusy.288985 (B) [krnl.xmd]
  38. 4ccf0e46730a357a34a3080ea581aaff.vir          Gen:Variant.MSILPerseus.149146 (B) [krnl.xmd]
  39. 4e265405e8aa5f35aee4dbf7eba07e68.vir          Trojan.Script.Agent.OZ (B) [krnl.xmd]
  40. 4f8236028e9317c5f89f944d5b43c710.vir          Gen:Variant.Razy.320212 (B) [krnl.xmd]
  41. 3fece669cf39153d28e366d19993c4d2.vir -> (ZIP Sfx o) -> saint/ui/sAINT.class          Java.Trojan.GenericGB.24032 (B) [krnl.xmd]
复制代码
回复

举报

Jerry.Lin
发表于 2018-7-4 17:35:10 | 显示全部楼层
本帖最后由 191196846 于 2018-7-4 17:39 编辑

ESET

43/50

  1. <?xml version="1.0" encoding="utf-8" ?>
  2. <ESET>
  3.   <LOG>
  4.     <RECORD>
  5.       <COLUMN NAME="Time">2018/7/4 17:33:18</COLUMN>
  6.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  7.       <COLUMN NAME="Object type">file</COLUMN>
  8.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\0c9fd70a78ee92180e21875581106295.vir</COLUMN>
  9.       <COLUMN NAME="Threat">MSIL/Agent.SIU trojan</COLUMN>
  10.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  11.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  12.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  13.       <COLUMN NAME="Hash">3E6E5A4AA7A05880AB69EEF3DDB28F4CB8EB9E01</COLUMN>
  14.       <COLUMN NAME="First seen here">2018/7/4 17:33:09</COLUMN>
  15.     </RECORD>
  16.     <RECORD>
  17.       <COLUMN NAME="Time">2018/7/4 17:33:19</COLUMN>
  18.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  19.       <COLUMN NAME="Object type">file</COLUMN>
  20.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\0ffcf5d4f49313801c30bedd5b183e30.vir</COLUMN>
  21.       <COLUMN NAME="Threat">PowerShell/Agent.AC trojan</COLUMN>
  22.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  23.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  24.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  25.       <COLUMN NAME="Hash">8E193D8726B3E620FD6D2F94A6F80FD8889B16D5</COLUMN>
  26.       <COLUMN NAME="First seen here">2018/7/4 17:33:09</COLUMN>
  27.     </RECORD>
  28.     <RECORD>
  29.       <COLUMN NAME="Time">2018/7/4 17:33:19</COLUMN>
  30.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  31.       <COLUMN NAME="Object type">file</COLUMN>
  32.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\01dfcf14819176c2a0473d7208ad51c1.vir</COLUMN>
  33.       <COLUMN NAME="Threat">a variant of MSIL/Kryptik.NGN trojan</COLUMN>
  34.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  35.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  36.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  37.       <COLUMN NAME="Hash">D3FFD7FE6FCE2497881608CB24C3FBE3087170B0</COLUMN>
  38.       <COLUMN NAME="First seen here">2018/7/4 17:33:09</COLUMN>
  39.     </RECORD>
  40.     <RECORD>
  41.       <COLUMN NAME="Time">2018/7/4 17:33:24</COLUMN>
  42.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  43.       <COLUMN NAME="Object type">file</COLUMN>
  44.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\0ea5d0e8d6c6024d08ee3a26ca048745.vir</COLUMN>
  45.       <COLUMN NAME="Threat">HTML/Refresh.BC trojan</COLUMN>
  46.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  47.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  48.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  49.       <COLUMN NAME="Hash">8C7BEFE8130C59ACFCF86ADD4F9A3F39BED43978</COLUMN>
  50.       <COLUMN NAME="First seen here">2018/7/4 17:33:09</COLUMN>
  51.     </RECORD>
  52.     <RECORD>
  53.       <COLUMN NAME="Time">2018/7/4 17:33:25</COLUMN>
  54.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  55.       <COLUMN NAME="Object type">file</COLUMN>
  56.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\1aade3b4bec69d9a923cb1e9831405c0.vir</COLUMN>
  57.       <COLUMN NAME="Threat">a variant of Win32/Kryptik.GHAR trojan</COLUMN>
  58.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  59.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  60.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  61.       <COLUMN NAME="Hash">C29D5601C7DDAB686FCC1F4C0217CD05E7416EF7</COLUMN>
  62.       <COLUMN NAME="First seen here">2018/7/4 17:33:09</COLUMN>
  63.     </RECORD>
  64.     <RECORD>
  65.       <COLUMN NAME="Time">2018/7/4 17:33:25</COLUMN>
  66.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  67.       <COLUMN NAME="Object type">file</COLUMN>
  68.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\0afbd6be4df29551e35ceab27dcf65cf.vir</COLUMN>
  69.       <COLUMN NAME="Threat">Win64/TrickBot.AB trojan</COLUMN>
  70.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  71.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  72.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  73.       <COLUMN NAME="Hash">AE80C9787C38478D61DC2287000719C42B235562</COLUMN>
  74.       <COLUMN NAME="First seen here">2018/7/4 17:33:09</COLUMN>
  75.     </RECORD>
  76.     <RECORD>
  77.       <COLUMN NAME="Time">2018/7/4 17:33:32</COLUMN>
  78.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  79.       <COLUMN NAME="Object type">file</COLUMN>
  80.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\1b4d3c4125c3aa620a470b65d7a664c6.vir</COLUMN>
  81.       <COLUMN NAME="Threat">a variant of Win32/Kryptik.GHTS trojan</COLUMN>
  82.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  83.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  84.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  85.       <COLUMN NAME="Hash">1A123FB78B1072937B0A6EC5DEC551D410C32FF8</COLUMN>
  86.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  87.     </RECORD>
  88.     <RECORD>
  89.       <COLUMN NAME="Time">2018/7/4 17:33:33</COLUMN>
  90.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  91.       <COLUMN NAME="Object type">file</COLUMN>
  92.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\1bfa401c-aef1-11e6-aa2d-80e65024849a.vir</COLUMN>
  93.       <COLUMN NAME="Threat">a variant of Win32/Packed.NSISmod.A suspicious application</COLUMN>
  94.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  95.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  96.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  97.       <COLUMN NAME="Hash">7CAD06A8A2FAE9BD62F4BB08A0AC3FC9755BB178</COLUMN>
  98.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  99.     </RECORD>
  100.     <RECORD>
  101.       <COLUMN NAME="Time">2018/7/4 17:33:33</COLUMN>
  102.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  103.       <COLUMN NAME="Object type">file</COLUMN>
  104.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\0c4656a58d72104a584aca0bdd07b9a0.vir</COLUMN>
  105.       <COLUMN NAME="Threat">multiple threats</COLUMN>
  106.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  107.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  108.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  109.       <COLUMN NAME="Hash">18160E4F7D596FE37FB8DD24C6303DAF4016752C</COLUMN>
  110.       <COLUMN NAME="First seen here"></COLUMN>
  111.     </RECORD>
  112.     <RECORD>
  113.       <COLUMN NAME="Time">2018/7/4 17:33:34</COLUMN>
  114.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  115.       <COLUMN NAME="Object type">file</COLUMN>
  116.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\1c16636469c63cdeb9c48e6c7fbb3258.vir</COLUMN>
  117.       <COLUMN NAME="Threat">a variant of Win32/Spy.KeyLogger.QFB trojan</COLUMN>
  118.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  119.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  120.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  121.       <COLUMN NAME="Hash">541F4992C659AEC340F63B55F13BB8E5E3D972C6</COLUMN>
  122.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  123.     </RECORD>
  124.     <RECORD>
  125.       <COLUMN NAME="Time">2018/7/4 17:33:35</COLUMN>
  126.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  127.       <COLUMN NAME="Object type">file</COLUMN>
  128.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\1d58d6ec609428e74f912929ff88cc8e.vir</COLUMN>
  129.       <COLUMN NAME="Threat">a variant of Generik.ESVYYVS trojan</COLUMN>
  130.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  131.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  132.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  133.       <COLUMN NAME="Hash">9C5110DCBAB3DB0024D95F8F10CE31F61B2E099D</COLUMN>
  134.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  135.     </RECORD>
  136.     <RECORD>
  137.       <COLUMN NAME="Time">2018/7/4 17:33:37</COLUMN>
  138.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  139.       <COLUMN NAME="Object type">file</COLUMN>
  140.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\1ce0846fe8a09f289fe5c0d26c0e79f2.vir</COLUMN>
  141.       <COLUMN NAME="Threat">a variant of Generik.CNGSEPS trojan</COLUMN>
  142.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  143.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  144.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  145.       <COLUMN NAME="Hash">12833C16CBCBADE1027104BCDA96ED2E4D815AF5</COLUMN>
  146.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  147.     </RECORD>
  148.     <RECORD>
  149.       <COLUMN NAME="Time">2018/7/4 17:33:40</COLUMN>
  150.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  151.       <COLUMN NAME="Object type">file</COLUMN>
  152.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\1d642a531e5c032720bfc3d5f202e4df.vir</COLUMN>
  153.       <COLUMN NAME="Threat">a variant of MSIL/PSW.OnLineGames.BJH trojan</COLUMN>
  154.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  155.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  156.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  157.       <COLUMN NAME="Hash">27706BB88F011C4D50CE3DBC2C35F6EB8BB0220E</COLUMN>
  158.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  159.     </RECORD>
  160.     <RECORD>
  161.       <COLUMN NAME="Time">2018/7/4 17:33:43</COLUMN>
  162.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  163.       <COLUMN NAME="Object type">file</COLUMN>
  164.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\1c078e8c-310e-11e8-9167-80e65024849a.vir</COLUMN>
  165.       <COLUMN NAME="Threat">a variant of Win32/HackTool.Crack.FS potentially unsafe application</COLUMN>
  166.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  167.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  168.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  169.       <COLUMN NAME="Hash">CAAD125358D2AE6D217E74CFCD175AC81C43C729</COLUMN>
  170.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  171.     </RECORD>
  172.     <RECORD>
  173.       <COLUMN NAME="Time">2018/7/4 17:33:44</COLUMN>
  174.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  175.       <COLUMN NAME="Object type">file</COLUMN>
  176.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\2ab08a94-310e-11e8-93a3-80e65024849a.vir</COLUMN>
  177.       <COLUMN NAME="Threat">a variant of MSIL/Kryptik.NBM trojan</COLUMN>
  178.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  179.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  180.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  181.       <COLUMN NAME="Hash">96D14027C7659BF6A5B3FAED4749C16483AB1DB0</COLUMN>
  182.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  183.     </RECORD>
  184.     <RECORD>
  185.       <COLUMN NAME="Time">2018/7/4 17:33:44</COLUMN>
  186.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  187.       <COLUMN NAME="Object type">file</COLUMN>
  188.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\1db0fa3456b2265a5f188e0099244c95.vir</COLUMN>
  189.       <COLUMN NAME="Threat">a variant of Win32/Farfli.AYO trojan</COLUMN>
  190.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  191.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  192.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  193.       <COLUMN NAME="Hash">B4B2AC4C59C194558BE63F084A7423B7EC336E00</COLUMN>
  194.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  195.     </RECORD>
  196.     <RECORD>
  197.       <COLUMN NAME="Time">2018/7/4 17:33:45</COLUMN>
  198.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  199.       <COLUMN NAME="Object type">file</COLUMN>
  200.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\0f41b002adf7b2030157da819267bce0.vir</COLUMN>
  201.       <COLUMN NAME="Threat">a variant of Win32/Injector.Autoit.DID trojan</COLUMN>
  202.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  203.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  204.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  205.       <COLUMN NAME="Hash">2AC1ED8011627E7D6F1F3323792C6AD5ED06BC9A</COLUMN>
  206.       <COLUMN NAME="First seen here"></COLUMN>
  207.     </RECORD>
  208.     <RECORD>
  209.       <COLUMN NAME="Time">2018/7/4 17:33:50</COLUMN>
  210.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  211.       <COLUMN NAME="Object type">file</COLUMN>
  212.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\002b40545db9e48cb990218fcc80632d.vir</COLUMN>
  213.       <COLUMN NAME="Threat">a variant of Generik.DHGVZKC trojan</COLUMN>
  214.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  215.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  216.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  217.       <COLUMN NAME="Hash">E470A1BFE04FE77C7306DF56EEEE1B45DB6B4EBB</COLUMN>
  218.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  219.     </RECORD>
  220.     <RECORD>
  221.       <COLUMN NAME="Time">2018/7/4 17:33:52</COLUMN>
  222.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  223.       <COLUMN NAME="Object type">file</COLUMN>
  224.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\2b97155e-310e-11e8-88ee-80e65024849a.vir</COLUMN>
  225.       <COLUMN NAME="Threat">a variant of MSIL/Kryptik.NBM trojan</COLUMN>
  226.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  227.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  228.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  229.       <COLUMN NAME="Hash">1B5B57C0BB325EA1C42339A4003CB329835FBA47</COLUMN>
  230.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  231.     </RECORD>
  232.     <RECORD>
  233.       <COLUMN NAME="Time">2018/7/4 17:33:53</COLUMN>
  234.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  235.       <COLUMN NAME="Object type">file</COLUMN>
  236.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\1dd3ae8ba9b73a36bc5db256a45938ca.vir</COLUMN>
  237.       <COLUMN NAME="Threat">a variant of Win32/Spy.Bebloh.O trojan</COLUMN>
  238.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  239.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  240.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  241.       <COLUMN NAME="Hash">44C5510D2D07C99C2082D7E12C61E88852A67A50</COLUMN>
  242.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  243.     </RECORD>
  244.     <RECORD>
  245.       <COLUMN NAME="Time">2018/7/4 17:33:54</COLUMN>
  246.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  247.       <COLUMN NAME="Object type">file</COLUMN>
  248.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\2c82fadc-310e-11e8-ad18-80e65024849a.vir</COLUMN>
  249.       <COLUMN NAME="Threat">a variant of MSIL/Kryptik.NBM trojan</COLUMN>
  250.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  251.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  252.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  253.       <COLUMN NAME="Hash">F00FFC7F4EF0A71F8352762A4D8108F25B95AB28</COLUMN>
  254.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  255.     </RECORD>
  256.     <RECORD>
  257.       <COLUMN NAME="Time">2018/7/4 17:33:56</COLUMN>
  258.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  259.       <COLUMN NAME="Object type">file</COLUMN>
  260.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\2c1ef76405d4c62f32b75cd29df2c0f8.vir</COLUMN>
  261.       <COLUMN NAME="Threat">a variant of Win32/Kryptik.GGSC trojan</COLUMN>
  262.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  263.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  264.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  265.       <COLUMN NAME="Hash">CC44DD8AFB9378AFAC0FD2B2C6FF404BEA50F5EA</COLUMN>
  266.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  267.     </RECORD>
  268.     <RECORD>
  269.       <COLUMN NAME="Time">2018/7/4 17:33:59</COLUMN>
  270.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  271.       <COLUMN NAME="Object type">file</COLUMN>
  272.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\2adda71a8af70140665fd91f1cecfc5f.vir</COLUMN>
  273.       <COLUMN NAME="Threat">a variant of Win32/Adware.Coupons.AA application</COLUMN>
  274.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  275.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  276.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  277.       <COLUMN NAME="Hash">63A5B6FDDD276E02095B7D3528A4BCFBC2444B50</COLUMN>
  278.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  279.     </RECORD>
  280.     <RECORD>
  281.       <COLUMN NAME="Time">2018/7/4 17:34:02</COLUMN>
  282.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  283.       <COLUMN NAME="Object type">file</COLUMN>
  284.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\1f56477213a560eb28b6d1b7cfdae996.vir</COLUMN>
  285.       <COLUMN NAME="Threat">a variant of Win32/Joke.ScreenMate.AA potentially unsafe application</COLUMN>
  286.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  287.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  288.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  289.       <COLUMN NAME="Hash">1BAE07DFAC10D290150D821E1F57E0B9CB408673</COLUMN>
  290.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  291.     </RECORD>
  292.     <RECORD>
  293.       <COLUMN NAME="Time">2018/7/4 17:34:02</COLUMN>
  294.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  295.       <COLUMN NAME="Object type">file</COLUMN>
  296.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\2d7197d1-310e-11e8-94aa-80e65024849a.vir</COLUMN>
  297.       <COLUMN NAME="Threat">a variant of MSIL/Kryptik.NBM trojan</COLUMN>
  298.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  299.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  300.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  301.       <COLUMN NAME="Hash">20A15BED4510E1F5C25CEFCA7FC0CAD5E06D3D24</COLUMN>
  302.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  303.     </RECORD>
  304.     <RECORD>
  305.       <COLUMN NAME="Time">2018/7/4 17:34:02</COLUMN>
  306.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  307.       <COLUMN NAME="Object type">file</COLUMN>
  308.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\2d57ecf2cdb2334135c094ead729c614.vir</COLUMN>
  309.       <COLUMN NAME="Threat">a variant of Win32/Packed.Themida.AAE trojan</COLUMN>
  310.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  311.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  312.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  313.       <COLUMN NAME="Hash">EB70C28901F0A9BFB3AFD28BB7C2BC09549C8A6F</COLUMN>
  314.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  315.     </RECORD>
  316.     <RECORD>
  317.       <COLUMN NAME="Time">2018/7/4 17:34:06</COLUMN>
  318.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  319.       <COLUMN NAME="Object type">file</COLUMN>
  320.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\2fab5e74ad65e508c68262b8b03e6832.vir</COLUMN>
  321.       <COLUMN NAME="Threat">a variant of Generik.DIWCHU trojan</COLUMN>
  322.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  323.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  324.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  325.       <COLUMN NAME="Hash">9E65A965544CC7B18FD63F121F7766B92BD98888</COLUMN>
  326.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  327.     </RECORD>
  328.     <RECORD>
  329.       <COLUMN NAME="Time">2018/7/4 17:34:08</COLUMN>
  330.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  331.       <COLUMN NAME="Object type">file</COLUMN>
  332.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\2e3d29440fa07500cafb61086ca4954c.vir</COLUMN>
  333.       <COLUMN NAME="Threat">MSIL/HackTool.BruteForce.BO trojan</COLUMN>
  334.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  335.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  336.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  337.       <COLUMN NAME="Hash">360E4B7C23F96947E0DED85F63FA2A221169E935</COLUMN>
  338.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  339.     </RECORD>
  340.     <RECORD>
  341.       <COLUMN NAME="Time">2018/7/4 17:34:09</COLUMN>
  342.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  343.       <COLUMN NAME="Object type">file</COLUMN>
  344.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\3b8f63fb8b01751cb762f1d6b5b091be.vir</COLUMN>
  345.       <COLUMN NAME="Threat">a variant of MSIL/Spy.Agent.BPG trojan</COLUMN>
  346.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  347.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  348.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  349.       <COLUMN NAME="Hash">3AC2504FEC39768B2D0E70F093180E08B2133057</COLUMN>
  350.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  351.     </RECORD>
  352.     <RECORD>
  353.       <COLUMN NAME="Time">2018/7/4 17:34:12</COLUMN>
  354.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  355.       <COLUMN NAME="Object type">file</COLUMN>
  356.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\3b6be19e-ae92-11e6-8e46-80e65024849a.vir</COLUMN>
  357.       <COLUMN NAME="Threat">a variant of Win32/Packed.NSISmod.O suspicious application</COLUMN>
  358.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  359.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  360.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  361.       <COLUMN NAME="Hash">98D3661E4C1164B2CD70E07231CB2B4F913915FD</COLUMN>
  362.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  363.     </RECORD>
  364.     <RECORD>
  365.       <COLUMN NAME="Time">2018/7/4 17:34:14</COLUMN>
  366.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  367.       <COLUMN NAME="Object type">file</COLUMN>
  368.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\3d17b3903787ec236f4fa2258f4052cc.vir</COLUMN>
  369.       <COLUMN NAME="Threat">a variant of MSIL/HackTool.BruteForce.HG trojan</COLUMN>
  370.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  371.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  372.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  373.       <COLUMN NAME="Hash">2887340E4ED76F191401E6EE4E8E6D1C1F787463</COLUMN>
  374.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  375.     </RECORD>
  376.     <RECORD>
  377.       <COLUMN NAME="Time">2018/7/4 17:34:15</COLUMN>
  378.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  379.       <COLUMN NAME="Object type">file</COLUMN>
  380.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\2fdaf9edcc2f875468c39ac4531028a3.vir</COLUMN>
  381.       <COLUMN NAME="Threat">a variant of Win32/Koal.A potentially unwanted application</COLUMN>
  382.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  383.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  384.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  385.       <COLUMN NAME="Hash">F7B846457806AE5CD1A07A0994DE59221DB158D2</COLUMN>
  386.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  387.     </RECORD>
  388.     <RECORD>
  389.       <COLUMN NAME="Time">2018/7/4 17:34:17</COLUMN>
  390.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  391.       <COLUMN NAME="Object type">file</COLUMN>
  392.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\3c69cd68abbf06603de76e05e2fe2d6f.vir</COLUMN>
  393.       <COLUMN NAME="Threat">a variant of Win32/Kryptik.GGLL trojan</COLUMN>
  394.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  395.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  396.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  397.       <COLUMN NAME="Hash">6FC165B5DE66731813CFC02BD8F55AB84D6E9F68</COLUMN>
  398.       <COLUMN NAME="First seen here"></COLUMN>
  399.     </RECORD>
  400.     <RECORD>
  401.       <COLUMN NAME="Time">2018/7/4 17:34:19</COLUMN>
  402.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  403.       <COLUMN NAME="Object type">file</COLUMN>
  404.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\3ec67acd30d4143d299302c6fa2e30b0.vir</COLUMN>
  405.       <COLUMN NAME="Threat">a variant of Win32/TrojanDownloader.Banload.YEZ trojan</COLUMN>
  406.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  407.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  408.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  409.       <COLUMN NAME="Hash">93EDE689A430201E23B6BBC389EE8730E1950E36</COLUMN>
  410.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  411.     </RECORD>
  412.     <RECORD>
  413.       <COLUMN NAME="Time">2018/7/4 17:34:21</COLUMN>
  414.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  415.       <COLUMN NAME="Object type">file</COLUMN>
  416.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\3e3592dacab6caa6e089a59c16e7e1a2.vir</COLUMN>
  417.       <COLUMN NAME="Threat">PowerShell/Rozena.AH trojan</COLUMN>
  418.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  419.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  420.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  421.       <COLUMN NAME="Hash">4CA5E81D81D8AF04975D84B75D22848875A5C7F5</COLUMN>
  422.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  423.     </RECORD>
  424.     <RECORD>
  425.       <COLUMN NAME="Time">2018/7/4 17:34:22</COLUMN>
  426.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  427.       <COLUMN NAME="Object type">file</COLUMN>
  428.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\3fdf97f1a7e8d0664d1236d9c5b20e93.vir</COLUMN>
  429.       <COLUMN NAME="Threat">MSIL/HackTool.BruteForce.AT trojan</COLUMN>
  430.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  431.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  432.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  433.       <COLUMN NAME="Hash">F468E69373AAFAEB60DB0F1E2D24F0EF64707404</COLUMN>
  434.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  435.     </RECORD>
  436.     <RECORD>
  437.       <COLUMN NAME="Time">2018/7/4 17:34:24</COLUMN>
  438.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  439.       <COLUMN NAME="Object type">file</COLUMN>
  440.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\3df46b97-4ffa-11e7-abba-80e65024849a.vir</COLUMN>
  441.       <COLUMN NAME="Threat">a variant of Win32/Adware.Qjwmonkey.G application</COLUMN>
  442.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  443.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  444.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  445.       <COLUMN NAME="Hash">EE762B0BEA1AD7BDB4B7120E4B063B08A5F79E4F</COLUMN>
  446.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  447.     </RECORD>
  448.     <RECORD>
  449.       <COLUMN NAME="Time">2018/7/4 17:34:25</COLUMN>
  450.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  451.       <COLUMN NAME="Object type">file</COLUMN>
  452.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\4bef8206990765ed4a289a5830f2a55c.vir</COLUMN>
  453.       <COLUMN NAME="Threat">a variant of Win32/TrojanDropper.Danabot.B trojan</COLUMN>
  454.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  455.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  456.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  457.       <COLUMN NAME="Hash">BC86634971D485A8CE6ED608E495DE6A348A072B</COLUMN>
  458.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  459.     </RECORD>
  460.     <RECORD>
  461.       <COLUMN NAME="Time">2018/7/4 17:34:26</COLUMN>
  462.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  463.       <COLUMN NAME="Object type">file</COLUMN>
  464.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\3fece669cf39153d28e366d19993c4d2.vir</COLUMN>
  465.       <COLUMN NAME="Threat">a variant of Java/Spy.Keylogger.G trojan</COLUMN>
  466.       <COLUMN NAME="Action">deleted</COLUMN>
  467.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  468.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  469.       <COLUMN NAME="Hash">BAC10D2D32D93323E64055105363C11671D2D7BD</COLUMN>
  470.       <COLUMN NAME="First seen here"></COLUMN>
  471.     </RECORD>
  472.     <RECORD>
  473.       <COLUMN NAME="Time">2018/7/4 17:34:29</COLUMN>
  474.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  475.       <COLUMN NAME="Object type">file</COLUMN>
  476.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\4cbeb08531abdcf1497caf1495e38a6c.vir</COLUMN>
  477.       <COLUMN NAME="Threat">Linux/Exploit.CVE-2018-0492.A trojan</COLUMN>
  478.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  479.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  480.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  481.       <COLUMN NAME="Hash">12B47F41070D3112C8487061F3D35E42F168A707</COLUMN>
  482.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  483.     </RECORD>
  484.     <RECORD>
  485.       <COLUMN NAME="Time">2018/7/4 17:34:30</COLUMN>
  486.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  487.       <COLUMN NAME="Object type">file</COLUMN>
  488.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\4ccf0e46730a357a34a3080ea581aaff.vir</COLUMN>
  489.       <COLUMN NAME="Threat">a variant of MSIL/CoinMiner.AOQ trojan</COLUMN>
  490.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  491.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  492.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  493.       <COLUMN NAME="Hash">8E6E61C02038B7172B255CB54C520384739715F6</COLUMN>
  494.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  495.     </RECORD>
  496.     <RECORD>
  497.       <COLUMN NAME="Time">2018/7/4 17:34:30</COLUMN>
  498.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  499.       <COLUMN NAME="Object type">file</COLUMN>
  500.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\4e265405e8aa5f35aee4dbf7eba07e68.vir</COLUMN>
  501.       <COLUMN NAME="Threat">Linux/CoinMiner.BG trojan</COLUMN>
  502.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  503.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  504.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  505.       <COLUMN NAME="Hash">AC0B5E178CFB0B46CB3A0B74C5068B6119BC67F4</COLUMN>
  506.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  507.     </RECORD>
  508.     <RECORD>
  509.       <COLUMN NAME="Time">2018/7/4 17:34:31</COLUMN>
  510.       <COLUMN NAME="Scanner">Real-time file system protection</COLUMN>
  511.       <COLUMN NAME="Object type">file</COLUMN>
  512.       <COLUMN NAME="Object">C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_10\00aaae4dbf8166b37b4204ec5ea545f8.vir</COLUMN>
  513.       <COLUMN NAME="Threat">a variant of MSIL/Injector.NIK trojan</COLUMN>
  514.       <COLUMN NAME="Action">cleaned by deleting</COLUMN>
  515.       <COLUMN NAME="User">DESKTOP-VPBE70N\zhong</COLUMN>
  516.       <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Program Files\WinRAR\winrar.exe (33F1554BA5E9F414C8A7DFD65A5831C513BD2DB2).</COLUMN>
  517.       <COLUMN NAME="Hash">B675CFC96E72246281739A9E2BC17B21C22B37F0</COLUMN>
  518.       <COLUMN NAME="First seen here">2018/7/4 17:33:10</COLUMN>
  519.     </RECORD>
  520. </LOG>
  521. </ESET>
复制代码

回复

举报

www-tekeze
 楼主| 发表于 2018-7-4 18:05:53 | 显示全部楼层
忘记编号了,已重新上传。。
回复

举报

www-tekeze
 楼主| 发表于 2018-7-4 18:07:59 | 显示全部楼层
cloud01 发表于 2018-7-4 16:53
eset  7月3日 20点库  42/50   84%

这次是ESET最牛,它的误报也很低,看来火绒漏报实在太多。。
回复

举报

www-tekeze
 楼主| 发表于 2018-7-4 18:09:26 | 显示全部楼层
xcvbaby 发表于 2018-7-4 17:00
毒霸   10/50

毒霸都能杀10个,火绒却是鸭蛋。。     @火绒工程师
回复

举报

www-tekeze
 楼主| 发表于 2018-7-4 18:11:31 | 显示全部楼层
191196846 发表于 2018-7-4 17:35
ESET

43/50

不玩毛豆了?  
回复

举报

火绒工程师
发表于 2018-7-4 18:19:37 | 显示全部楼层
收到~
回复

举报

Jerry.Lin
发表于 2018-7-4 18:21:20 | 显示全部楼层
www-tekeze 发表于 2018-7-4 18:11
不玩毛豆了?

玩腻了
回复

举报

ELOHIM
发表于 2018-7-4 18:23:32 | 显示全部楼层
scep 40/50 80%
貌似有修复的,并未统计。
回复

举报

小坏爷
发表于 2018-7-4 18:45:06 | 显示全部楼层
WIN10 WD 11个MISS


本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

下一页 »
123456下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-1 02:46 , Processed in 0.092849 second(s), 14 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表