样本集奉上_53

显示全部楼层 · 发表于 2018-8-24 21:52:02

本帖最后由梦想起航. 于 2018-8-24 22:02 编辑

瑞星v17 9/50 金山 7/50 金山这个成绩，以后就不测了。。

显示全部楼层 · 发表于 2018-8-24 22:16:07

梦想起航. 发表于 2018-8-24 21:52
瑞星v17 9/50 金山 7/50 金山这个成绩，以后就不测了。。

总比楼上的腾管强。。

显示全部楼层 · 发表于 2018-8-24 22:24:08

www-tekeze 发表于 2018-8-24 22:16
总比楼上的腾管强。。

太差了，今天测昨天的那个0823，依旧是0

，测一周前的，也杀不完

显示全部楼层 · 发表于 2018-8-24 22:28:28

本帖最后由 y3312068 于 2018-8-24 22:53 编辑

火绒扫描剩27个，稍后双击双击完毕，能看出来杀掉后剩16个，另外不知道这个算不算，只算文件的话剩19个。联网，不过虚拟机可能会影响火绒性能，建议实机

【1】2018-08-24 22:49:25,系统防御,注册表保护,MRT.exe触犯注册表防护规则, 已阻止

操作者：C:\Windows\system32\MRT.exe
命令行："C:\Windows\system32\MRT.exe" /Q /W
风险动作：修改启动项
目标注册表：HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MRT
操作类型：写入
数据内容："C:\Windows\system32\MRT.exe" /R
用户操作：已阻止

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【2】2018-08-24 22:38:18,病毒防御,恶意行为监控,发现未知病毒BEHAV:Ransom/Rattrap.A, 已清除

病毒名称：BEHAV:Ransom/Rattrap.A
文件路径：C:\Users\555\Desktop\VirusSamples_53\Samp(22).vir.exe
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【3】2018-08-24 22:37:46,系统防御,文件保护,Samp(45).vir.exe触犯文件防护规则, 已阻止

操作者：C:\Users\555\Desktop\VirusSamples_53\Samp(45).vir.exe
命令行："C:\Users\555\Desktop\VirusSamples_53\Samp(45).vir.exe"
风险动作：修改启动目录
目标文件：C:\Users\555\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Y6Nkbs8KVRAYivD.lnk
用户操作：已阻止

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【4】2018-08-24 22:34:59,系统防御,文件保护,Samp(45).vir.exe触犯文件防护规则, 已阻止

操作者：C:\Users\555\Desktop\VirusSamples_53\Samp(45).vir.exe
命令行："C:\Users\555\Desktop\VirusSamples_53\Samp(45).vir.exe"
风险动作：修改启动目录
目标文件：C:\Users\555\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\1shPCKgll9PYemt.lnk
用户操作：已阻止

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【5】2018-08-24 22:33:59,系统防御,注册表保护,Samp(38).vir.exe触犯注册表防护规则, 已阻止

操作者：C:\Users\555\Desktop\VirusSamples_53\Samp(38).vir.exe
命令行："C:\Users\555\Desktop\VirusSamples_53\Samp(38).vir.exe"
风险动作：修改启动项
目标注册表：HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\Google Chrome
操作类型：写入
数据内容：C:\Users\555\Desktop\VirusSamples_53\Samp(38).vir.exe
用户操作：已阻止

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【6】2018-08-24 22:33:39,系统防御,文件保护,Samp(10).vir.exe触犯文件防护规则, 已阻止

操作者：C:\Users\555\Desktop\VirusSamples_53\Samp(10).vir.exe
命令行："C:\Users\555\Desktop\VirusSamples_53\Samp(10).vir.exe"
风险动作：修改启动目录
目标文件：C:\Users\555\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\7Md5CXcThKemobi.lnk
用户操作：已阻止

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【7】2018-08-24 22:31:35,病毒防御,恶意行为监控,发现未知病毒BEHAV:Ransom/Rattrap.A, 已清除

病毒名称：BEHAV:Ransom/Rattrap.A
文件路径：C:\Users\555\Desktop\VirusSamples_53\Samp(9).vir.exe
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【8】2018-08-24 22:31:10,系统防御,注册表保护,Samp(9).vir.exe触犯注册表防护规则, 已阻止

操作者：C:\Users\555\Desktop\VirusSamples_53\Samp(9).vir.exe
命令行："C:\Users\555\Desktop\VirusSamples_53\Samp(9).vir.exe"
风险动作：修改初始启动项
目标注册表：HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\*Spy Security SoftWares
操作类型：写入
数据内容："C:\ProgramData\Spy Security SoftWare_d5ab5_82127be1.exe"
用户操作：已阻止

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【9】2018-08-24 22:31:07,系统防御,注册表保护,Samp(9).vir.exe触犯注册表防护规则, 已阻止

操作者：C:\Users\555\Desktop\VirusSamples_53\Samp(9).vir.exe
命令行："C:\Users\555\Desktop\VirusSamples_53\Samp(9).vir.exe"
风险动作：修改启动项
目标注册表：HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\Spy Security SoftWares
操作类型：写入
数据内容："C:\ProgramData\Spy Security SoftWare_d5ab5_82127be1.exe"
用户操作：已阻止

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【10】2018-08-24 22:31:05,系统防御,注册表保护,Samp(44).vir.exe触犯注册表防护规则, 已阻止

操作者：C:\Users\555\Desktop\VirusSamples_53\Samp(44).vir.exe
命令行："C:\Users\555\Desktop\VirusSamples_53\Samp(44).vir.exe"
风险动作：修改初始启动项
目标注册表：HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\Taskmgr
操作类型：写入
数据内容："C:\Users\555\AppData\Roaming\Microsoft\Windows\Taskmgr.exe"
用户操作：已阻止

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【11】2018-08-24 22:31:03,系统防御,注册表保护,wiki.exe触犯注册表防护规则, 已阻止

操作者：C:\Users\555\AppData\Roaming\Wikimedia\wiki.exe
命令行："C:\Users\555\AppData\Roaming\Wikimedia\wiki.exe"
风险动作：修改启动项
目标注册表：HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\Google Chrome
操作类型：写入
数据内容：C:\Users\555\AppData\Roaming\Wikimedia\wiki.exe
用户操作：已阻止

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【12】2018-08-24 22:30:49,系统防御,注册表保护,Samp(9).vir.exe触犯注册表防护规则, 已允许

操作者：C:\Users\555\Desktop\VirusSamples_53\Samp(9).vir.exe
命令行："C:\Users\555\Desktop\VirusSamples_53\Samp(9).vir.exe"
风险动作：修改初始启动项
目标注册表：HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\*Spy Security SoftWare
操作类型：写入
数据内容："C:\Users\555\Desktop\VirusSamples_53\Samp(9).vir.exe"
用户操作：已允许

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【13】2018-08-24 22:30:42,系统防御,文件保护,Samp(44).vir.exe触犯文件防护规则, 已阻止

操作者：C:\Users\555\Desktop\VirusSamples_53\Samp(44).vir.exe
命令行："C:\Users\555\Desktop\VirusSamples_53\Samp(44).vir.exe"
风险动作：修改启动目录
目标文件：C:\Users\555\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Taskmgr.lnk
用户操作：已阻止

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【14】2018-08-24 22:30:41,病毒防御,恶意行为监控,发现未知病毒BEHAV:Trojan/Injector.F!2, 已清除

病毒名称：BEHAV:Trojan/Injector.F!2
文件路径：C:\Users\555\AppData\Roaming\Microsoft\Vkurik\vkuri.exe
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【15】2018-08-24 22:30:23,系统防御,注册表保护,Samp(9).vir.exe触犯注册表防护规则, 已阻止

操作者：C:\Users\555\Desktop\VirusSamples_53\Samp(9).vir.exe
命令行："C:\Users\555\Desktop\VirusSamples_53\Samp(9).vir.exe"
风险动作：修改启动项
目标注册表：HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\Spy Security SoftWare
操作类型：写入
数据内容："C:\Users\555\Desktop\VirusSamples_53\Samp(9).vir.exe"
用户操作：已阻止

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【16】2018-08-24 22:29:54,系统防御,文件保护,Samp(10).vir.exe触犯文件防护规则, 已阻止

操作者：C:\Users\555\Desktop\VirusSamples_53\Samp(10).vir.exe
命令行："C:\Users\555\Desktop\VirusSamples_53\Samp(10).vir.exe"
风险动作：修改启动目录
目标文件：C:\Users\555\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MmSfMCOwf90rGiy.lnk
用户操作：已阻止

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【17】2018-08-24 22:29:38,病毒防御,恶意行为监控,发现未知病毒BEHAV:Trojan/Injector.F!2, 已清除

病毒名称：BEHAV:Trojan/Injector.F!2
文件路径：C:\Users\555\Desktop\VirusSamples_53\Samp(41).vir.exe
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【18】2018-08-24 22:26:22,病毒防御,病毒查杀,自定义扫描，发现0个风险项目

病毒库：2018-08-24 16:28
开始时间：2018-08-24 22:26
总计用时：00:00:01
扫描对象：27个
扫描文件：27个
发现风险：0个
已处理风险：0个
发现系统修复项：0个
处理系统修复项：0个

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【19】2018-08-24 22:26:09,病毒防御,病毒查杀,自定义扫描，发现0个风险项目

病毒库：2018-08-24 16:28
开始时间：2018-08-24 22:26
总计用时：00:00:01
扫描对象：27个
扫描文件：27个
发现风险：0个
已处理风险：0个
发现系统修复项：0个
处理系统修复项：0个

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【20】2018-08-24 22:26:02,病毒防御,病毒查杀,自定义扫描，发现7个风险项目

病毒库：2018-08-24 16:28
开始时间：2018-08-24 22:23
总计用时：00:01:43
扫描对象：178个
扫描文件：34个
发现风险：7个
已处理风险：7个
发现系统修复项：0个
处理系统修复项：0个

病毒详情

风险路径：C:\Users\555\Desktop\VirusSamples_53\Samp(39).vir, 病毒名：Ransom/Spora.b, 病毒ID：[fb9eb37c582978c0], 处理结果：已处理
风险路径：C:\Users\555\Desktop\VirusSamples_53\Samp(40).vir, 病毒名：Ransom/Cerber.a, 病毒ID：[86af584bd12f7902], 处理结果：已处理
风险路径：C:\Users\555\Desktop\VirusSamples_53\Samp(43).vir, 病毒名：Backdoor/Warer, 病毒ID：[9aea0b98cd84a679], 处理结果：已处理
风险路径：C:\Users\555\Desktop\VirusSamples_53\Samp(48).vir, 病毒名：HVM:Trojan/MalBehav.gen!E, 病毒ID：[8d1593ba2838fa52], 处理结果：已处理
风险路径：C:\Users\555\Desktop\VirusSamples_53\Samp(49).vir, 病毒名：Backdoor/Warer, 病毒ID：[9aea0b98cd84a679], 处理结果：已处理
风险路径：C:\Users\555\Desktop\VirusSamples_53\Samp(5).vir, 病毒名：Ransom/Tescrypt.a, 病毒ID：[eb03ba81ba3cab09], 处理结果：已处理
风险路径：C:\Users\555\Desktop\VirusSamples_53\Samp(50).vir, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：[b27d4294cde6a1ec], 处理结果：已处理

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【21】2018-08-24 22:25:07,病毒防御,文件实时监控,发现病毒Backdoor/Warer, 已忽略

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(49).vir
病毒名称：Backdoor/Warer
病毒ID：9AEA0B98CD84A679
用户操作：已忽略

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【22】2018-08-24 22:25:07,病毒防御,文件实时监控,发现病毒HVM:VirTool/Obfuscator.gen!A, 已忽略

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(50).vir
病毒名称：HVM:VirTool/Obfuscator.gen!A
病毒ID：B27D4294CDE6A1EC
用户操作：已忽略

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【23】2018-08-24 22:25:07,病毒防御,文件实时监控,发现病毒HVM:Trojan/MalBehav.gen!E, 已忽略

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(48).vir
病毒名称：HVM:Trojan/MalBehav.gen!E
病毒ID：8D1593BA2838FA52
用户操作：已忽略

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【24】2018-08-24 22:24:35,病毒防御,文件实时监控,发现病毒Backdoor/Warer, 已忽略

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(43).vir
病毒名称：Backdoor/Warer
病毒ID：9AEA0B98CD84A679
用户操作：已忽略

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【25】2018-08-24 22:24:22,病毒防御,文件实时监控,发现病毒Ransom/Cerber.a, 已忽略

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(40).vir
病毒名称：Ransom/Cerber.a
病毒ID：86AF584BD12F7902
用户操作：已忽略

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【26】2018-08-24 22:24:22,病毒防御,文件实时监控,发现病毒Ransom/Spora.b, 已忽略

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(39).vir
病毒名称：Ransom/Spora.b
病毒ID：FB9EB37C582978C0
用户操作：已忽略

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【27】2018-08-24 22:23:53,病毒防御,文件实时监控,发现病毒HVM:Trojan/Injector.a, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(36).vir
病毒名称：HVM:Trojan/Injector.a
病毒ID：1F561653F5B08C39
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【28】2018-08-24 22:23:47,病毒防御,文件实时监控,发现病毒TrojanSpy/Zbot.d, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(34).vir
病毒名称：TrojanSpy/Zbot.d
病毒ID：69E5337FA99789CE
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【29】2018-08-24 22:23:42,病毒防御,文件实时监控,发现病毒Ransom/Spora.b, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(33).vir
病毒名称：Ransom/Spora.b
病毒ID：FB9EB37C582978C0
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【30】2018-08-24 22:23:41,病毒防御,文件实时监控,发现病毒Backdoor/Warer, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(32).vir
病毒名称：Backdoor/Warer
病毒ID：9AEA0B98CD84A679
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【31】2018-08-24 22:23:35,病毒防御,文件实时监控,发现病毒HVM:Trojan/Injector.a, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(30).vir
病毒名称：HVM:Trojan/Injector.a
病毒ID：1F561653F5B08C39
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【32】2018-08-24 22:23:34,病毒防御,文件实时监控,发现病毒HVM:Trojan/Injector.gen!A, 已忽略

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(28).vir
病毒名称：HVM:Trojan/Injector.gen!A
病毒ID：CC4A875F53A5D678
用户操作：已忽略

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【33】2018-08-24 22:23:34,病毒防御,文件实时监控,发现病毒HVM:VirTool/Obfuscator.gen!A, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(29).vir
病毒名称：HVM:VirTool/Obfuscator.gen!A
病毒ID：B27D4294CDE6A1EC
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【34】2018-08-24 22:23:22,病毒防御,文件实时监控,发现病毒VirTool/Kovter.p, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(20).vir
病毒名称：VirTool/Kovter.p
病毒ID：E92BBF97494898D2
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【35】2018-08-24 22:23:22,病毒防御,文件实时监控,发现病毒HVM:Trojan/Injector.a, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(21).vir
病毒名称：HVM:Trojan/Injector.a
病毒ID：1F561653F5B08C39
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【36】2018-08-24 22:23:22,病毒防御,文件实时监控,发现病毒Ransom/Cerber.a, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(23).vir
病毒名称：Ransom/Cerber.a
病毒ID：86AF584BD12F7902
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【37】2018-08-24 22:23:22,病毒防御,文件实时监控,发现病毒VirTool/Obfuscator.az, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(24).vir
病毒名称：VirTool/Obfuscator.az
病毒ID：2A650151141422BA
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【38】2018-08-24 22:23:22,病毒防御,文件实时监控,发现病毒HVM:VirTool/Obfuscator.gen!A, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(25).vir
病毒名称：HVM:VirTool/Obfuscator.gen!A
病毒ID：B27D4294CDE6A1EC
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【39】2018-08-24 22:23:22,病毒防御,文件实时监控,发现病毒HVM:Trojan/MalBehav.gen!E, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(27).vir
病毒名称：HVM:Trojan/MalBehav.gen!E
病毒ID：8D1593BA2838FA52
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【40】2018-08-24 22:22:47,病毒防御,文件实时监控,发现病毒TrojanDownloader/Agent.oi, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(13).vir
病毒名称：TrojanDownloader/Agent.oi
病毒ID：ABF92493FE9DECC7
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【41】2018-08-24 22:22:47,病毒防御,文件实时监控,发现病毒HVM:VirTool/Obfuscator.gen!A, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(16).vir
病毒名称：HVM:VirTool/Obfuscator.gen!A
病毒ID：B27D4294CDE6A1EC
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【42】2018-08-24 22:22:29,病毒防御,文件实时监控,发现病毒Ransom/Cerber.l, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(11).vir
病毒名称：Ransom/Cerber.l
病毒ID：301F1635403B8B05
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【43】2018-08-24 22:22:24,病毒防御,文件实时监控,发现病毒VirTool/Kovter.p, 已清除

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(3).vir
病毒名称：VirTool/Kovter.p
病毒ID：E92BBF97494898D2
用户操作：已清除

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【44】2018-08-24 22:22:24,病毒防御,文件实时监控,发现病毒Ransom/Tescrypt.a, 已忽略

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(5).vir
病毒名称：Ransom/Tescrypt.a
病毒ID：EB03BA81BA3CAB09
用户操作：已忽略

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【45】2018-08-24 22:22:24,病毒防御,文件实时监控,发现病毒VirTool/Kovter.p, 已忽略

操作者：C:\Program Files (x86)\360\360zip\360zip.exe
病毒路径：C:\Users\555\Desktop\VirusSamples_53\Samp(3).vir
病毒名称：VirTool/Kovter.p
病毒ID：E92BBF97494898D2
用户操作：已忽略

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

【46】2018-08-24 22:19:31,其他,升级日志,手动升级成功，版本号：4.0.69.10

升级方式：手动升级
升级结果：成功
版本号：4.0.69.10
下载文件：
2018-08-24 22:19:31 C:\ProgramData\Huorong\Sysdiag\db\behav.db
2018-08-24 22:19:31 C:\ProgramData\Huorong\Sysdiag\db\malurl.db
2018-08-24 22:19:31 C:\ProgramData\Huorong\Sysdiag\virdb\prop.db
2018-08-24 22:19:31 C:\ProgramData\Huorong\Sysdiag\virdb\pset.db
2018-08-24 22:19:31 C:\ProgramData\Huorong\Sysdiag\virdb\troj.db
修改文件：
2018-08-24 22:19:31 C:\ProgramData\Huorong\Sysdiag\db\behav.db
2018-08-24 22:19:31 C:\ProgramData\Huorong\Sysdiag\db\malurl.db
2018-08-24 22:19:31 C:\ProgramData\Huorong\Sysdiag\virdb\prop.db
2018-08-24 22:19:31 C:\ProgramData\Huorong\Sysdiag\virdb\pset.db
2018-08-24 22:19:31 C:\ProgramData\Huorong\Sysdiag\virdb\troj.db

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

显示全部楼层 · 发表于 2018-8-24 22:29:23

AVIRA

时间：2018-08-24 22:10:19

扫描：50/50

08/24/2018,22-10-44 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(1).vir' 的“无误报”状态
08/24/2018,22-10-44 [INFO] 文件 'd:\downloads\virussamples_53\Samp(1).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = E0013B536441EFA2A6B4BA909A6795EF4C689CE02DDA8428B8705C483970A706
08/24/2018,22-10-44 [INFO] d:\downloads\virussamples_53\Samp(1).vir
08/24/2018,22-10-44 [INFO] [DETECTION] file contains 'TR/Crypt.XPACK.Gen4'
08/24/2018,22-10-44 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(10).vir' 的“无误报”状态
08/24/2018,22-10-44 [INFO] d:\downloads\virussamples_53\Samp(10).vir
08/24/2018,22-10-44 [INFO] [DETECTION] file contains 'HEUR/AGEN.1013488'
08/24/2018,22-10-45 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(11).vir' 的“无误报”状态
08/24/2018,22-10-45 [INFO] d:\downloads\virussamples_53\Samp(11).vir
08/24/2018,22-10-45 [INFO] [DETECTION] file contains 'HEUR/AGEN.1013735'
08/24/2018,22-10-56 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(12).vir' 的“无误报”状态
08/24/2018,22-10-56 [INFO] 文件 'd:\downloads\virussamples_53\Samp(12).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = 8BA9D504966EEAB767502A982EBC1EAB73396852D863B946E0EA4490491FDB87
08/24/2018,22-10-56 [INFO] d:\downloads\virussamples_53\Samp(12).vir
08/24/2018,22-10-56 [INFO] [DETECTION] file contains 'TR/Crypt.ZPACK.8ba9d5'
08/24/2018,22-10-56 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(13).vir' 的“无误报”状态
08/24/2018,22-10-56 [INFO] d:\downloads\virussamples_53\Samp(13).vir
08/24/2018,22-10-56 [INFO] [DETECTION] file contains 'TR/Crypt.ZPACK.116889'
08/24/2018,22-10-56 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(14).vir' 的“无误报”状态
08/24/2018,22-10-56 [INFO] d:\downloads\virussamples_53\Samp(14).vir
08/24/2018,22-10-56 [INFO] [DETECTION] file contains 'TR/AD.DridexDownloader.xlnte'
08/24/2018,22-10-57 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(15).vir' 的“无误报”状态
08/24/2018,22-10-57 [INFO] d:\downloads\virussamples_53\Samp(15).vir
08/24/2018,22-10-57 [INFO] [DETECTION] file contains 'TR/Crypt.XPACK.Gen'
08/24/2018,22-10-57 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(16).vir' 的“无误报”状态
08/24/2018,22-10-57 [INFO] d:\downloads\virussamples_53\Samp(16).vir
08/24/2018,22-10-57 [INFO] [DETECTION] file contains 'TR/Crypt.XPACK.Gen'
08/24/2018,22-10-57 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(17).vir' 的“无误报”状态
08/24/2018,22-10-57 [INFO] d:\downloads\virussamples_53\Samp(17).vir
08/24/2018,22-10-57 [INFO] [DETECTION] file contains 'TR/Crypt.ULPM.Gen'
08/24/2018,22-11-09 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(18).vir' 的“无误报”状态
08/24/2018,22-11-09 [INFO] 文件 'd:\downloads\virussamples_53\Samp(18).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = D222A4D7539B594A0E561EC589449A6F3AE0DD94487D146BDF45A1A4D846B3E4
08/24/2018,22-11-09 [INFO] d:\downloads\virussamples_53\Samp(18).vir
08/24/2018,22-11-09 [INFO] [DETECTION] file contains 'TR/Crypt.ZPACK.Gen2'
08/24/2018,22-11-23 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(19).vir' 的“无误报”状态
08/24/2018,22-11-23 [INFO] 文件 'd:\downloads\virussamples_53\Samp(19).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = 1339E8EEAD61CE4FF7E19E03B8426BE5EE16C15BFE7D6CD1AF4E33C0F5E68804
08/24/2018,22-11-23 [INFO] d:\downloads\virussamples_53\Samp(19).vir
08/24/2018,22-11-23 [INFO] [DETECTION] file contains 'TR/Battdil.1339e8'
08/24/2018,22-11-23 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(2).vir' 的“无误报”状态
08/24/2018,22-11-23 [INFO] d:\downloads\virussamples_53\Samp(2).vir
08/24/2018,22-11-23 [INFO] [DETECTION] file contains 'TR/Crypt.XPACK.Gen2'
08/24/2018,22-11-23 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(20).vir' 的“无误报”状态
08/24/2018,22-11-23 [INFO] d:\downloads\virussamples_53\Samp(20).vir
08/24/2018,22-11-23 [INFO] [DETECTION] file contains 'HEUR/AGEN.1027982'
08/24/2018,22-11-24 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(21).vir' 的“无误报”状态
08/24/2018,22-11-24 [INFO] d:\downloads\virussamples_53\Samp(21).vir
08/24/2018,22-11-24 [INFO] [DETECTION] file contains 'TR/Crypt.XPACK.Gen7'
08/24/2018,22-11-24 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(22).vir' 的“无误报”状态
08/24/2018,22-11-24 [INFO] d:\downloads\virussamples_53\Samp(22).vir
08/24/2018,22-11-24 [INFO] [DETECTION] file contains 'HEUR/AGEN.1022704'
08/24/2018,22-11-24 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(23).vir' 的“无误报”状态
08/24/2018,22-11-24 [INFO] d:\downloads\virussamples_53\Samp(23).vir
08/24/2018,22-11-24 [INFO] [DETECTION] file contains 'HEUR/AGEN.1020142'
08/24/2018,22-11-25 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(24).vir' 的“无误报”状态
08/24/2018,22-11-25 [INFO] d:\downloads\virussamples_53\Samp(24).vir
08/24/2018,22-11-25 [INFO] [DETECTION] file contains 'HEUR/AGEN.1022260'
08/24/2018,22-11-37 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(25).vir' 的“无误报”状态
08/24/2018,22-11-37 [INFO] 文件 'd:\downloads\virussamples_53\Samp(25).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = F3A510D52CC03515033C9DD0E28CE0A08E067DD44563142F43FC37E4CD64DF0B
08/24/2018,22-11-37 [INFO] d:\downloads\virussamples_53\Samp(25).vir
08/24/2018,22-11-37 [INFO] [DETECTION] file contains 'TR/Crypt.ZPACK.Gen8'
08/24/2018,22-11-56 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(26).vir' 的“无误报”状态
08/24/2018,22-11-56 [INFO] 文件 'd:\downloads\virussamples_53\Samp(26).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = 829018B0C2C92C8A2769FABA72CD859DDA6E5DC1C237F4AEC7418F8175923806
08/24/2018,22-11-56 [INFO] d:\downloads\virussamples_53\Samp(26).vir
08/24/2018,22-11-56 [INFO] [DETECTION] file contains 'TR/Crypt.ZPACK.829018'
08/24/2018,22-12-11 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(27).vir' 的“无误报”状态
08/24/2018,22-12-11 [INFO] 文件 'd:\downloads\virussamples_53\Samp(27).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = 9E6C3524A79762082CB26A060F37C7384DC00CC10EA9D5E6FFFD221FA6E57A74
08/24/2018,22-12-11 [INFO] d:\downloads\virussamples_53\Samp(27).vir
08/24/2018,22-12-11 [INFO] [DETECTION] file contains 'TR/Ransom.Locky.9e6c35'
08/24/2018,22-12-11 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(28).vir' 的“无误报”状态
08/24/2018,22-12-11 [INFO] d:\downloads\virussamples_53\Samp(28).vir
08/24/2018,22-12-11 [INFO] [DETECTION] file contains 'TR/Crypt.XPACK.Gen'
08/24/2018,22-12-30 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(29).vir' 的“无误报”状态
08/24/2018,22-12-30 [INFO] 文件 'd:\downloads\virussamples_53\Samp(29).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = A72C5F7BDBED6EB8B194219414DE20D1F0A31B8E013862DE45B96973E7AFEAA8
08/24/2018,22-12-30 [INFO] d:\downloads\virussamples_53\Samp(29).vir
08/24/2018,22-12-30 [INFO] [DETECTION] file contains 'TR/Dridex.a72c5f'
08/24/2018,22-12-30 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(3).vir' 的“无误报”状态
08/24/2018,22-12-30 [INFO] d:\downloads\virussamples_53\Samp(3).vir
08/24/2018,22-12-30 [INFO] [DETECTION] file contains 'HEUR/AGEN.1002504'
08/24/2018,22-12-30 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(30).vir' 的“无误报”状态
08/24/2018,22-12-30 [INFO] d:\downloads\virussamples_53\Samp(30).vir
08/24/2018,22-12-30 [INFO] [DETECTION] file contains 'TR/Kryptik.opoy'
08/24/2018,22-12-31 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(31).vir' 的“无误报”状态
08/24/2018,22-12-31 [INFO] d:\downloads\virussamples_53\Samp(31).vir
08/24/2018,22-12-31 [INFO] [DETECTION] file contains 'TR/AD.DridexDownloader.xlnte'
08/24/2018,22-12-31 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(32).vir' 的“无误报”状态
08/24/2018,22-12-31 [INFO] d:\downloads\virussamples_53\Samp(32).vir
08/24/2018,22-12-31 [INFO] [DETECTION] file contains 'TR/Crypt.ULPM.Gen'
08/24/2018,22-12-31 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(33).vir' 的“无误报”状态
08/24/2018,22-12-31 [INFO] d:\downloads\virussamples_53\Samp(33).vir
08/24/2018,22-12-31 [INFO] [DETECTION] file contains 'TR/Crypt.XPACK.Gen'
08/24/2018,22-12-32 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(34).vir' 的“无误报”状态
08/24/2018,22-12-32 [INFO] d:\downloads\virussamples_53\Samp(34).vir
08/24/2018,22-12-32 [INFO] [DETECTION] file contains 'HEUR/AGEN.1007733'
08/24/2018,22-12-32 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(35).vir' 的“无误报”状态
08/24/2018,22-12-32 [INFO] d:\downloads\virussamples_53\Samp(35).vir
08/24/2018,22-12-32 [INFO] [DETECTION] file contains 'TR/AD.DridexDownloader.xlnte'
08/24/2018,22-12-32 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(36).vir' 的“无误报”状态
08/24/2018,22-12-32 [INFO] d:\downloads\virussamples_53\Samp(36).vir
08/24/2018,22-12-32 [INFO] [DETECTION] file contains 'TR/Crypt.XPACK.Gen'
08/24/2018,22-12-33 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(37).vir' 的“无误报”状态
08/24/2018,22-12-33 [INFO] d:\downloads\virussamples_53\Samp(37).vir
08/24/2018,22-12-33 [INFO] [DETECTION] file contains 'TR/Crypt.ZPACK.Gen'
08/24/2018,22-12-33 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(38).vir' 的“无误报”状态
08/24/2018,22-12-33 [INFO] d:\downloads\virussamples_53\Samp(38).vir
08/24/2018,22-12-33 [INFO] [DETECTION] file contains 'TR/Injector.agsf'
08/24/2018,22-12-45 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(39).vir' 的“无误报”状态
08/24/2018,22-12-45 [INFO] 文件 'd:\downloads\virussamples_53\Samp(39).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = F14470A38B64EE00107B775E5185932CF980AEF2F8EEF10523A03442032BF89F
08/24/2018,22-12-45 [INFO] d:\downloads\virussamples_53\Samp(39).vir
08/24/2018,22-12-45 [INFO] [DETECTION] file contains 'TR/Crypt.ZPACK.Gen4'
08/24/2018,22-12-45 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(4).vir' 的“无误报”状态
08/24/2018,22-12-45 [INFO] d:\downloads\virussamples_53\Samp(4).vir
08/24/2018,22-12-45 [INFO] [DETECTION] file contains 'W32/Nimnul.D'
08/24/2018,22-12-45 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(40).vir' 的“无误报”状态
08/24/2018,22-12-45 [INFO] d:\downloads\virussamples_53\Samp(40).vir
08/24/2018,22-12-45 [INFO] [DETECTION] file contains 'HEUR/AGEN.1008630'
08/24/2018,22-13-04 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(41).vir' 的“无误报”状态
08/24/2018,22-13-04 [INFO] 文件 'd:\downloads\virussamples_53\Samp(41).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = 7C90CF6B56DFDDF941D97E24DDAD9A0532C9C79DBADE5D3A34EBD303675AC5BA
08/24/2018,22-13-04 [INFO] d:\downloads\virussamples_53\Samp(41).vir
08/24/2018,22-13-04 [INFO] [DETECTION] file contains 'TR/Crypt.XPACK.7c90cf'
08/24/2018,22-13-04 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(42).vir' 的“无误报”状态
08/24/2018,22-13-04 [INFO] d:\downloads\virussamples_53\Samp(42).vir
08/24/2018,22-13-04 [INFO] [DETECTION] file contains 'HEUR/AGEN.1007459'
08/24/2018,22-13-04 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(43).vir' 的“无误报”状态
08/24/2018,22-13-04 [INFO] d:\downloads\virussamples_53\Samp(43).vir
08/24/2018,22-13-04 [INFO] [DETECTION] file contains 'TR/Crypt.ZPACK.Gen2'
08/24/2018,22-13-05 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(44).vir' 的“无误报”状态
08/24/2018,22-13-05 [INFO] d:\downloads\virussamples_53\Samp(44).vir
08/24/2018,22-13-05 [INFO] [DETECTION] file contains 'TR/Crypt.XPACK.Gen'
08/24/2018,22-13-05 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(45).vir' 的“无误报”状态
08/24/2018,22-13-05 [INFO] d:\downloads\virussamples_53\Samp(45).vir
08/24/2018,22-13-05 [INFO] [DETECTION] file contains 'HEUR/AGEN.1013488'
08/24/2018,22-13-05 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(46).vir' 的“无误报”状态
08/24/2018,22-13-05 [INFO] d:\downloads\virussamples_53\Samp(46).vir
08/24/2018,22-13-05 [INFO] [DETECTION] file contains 'TR/Crypt.EPACK.Gen2'
08/24/2018,22-13-06 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(47).vir' 的“无误报”状态
08/24/2018,22-13-06 [INFO] d:\downloads\virussamples_53\Samp(47).vir
08/24/2018,22-13-06 [INFO] [DETECTION] file contains 'TR/Crypt.ULPM.Gen'
08/24/2018,22-13-06 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(48).vir' 的“无误报”状态
08/24/2018,22-13-06 [INFO] d:\downloads\virussamples_53\Samp(48).vir
08/24/2018,22-13-06 [INFO] [DETECTION] file contains 'HEUR/AGEN.1014779'
08/24/2018,22-13-07 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(49).vir' 的“无误报”状态
08/24/2018,22-13-07 [INFO] d:\downloads\virussamples_53\Samp(49).vir
08/24/2018,22-13-07 [INFO] [DETECTION] file contains 'TR/Crypt.ULPM.Gen'
08/24/2018,22-13-19 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(5).vir' 的“无误报”状态
08/24/2018,22-13-19 [INFO] 文件 'd:\downloads\virussamples_53\Samp(5).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = AC5BDC27E1A09A8C9F5539C026E7C0FD55DCDB18675F3859FFF97E2738927FC8
08/24/2018,22-13-19 [INFO] d:\downloads\virussamples_53\Samp(5).vir
08/24/2018,22-13-19 [INFO] [DETECTION] file contains 'HEUR/APC'
08/24/2018,22-13-32 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(50).vir' 的“无误报”状态
08/24/2018,22-13-32 [INFO] 文件 'd:\downloads\virussamples_53\Samp(50).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = DFE7BE56889D747227B232644E953534B488F55C216FE1B4582DE0216EAF0388
08/24/2018,22-13-32 [INFO] d:\downloads\virussamples_53\Samp(50).vir
08/24/2018,22-13-32 [INFO] [DETECTION] file contains 'HEUR/APC'
08/24/2018,22-13-51 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(6).vir' 的“无误报”状态
08/24/2018,22-13-51 [INFO] 文件 'd:\downloads\virussamples_53\Samp(6).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = C79B2A58345955C2496B7AE3C286F3C7EA86A26055DD43BF5161D8AAD21F6B3C
08/24/2018,22-13-51 [INFO] d:\downloads\virussamples_53\Samp(6).vir
08/24/2018,22-13-51 [INFO] [DETECTION] file contains 'TR/Crypt.ZPACK.Gen4'
08/24/2018,22-13-51 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(7).vir' 的“无误报”状态
08/24/2018,22-13-51 [INFO] d:\downloads\virussamples_53\Samp(7).vir
08/24/2018,22-13-51 [INFO] [DETECTION] file contains 'HEUR/AGEN.1013488'
08/24/2018,22-13-51 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(8).vir' 的“无误报”状态
08/24/2018,22-13-51 [INFO] d:\downloads\virussamples_53\Samp(8).vir
08/24/2018,22-13-51 [INFO] [DETECTION] file contains 'HEUR/AGEN.1011321'
08/24/2018,22-14-04 [INFO] FP 报告文件 'd:\downloads\virussamples_53\Samp(9).vir' 的“无误报”状态
08/24/2018,22-14-04 [INFO] 文件 'd:\downloads\virussamples_53\Samp(9).vir' 已上传至 Protection Cloud 并已进行分析。 SHA256 = 61DFFC7BD8D7A730A24BAF5A608FE8C9BDC1D68F76B476DA8C3DE1A6C0E29EEF
08/24/2018,22-14-04 [INFO] d:\downloads\virussamples_53\Samp(9).vir
08/24/2018,22-14-04 [INFO] [DETECTION] file contains 'TR/Dropper.Gen'
08/24/2018,22-15-03 [INFO] repair.rdf loaded (version: 1.0.44.0)
08/24/2018,22-15-05 [INFO] Repair of Generic started.
08/24/2018,22-15-11 [INFO] Repair of Generic finished successfully.
08/24/2018,22-15-11 [INFO] Repair of TR/Crypt.XPACK.Gen4 started.
08/24/2018,22-15-27 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-15-27 [ERROR] Repair of TR/Crypt.XPACK.Gen4 failed.
08/24/2018,22-15-27 [INFO] d:\downloads\virussamples_53\Samp(1).vir
08/24/2018,22-15-27 [INFO] [ACTION] Clean
08/24/2018,22-15-27 [INFO] Repair of HEUR/AGEN.1013488 started.
08/24/2018,22-15-43 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-15-43 [ERROR] Repair of HEUR/AGEN.1013488 failed.
08/24/2018,22-15-43 [INFO] d:\downloads\virussamples_53\Samp(10).vir
08/24/2018,22-15-43 [INFO] [ACTION] Clean
08/24/2018,22-15-43 [INFO] Repair of HEUR/AGEN.1013735 started.
08/24/2018,22-15-58 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-15-58 [ERROR] Repair of HEUR/AGEN.1013735 failed.
08/24/2018,22-15-58 [INFO] d:\downloads\virussamples_53\Samp(11).vir
08/24/2018,22-15-58 [INFO] [ACTION] Clean
08/24/2018,22-15-58 [INFO] Repair of TR/Crypt.ZPACK.8ba9d5 started.
08/24/2018,22-16-14 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-16-14 [ERROR] Repair of TR/Crypt.ZPACK.8ba9d5 failed.
08/24/2018,22-16-14 [INFO] d:\downloads\virussamples_53\Samp(12).vir
08/24/2018,22-16-14 [INFO] [ACTION] Clean
08/24/2018,22-16-14 [INFO] Repair of TR/Crypt.ZPACK.116889 started.
08/24/2018,22-16-30 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-16-30 [ERROR] Repair of TR/Crypt.ZPACK.116889 failed.
08/24/2018,22-16-30 [INFO] d:\downloads\virussamples_53\Samp(13).vir
08/24/2018,22-16-30 [INFO] [ACTION] Clean
08/24/2018,22-16-30 [INFO] Repair of TR/AD.DridexDownloader.xlnte started.
08/24/2018,22-16-46 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-16-46 [ERROR] Repair of TR/AD.DridexDownloader.xlnte failed.
08/24/2018,22-16-46 [INFO] d:\downloads\virussamples_53\Samp(14).vir
08/24/2018,22-16-46 [INFO] [ACTION] Clean
08/24/2018,22-16-46 [INFO] Repair of TR/Crypt.XPACK.Gen started.
08/24/2018,22-17-02 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-17-02 [ERROR] Repair of TR/Crypt.XPACK.Gen failed.
08/24/2018,22-17-02 [INFO] d:\downloads\virussamples_53\Samp(15).vir
08/24/2018,22-17-02 [INFO] [ACTION] Clean
08/24/2018,22-17-02 [INFO] Repair of TR/Crypt.XPACK.Gen started.
08/24/2018,22-17-18 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-17-18 [ERROR] Repair of TR/Crypt.XPACK.Gen failed.
08/24/2018,22-17-18 [INFO] d:\downloads\virussamples_53\Samp(16).vir
08/24/2018,22-17-18 [INFO] [ACTION] Clean
08/24/2018,22-17-18 [INFO] Repair of TR/Crypt.ULPM.Gen started.
08/24/2018,22-17-33 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-17-33 [ERROR] Repair of TR/Crypt.ULPM.Gen failed.
08/24/2018,22-17-33 [INFO] d:\downloads\virussamples_53\Samp(17).vir
08/24/2018,22-17-33 [INFO] [ACTION] Clean
08/24/2018,22-17-33 [INFO] Repair of TR/Crypt.ZPACK.Gen2 started.
08/24/2018,22-17-49 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-17-49 [ERROR] Repair of TR/Crypt.ZPACK.Gen2 failed.
08/24/2018,22-17-49 [INFO] d:\downloads\virussamples_53\Samp(18).vir
08/24/2018,22-17-49 [INFO] [ACTION] Clean
08/24/2018,22-17-49 [INFO] Repair of TR/Battdil.1339e8 started.
08/24/2018,22-18-05 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-18-05 [ERROR] Repair of TR/Battdil.1339e8 failed.
08/24/2018,22-18-05 [INFO] d:\downloads\virussamples_53\Samp(19).vir
08/24/2018,22-18-05 [INFO] [ACTION] Clean
08/24/2018,22-18-05 [INFO] Repair of TR/Crypt.XPACK.Gen2 started.
08/24/2018,22-18-20 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-18-20 [ERROR] Repair of TR/Crypt.XPACK.Gen2 failed.
08/24/2018,22-18-20 [INFO] d:\downloads\virussamples_53\Samp(2).vir
08/24/2018,22-18-20 [INFO] [ACTION] Clean
08/24/2018,22-18-20 [INFO] Repair of HEUR/AGEN.1027982 started.
08/24/2018,22-18-36 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-18-36 [ERROR] Repair of HEUR/AGEN.1027982 failed.
08/24/2018,22-18-36 [INFO] d:\downloads\virussamples_53\Samp(20).vir
08/24/2018,22-18-36 [INFO] [ACTION] Clean
08/24/2018,22-18-36 [INFO] Repair of TR/Crypt.XPACK.Gen7 started.
08/24/2018,22-18-52 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-18-52 [ERROR] Repair of TR/Crypt.XPACK.Gen7 failed.
08/24/2018,22-18-52 [INFO] d:\downloads\virussamples_53\Samp(21).vir
08/24/2018,22-18-52 [INFO] [ACTION] Clean
08/24/2018,22-18-52 [INFO] Repair of HEUR/AGEN.1022704 started.
08/24/2018,22-19-08 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-19-08 [ERROR] Repair of HEUR/AGEN.1022704 failed.
08/24/2018,22-19-08 [INFO] d:\downloads\virussamples_53\Samp(22).vir
08/24/2018,22-19-08 [INFO] [ACTION] Clean
08/24/2018,22-19-08 [INFO] Repair of HEUR/AGEN.1020142 started.
08/24/2018,22-19-23 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-19-23 [ERROR] Repair of HEUR/AGEN.1020142 failed.
08/24/2018,22-19-23 [INFO] d:\downloads\virussamples_53\Samp(23).vir
08/24/2018,22-19-23 [INFO] [ACTION] Clean
08/24/2018,22-19-24 [INFO] Repair of HEUR/AGEN.1022260 started.
08/24/2018,22-19-39 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-19-39 [ERROR] Repair of HEUR/AGEN.1022260 failed.
08/24/2018,22-19-39 [INFO] d:\downloads\virussamples_53\Samp(24).vir
08/24/2018,22-19-39 [INFO] [ACTION] Clean
08/24/2018,22-19-39 [INFO] Repair of TR/Crypt.ZPACK.Gen8 started.
08/24/2018,22-19-55 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-19-55 [ERROR] Repair of TR/Crypt.ZPACK.Gen8 failed.
08/24/2018,22-19-55 [INFO] d:\downloads\virussamples_53\Samp(25).vir
08/24/2018,22-19-55 [INFO] [ACTION] Clean
08/24/2018,22-19-55 [INFO] Repair of TR/Crypt.ZPACK.829018 started.
08/24/2018,22-20-11 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-20-11 [ERROR] Repair of TR/Crypt.ZPACK.829018 failed.
08/24/2018,22-20-11 [INFO] d:\downloads\virussamples_53\Samp(26).vir
08/24/2018,22-20-11 [INFO] [ACTION] Clean
08/24/2018,22-20-11 [INFO] Repair of TR/Ransom.Locky.9e6c35 started.
08/24/2018,22-20-27 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-20-27 [ERROR] Repair of TR/Ransom.Locky.9e6c35 failed.
08/24/2018,22-20-27 [INFO] d:\downloads\virussamples_53\Samp(27).vir
08/24/2018,22-20-27 [INFO] [ACTION] Clean
08/24/2018,22-20-27 [INFO] Repair of TR/Crypt.XPACK.Gen started.
08/24/2018,22-20-43 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-20-43 [ERROR] Repair of TR/Crypt.XPACK.Gen failed.
08/24/2018,22-20-43 [INFO] d:\downloads\virussamples_53\Samp(28).vir
08/24/2018,22-20-43 [INFO] [ACTION] Clean
08/24/2018,22-20-43 [INFO] Repair of TR/Dridex.a72c5f started.
08/24/2018,22-20-58 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-20-58 [ERROR] Repair of TR/Dridex.a72c5f failed.
08/24/2018,22-20-58 [INFO] d:\downloads\virussamples_53\Samp(29).vir
08/24/2018,22-20-58 [INFO] [ACTION] Clean
08/24/2018,22-20-58 [INFO] Repair of HEUR/AGEN.1002504 started.
08/24/2018,22-21-14 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-21-14 [ERROR] Repair of HEUR/AGEN.1002504 failed.
08/24/2018,22-21-14 [INFO] d:\downloads\virussamples_53\Samp(3).vir
08/24/2018,22-21-14 [INFO] [ACTION] Clean
08/24/2018,22-21-14 [INFO] Repair of TR/Kryptik.opoy started.
08/24/2018,22-21-30 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-21-30 [ERROR] Repair of TR/Kryptik.opoy failed.
08/24/2018,22-21-30 [INFO] d:\downloads\virussamples_53\Samp(30).vir
08/24/2018,22-21-30 [INFO] [ACTION] Clean
08/24/2018,22-21-30 [INFO] Repair of TR/AD.DridexDownloader.xlnte started.
08/24/2018,22-21-46 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-21-46 [ERROR] Repair of TR/AD.DridexDownloader.xlnte failed.
08/24/2018,22-21-46 [INFO] d:\downloads\virussamples_53\Samp(31).vir
08/24/2018,22-21-46 [INFO] [ACTION] Clean
08/24/2018,22-21-46 [INFO] Repair of TR/Crypt.ULPM.Gen started.
08/24/2018,22-22-01 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-22-01 [ERROR] Repair of TR/Crypt.ULPM.Gen failed.
08/24/2018,22-22-01 [INFO] d:\downloads\virussamples_53\Samp(32).vir
08/24/2018,22-22-01 [INFO] [ACTION] Clean
08/24/2018,22-22-01 [INFO] Repair of TR/Crypt.XPACK.Gen started.
08/24/2018,22-22-17 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-22-17 [ERROR] Repair of TR/Crypt.XPACK.Gen failed.
08/24/2018,22-22-17 [INFO] d:\downloads\virussamples_53\Samp(33).vir
08/24/2018,22-22-17 [INFO] [ACTION] Clean
08/24/2018,22-22-17 [INFO] Repair of HEUR/AGEN.1007733 started.
08/24/2018,22-22-33 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-22-33 [ERROR] Repair of HEUR/AGEN.1007733 failed.
08/24/2018,22-22-33 [INFO] d:\downloads\virussamples_53\Samp(34).vir
08/24/2018,22-22-33 [INFO] [ACTION] Clean
08/24/2018,22-22-33 [INFO] Repair of TR/AD.DridexDownloader.xlnte started.
08/24/2018,22-22-49 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-22-49 [ERROR] Repair of TR/AD.DridexDownloader.xlnte failed.
08/24/2018,22-22-49 [INFO] d:\downloads\virussamples_53\Samp(35).vir
08/24/2018,22-22-49 [INFO] [ACTION] Clean
08/24/2018,22-22-49 [INFO] Repair of TR/Crypt.XPACK.Gen started.
08/24/2018,22-23-05 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-23-05 [ERROR] Repair of TR/Crypt.XPACK.Gen failed.
08/24/2018,22-23-05 [INFO] d:\downloads\virussamples_53\Samp(36).vir
08/24/2018,22-23-05 [INFO] [ACTION] Clean
08/24/2018,22-23-05 [INFO] Repair of TR/Crypt.ZPACK.Gen started.
08/24/2018,22-23-20 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-23-20 [ERROR] Repair of TR/Crypt.ZPACK.Gen failed.
08/24/2018,22-23-20 [INFO] d:\downloads\virussamples_53\Samp(37).vir
08/24/2018,22-23-20 [INFO] [ACTION] Clean
08/24/2018,22-23-20 [INFO] Repair of TR/Injector.agsf started.
08/24/2018,22-23-36 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-23-36 [ERROR] Repair of TR/Injector.agsf failed.
08/24/2018,22-23-36 [INFO] d:\downloads\virussamples_53\Samp(38).vir
08/24/2018,22-23-36 [INFO] [ACTION] Clean
08/24/2018,22-23-36 [INFO] Repair of TR/Crypt.ZPACK.Gen4 started.
08/24/2018,22-23-52 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-23-52 [ERROR] Repair of TR/Crypt.ZPACK.Gen4 failed.
08/24/2018,22-23-52 [INFO] d:\downloads\virussamples_53\Samp(39).vir
08/24/2018,22-23-52 [INFO] [ACTION] Clean
08/24/2018,22-23-52 [INFO] Repair of W32/Nimnul.D started.
08/24/2018,22-24-04 [INFO] Repair of W32/Nimnul.D finished successfully.
08/24/2018,22-24-04 [INFO] d:\downloads\virussamples_53\Samp(4).vir
08/24/2018,22-24-04 [INFO] [ACTION] Clean
08/24/2018,22-24-04 [INFO] Repair of HEUR/AGEN.1008630 started.
08/24/2018,22-24-20 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-24-20 [ERROR] Repair of HEUR/AGEN.1008630 failed.
08/24/2018,22-24-20 [INFO] d:\downloads\virussamples_53\Samp(40).vir
08/24/2018,22-24-20 [INFO] [ACTION] Clean
08/24/2018,22-24-20 [INFO] Repair of TR/Crypt.XPACK.7c90cf started.
08/24/2018,22-24-36 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-24-36 [ERROR] Repair of TR/Crypt.XPACK.7c90cf failed.
08/24/2018,22-24-36 [INFO] d:\downloads\virussamples_53\Samp(41).vir
08/24/2018,22-24-36 [INFO] [ACTION] Clean
08/24/2018,22-24-36 [INFO] Repair of HEUR/AGEN.1007459 started.
08/24/2018,22-24-52 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-24-52 [ERROR] Repair of HEUR/AGEN.1007459 failed.
08/24/2018,22-24-52 [INFO] d:\downloads\virussamples_53\Samp(42).vir
08/24/2018,22-24-52 [INFO] [ACTION] Clean
08/24/2018,22-24-52 [INFO] Repair of TR/Crypt.ZPACK.Gen2 started.
08/24/2018,22-25-07 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-25-07 [ERROR] Repair of TR/Crypt.ZPACK.Gen2 failed.
08/24/2018,22-25-07 [INFO] d:\downloads\virussamples_53\Samp(43).vir
08/24/2018,22-25-07 [INFO] [ACTION] Clean
08/24/2018,22-25-07 [INFO] Repair of TR/Crypt.XPACK.Gen started.
08/24/2018,22-25-23 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-25-23 [ERROR] Repair of TR/Crypt.XPACK.Gen failed.
08/24/2018,22-25-23 [INFO] d:\downloads\virussamples_53\Samp(44).vir
08/24/2018,22-25-23 [INFO] [ACTION] Clean
08/24/2018,22-25-23 [INFO] Repair of HEUR/AGEN.1013488 started.
08/24/2018,22-25-39 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-25-39 [ERROR] Repair of HEUR/AGEN.1013488 failed.
08/24/2018,22-25-39 [INFO] d:\downloads\virussamples_53\Samp(45).vir
08/24/2018,22-25-39 [INFO] [ACTION] Clean
08/24/2018,22-25-39 [INFO] Repair of TR/Crypt.EPACK.Gen2 started.
08/24/2018,22-25-55 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-25-55 [ERROR] Repair of TR/Crypt.EPACK.Gen2 failed.
08/24/2018,22-25-55 [INFO] d:\downloads\virussamples_53\Samp(46).vir
08/24/2018,22-25-55 [INFO] [ACTION] Clean
08/24/2018,22-25-55 [INFO] Repair of TR/Crypt.ULPM.Gen started.
08/24/2018,22-26-11 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-26-11 [ERROR] Repair of TR/Crypt.ULPM.Gen failed.
08/24/2018,22-26-11 [INFO] d:\downloads\virussamples_53\Samp(47).vir
08/24/2018,22-26-11 [INFO] [ACTION] Clean
08/24/2018,22-26-11 [INFO] Repair of HEUR/AGEN.1014779 started.
08/24/2018,22-26-27 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-26-27 [ERROR] Repair of HEUR/AGEN.1014779 failed.
08/24/2018,22-26-27 [INFO] d:\downloads\virussamples_53\Samp(48).vir
08/24/2018,22-26-27 [INFO] [ACTION] Clean
08/24/2018,22-26-27 [INFO] Repair of TR/Crypt.ULPM.Gen started.
08/24/2018,22-26-43 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-26-43 [ERROR] Repair of TR/Crypt.ULPM.Gen failed.
08/24/2018,22-26-43 [INFO] d:\downloads\virussamples_53\Samp(49).vir
08/24/2018,22-26-43 [INFO] [ACTION] Clean
08/24/2018,22-26-43 [INFO] Repair of HEUR/APC started.
08/24/2018,22-26-58 [INFO] Repair of HEUR/APC finished successfully.
08/24/2018,22-26-58 [INFO] d:\downloads\virussamples_53\Samp(5).vir
08/24/2018,22-26-58 [INFO] [ACTION] Clean
08/24/2018,22-26-58 [INFO] Repair of HEUR/APC started.
08/24/2018,22-27-14 [INFO] Repair of HEUR/APC finished successfully.
08/24/2018,22-27-14 [INFO] d:\downloads\virussamples_53\Samp(50).vir
08/24/2018,22-27-14 [INFO] [ACTION] Clean
08/24/2018,22-27-14 [INFO] Repair of TR/Crypt.ZPACK.Gen4 started.
08/24/2018,22-27-30 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-27-30 [ERROR] Repair of TR/Crypt.ZPACK.Gen4 failed.
08/24/2018,22-27-30 [INFO] d:\downloads\virussamples_53\Samp(6).vir
08/24/2018,22-27-30 [INFO] [ACTION] Clean
08/24/2018,22-27-30 [INFO] Repair of HEUR/AGEN.1013488 started.
08/24/2018,22-27-46 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-27-46 [ERROR] Repair of HEUR/AGEN.1013488 failed.
08/24/2018,22-27-46 [INFO] d:\downloads\virussamples_53\Samp(7).vir
08/24/2018,22-27-46 [INFO] [ACTION] Clean
08/24/2018,22-27-46 [INFO] Repair of HEUR/AGEN.1011321 started.
08/24/2018,22-28-02 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-28-02 [ERROR] Repair of HEUR/AGEN.1011321 failed.
08/24/2018,22-28-02 [INFO] d:\downloads\virussamples_53\Samp(8).vir
08/24/2018,22-28-02 [INFO] [ACTION] Clean
08/24/2018,22-28-02 [INFO] Repair of TR/Dropper.Gen started.
08/24/2018,22-28-18 [ERROR] Error in calling script function Repair: Runtime error. Script file is invalid!
08/24/2018,22-28-18 [ERROR] Repair of TR/Dropper.Gen failed.
08/24/2018,22-28-18 [INFO] d:\downloads\virussamples_53\Samp(9).vir
08/24/2018,22-28-18 [INFO] [ACTION] Clean

---------------------------------------------------------

End of scan : 2018-08-24 22:28:18
Duration : 17m:58s:386ms

The scan has been done completely.

   1 Scanned directories
   43 Scanned archives
   50 Scanned files
   0 Skipped files
   0 Ignored files
   50 Detected files
   3 Infected files cleaned
   0 Warnings

---------------------------------------------------------

显示全部楼层 · 发表于 2018-8-24 22:30:40

本帖最后由 www-tekeze 于 2018-8-24 22:32 编辑

梦想起航. 发表于 2018-8-24 22:24
太差了，今天测昨天的那个0823，依旧是0，测一周前的，也杀不完

蛋定，金山和腾管(无BD) 也就这样了，用下百宝箱还成。。

江民也牺牲了。。。

显示全部楼层 · 发表于 2018-8-24 22:35:43

y3312068 发表于 2018-8-24 22:28
火绒扫描剩27个，稍后双击

剩27，那就是只kill 23X，主帖里我说了下，检出率下降为80%左右，应该扫出40个才对啊。

显示全部楼层 · 发表于 2018-8-24 22:47:49

瑞星rdm+ 36个
瑞星ml 30个
瑞星3.0本地引擎 24个
断网合计 ml+3.0  41个
rdm+补充  2个
总计  43个

显示全部楼层 · 发表于 2018-8-24 22:47:58

www-tekeze 发表于 2018-8-24 22:35
剩27，那就是只kill 23X，主帖里我说了下，检出率下降为80%左右，应该扫出40个才对啊。

更新完毕

显示全部楼层 · 发表于 2018-8-25 09:35:39

Emsisoft Anti-Malware  国内代{过}{滤}理版中文版 27/50 ，54%

Emsisoft Anti-Malware - 版本 2018.7
最后更新： 2018/8/25 8:50:04
发起者： dada-pc-PC\dada-pc
电脑名称： DADA-PC-PC
操作系统版本： Windows 7x64 Service Pack 1

扫描设置：

扫描方式：
对象： Rootkits, 内存, 恶意残留, C:\Users\dada-pc\Desktop\测试123\

检测流氓软件(PUPs)：开
扫描存档：开
扫描邮件档案：关
ADS数据流扫描：开
文件扩展名过滤：关
直接磁盘访问：关

扫描开始： 2018/8/25 9:31:37
C:\Users\dada-pc\Desktop\测试123\Samp(11).vir -> (NSIS o) -> lzma_solid_nsis0005    Trojan.RanSerKD.4151763 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(11).vir -> (heurC)    Zum.Ransom.NSIS.Cerber.1 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(13).vir -> (NSIS o) -> zlib_solid_nsis0003    Trojan.Dropper.XMO (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(1).vir    Trojan.TeslaCrypt.DK (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(10).vir    Trojan.Locky.BF (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(12).vir    Gen:Variant.Symmi.88997 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(16).vir    Gen:Trojan.Heur.RP.ymHfa4hzI8pc (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(14).vir    Gen:Variant.Ursu.9987 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(19).vir    Gen:Variant.Jaiks.5116 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(17).vir    Gen:Variant.Symmi.89111 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(23).vir    Trojan.RanSerKD.31180940 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(27).vir    Trojan.Agent.COHO (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(28).vir    Gen:Heur.ManBat.1 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(3).vir    Gen:Variant.Ursu.19853 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(31).vir    Gen:Variant.Ursu.9987 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(32).vir    Gen:Variant.Jaiko.3654 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(34).vir    Trojan.Agent.BEZW (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(35).vir    Gen:Variant.Ursu.9987 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(36).vir    Trojan.Agent.BGHD (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(37).vir    Generic.Nymaim.E.BBAD4D67 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(38).vir    Trojan.NSIS.Agent.BH (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(39).vir    Trojan.Zlob.2.Gen (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(4).vir    Generic.Nymaim.E.97091F94 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(33).vir    Gen:Variant.Razy.379315 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(42).vir    Gen:Variant.Ursu.12479 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(46).vir    Gen:Variant.Bredo.4 (B) [krnl.xmd]
C:\Users\dada-pc\Desktop\测试123\Samp(47).vir    Trojan.Agent.CHLO (B) [krnl.xmd]

扫描 1266
发现 27

扫描结束： 2018/8/25 9:31:48
扫描时间： 0:00:11

[病毒样本] 样本集奉上_53

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块