本帖最后由 静影沉璧 于 2019-3-1 23:15 编辑
Bitdefender Total Security 2019
Database:20190301 22:43
Scan 57X+Run 4X=61/67 91%
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_94f33773c739a285d89207ef66124f4d987fd5a7ca6def3a00b23a77d70c9cf2.exe=>(Dropped 0)=>(AutoIT Script)=>(unicode) AIT:Trojan.Nymeria.1770 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_ff4c5f6a1a5b68b956970751d56ee7905ec48ad39cc05416ee8ee958ecd0c40e.exe Trojan.GenericKD.31740323 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_8b693c1828f9ac95d35c53e2303edb699b0babd83cb7cd6adac938dccfa1ea68.exe Trojan.Agent.DQMX Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_e3e24dad84c3b10f151aec9c83085d0730d3b1821bede4282067ceb2f7ce7801.exe Gen:Variant.Strictor.182545 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_8008a8bc04360de923f469ef67d59b397c6f3e61af6ad7b1df2cbb11fb6666b6.exe Trojan.GenericKD.31739519 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_f3c27f7f1cb447c47d76a55acb59ec74f000078b0c0a42aa4e765a908d24aa1f.exe Trojan.GenericKD.41060231 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_732fedbfab68c51ba03101cb89a6b5bd607747ff936052e227f2f4b2ba59f13d.exe Trojan.Agent.DQOQ Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_488b1c8e9f691b656dbd58b33fe109dd2e76ffeb8f1fbe002751f5cd6ddca6b5.exe Trojan.GenericKD.31738410 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_f013f173360ca57816a0a92a8f01a3ca0c5229afa5f16d7c3a78a33ac4a7c3ab.exe Trojan.Agent.DQOQ Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_229fc00c602e1d1cbc8e996dbbdb2083e5b2a272705f8f69ca99c29d237658a0.exe Trojan.GenericKD.41061136 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3a1df9deda01395615469ad5575f75d46f0b6e73742b60922d6b5dc09c31968e.exe Gen:Variant.Razy.447766 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_e2e3fabbdec6961a764eb29fc6dc91863a0901740b7517494a01150587ed57d2.exe Trojan.GenericKD.31735245 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_120cdfbcb025ada491a35f0aebfa143730d8755cd67b8b4a7a701da592f822c7.exe Trojan.GenericKD.31737121 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_0cd324d96e9560bdc17600985fb360b662d53a98e98677ce64f3c08ee63ba054.exe Trojan.GenericKD.31739795 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_dd32a0dffa305adb3a55544d32e234ebba1d54d9881c9b76c4779a447cb64c1e.exe Trojan.GenericKD.31740207 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_002e9948ff593c09c16061cd02c676e99470b9386ba071de7cb8afc47157655a.exe Gen:Variant.Mikey.94331 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_d89778041a76276bc376228884e174870f324b87ff00360a67deea48f8fd97ba.exe Trojan.GenericKD.31739903 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_ac21afe2ad48ddb9951b3d91f1c186739770fd3f57b5a53a5e3b7cd36dad88fa.exe Gen:Variant.Razy.471988 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_61cee96961fd1bf9067c15d79f3c7ccde5b5b2e5b0b3a434a4952a2c5676219d.exe Trojan.GenericKD.31739475 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_bc4aa393b23725c17d9753a505eea326e15daeb2cc27439ecec9fce15265d9fe.exe Trojan.GenericKD.41061280 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_63a3642b99a1a73c680ce712da9e51062a0fb0c6e58dded855fa9439c7d99ae4.exe Trojan.GenericKD.31740280 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_daa799c96f4a58f638c8cc95972af37b39cae68601bc884812a9ceb725e759ff.exe Gen:Suspicious.Cloud.4.Jm1@aW1xtfli Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_2090edbf1bbdb4e47b0ac6d8757708c555f2466df9c2cd8da4583c321c8fb914.exe Trojan.GenericKD.31740471 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_331939e5948b99d1d39994b5878d5afb9ed5886c89824f38ed69fc85648e531a.exe Trojan.GenericKD.31739812 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_baf4aafd12414a635261c9ec47bdbf72bcfdc511bd314e1fd4bcebf013b43ab9.exe Trojan.GenericKD.41042208 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_45ea0b3cd2b5abc89a15bbe8ecb15f7418c8cf6645ab0b6e25501e954af40e97.exe Trojan.GenericKD.41057304 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_b54cd72e97842fc9312d72bd499ce5cc8df15f513fb5c15633c9b93acbd53030.exe Trojan.Inject.AUZ Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_ecd64cab9babd7360be9ebd0560050839ffb07c3e7a8a9fd2a6a83975b3555b3.exe Trojan.Agent.DQMX Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>(AutoIT r)=>D:\#?07K,A>DBK\#Stealer\Stealer\?52\Test_1\Loader.exe Trojan.GenericKD.31720482 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_c7a926261f058421a4961daaec6d6f23c65d83c849140c632385d4b4c17ead00.exe Gen:Variant.Midie.61070 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_56f4955605d1919b0999ce0a609fc72b5bc693c15a8da6c945f7a781cf8b9dcc.exe Trojan.GenericKD.31736384 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_a690ed4945ffbe14ddfd3b9088159a8f22917f1fb3a1f61d3d0292764b80963f.exe Trojan.GenericKD.31739115 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_94f33773c739a285d89207ef66124f4d987fd5a7ca6def3a00b23a77d70c9cf2.exe=>(Dropped 0)=>(AutoIT r)=>(AutoIT Script)=>(unicode) AIT:Trojan.Nymeria.1770 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_8ec053f1467708d8c35664d2443a1885c42a3f7612232cb4e8857a9fa0f13a88.exe Gen:Variant.Ulise.29013 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_2df9a9d394e07ec493ad372df04d942a4a219d14c27f7e68e63b68ef1284d7f0.exe=>(NSIS o)=>lzma_solid_nsis0000 Gen:Variant.Nemesis.17 Moved to Quarantine
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_a754e27d88f1a39bf4507aaa870381cedc688f265b8ff20956221272f51ed8c5.exe Trojan.GenericKD.41060772 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_a5dfef9ea9518a207295664c85f386683af0626a9432daf00e83271de0563a61.exe Gen:Variant.Midie.61062 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3e8f71eaf4bf65a72a9d9797d02fcc3f1d094b5feb2a9a7f46bac484a6e0d7b5.exe Trojan.GenericKD.41054033 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_ac5646e82fe91284e50cceb7c6eefb7e2dd2268bc3be7cac8bd954bc790e2265.exe Gen:Variant.Midie.61070 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_5b23fd625b5c8301230dc0750ec249f8b637410fb5dac7df882bc059e8551321.exe Gen:Variant.Midie.61062 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_7d9da897e4063627d2a8526c484bc7a448274cb16b9e38475fa0b43539bea3a7.exe Generic.MSIL.PasswordStealerA.6724DCEB Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_73542285e1a49f86c5b9da8edfe86d54c5ac59569373f8b3cb9df5bdbdd01b64.exe Trojan.GenericKD.31739500 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_08912cf4cd44789e9ef1b830804a2f01f571fad6a1e858296e4a5931a37d967f.exe Trojan.GenericKD.41059630 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_748d5515057b852edba1479b26d83166e6ede29266ef7d0840a994d78469c347.exe Trojan.GenericKD.31740366 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_1a52aa45405316a53a96c5af239a91d69a2841d4ba3b47ed25fc48068274d2a8.exe=>(Dropped 0)=>(AutoIT r)=>(AutoIT Script)=>(unicode) AIT:Trojan.Nymeria.219 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_65b108fc4049973bcdf4f45340459192cfd83c51434b9b73f34eb926c1eb18de.exe Trojan.GenericKD.41059880 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_732a688e619a0f755e0da9303135aa3360dca3098e113a758f8fa6505b7705c7.exe Trojan.GenericKD.31739575 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_e8b30564513377b4c0fe3e54c5a07ffb1320ea657ca6a0cee1b6b5d87974c610.exe=>(AutoIT r)=>(AutoIT Script)=>(unicode) AIT:Trojan.Nymeria.1772 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_5d93c9a2b66e82c49d978415f05b2ab14ecf755f124f3801de973c0a87747ed6.exe Gen:Variant.Barys.53474 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_5339882a3c129a965c07a910485ebd29cbf6aaf6901c0a09d442f955ffebb666.exe Trojan.GenericKD.31735109 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_a0d1f747570b228759b24ba1fc912278439fa75c24d414a8223a5f995421e0d3.exe Gen:Variant.Ursu.312572 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_60159c66c5bf6346e610a810a41e8070548e6086bdcb638085127410f6f67a7d.exe Trojan.GenericKD.41060127 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_1a52aa45405316a53a96c5af239a91d69a2841d4ba3b47ed25fc48068274d2a8.exe=>(AutoIT r)=>(AutoIT Script)=>(unicode) AIT:Trojan.Nymeria.219 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_6d111c86ee3dc25077ce1d90876a2f068bc82de6da823c4effef40bdea888456.exe Trojan.GenericKD.41057154 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>(AutoIT r)=>(AutoIT Script)=>(unicode) AIT:Trojan.Nymeria.1583 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_419af6e20a8ccb0a6dcb6ed609d856b1a6edf52c13505e3c95354d6e7c7afb71.exe Trojan.GenericKD.31737856 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3b4784aabbe2818c9914e9662d45b4d03af8e79fe423315f7299a51ea9d6b9fa.exe Gen:Suspicious.Cloud.1.pGW@aiWCjPb Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_854c493cb637ab01fc052b339930cee17eb47ae434580ec32e768a0974d2e0b4.exe=>(NSIS o)=>zlib_nsis0002 Trojan.GenericKD.41054049 Moved to Quarantine
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>(AutoIT r)=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>SplittedFiles.exe=>(AutoIT r)=>(AutoIT Script)=>(unicode) AIT:Trojan.Nymeria.1583 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>(AutoIT r)=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>SplittedFiles.exe=>(AutoIT r)=>D:\#?07K,A>DBK\#Stealer\Stealer\?52\Test_1\Loader.exe Trojan.GenericKD.31720482 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_1a52aa45405316a53a96c5af239a91d69a2841d4ba3b47ed25fc48068274d2a8.exe=>(Dropped 0)=>(AutoIT Script)=>(unicode) AIT:Trojan.Nymeria.219 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_17c1b8c5dc105c5489582a96e47d51e09d3e15d517e4229ae01b6d0cc52933ec.exe Trojan.GenericKD.41056350 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_2df9a9d394e07ec493ad372df04d942a4a219d14c27f7e68e63b68ef1284d7f0.exe=>(NSIS o)=>lzma_solid_nsis0003 Gen:Variant.Razy.467448 Moved to Quarantine
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3a78b524a99630d5c1e4422b0e4da4a3d97b339208a56b5c6e41fced1029d6c6.exe Gen:Variant.Ursu.312572 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>(AutoIT r)=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>SplittedFiles.exe=>(AutoIT r)=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>ToolBIT.exe=>(NSIS o)=>zlib_nsis0001=>(RAR Sfx o)=>1.exe Password-protected Not scanned(file was password-protected)
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>SplittedFiles.exe=>(AutoIT r)=>(AutoIT Script)=>(unicode) AIT:Trojan.Nymeria.1583 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>(AutoIT r)=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>SplittedFiles.exe=>(AutoIT Script)=>(unicode) AIT:Trojan.Nymeria.1583 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>SplittedFiles.exe=>(AutoIT r)=>D:\#?07K,A>DBK\#Stealer\Stealer\?52\Test_1\Loader.exe Trojan.GenericKD.31720482 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>(AutoIT r)=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>SplittedFiles.exe=>D:\#?07K,A>DBK\#Stealer\Stealer\?52\Test_1\Loader.exe Trojan.GenericKD.31720482 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>SplittedFiles.exe=>(AutoIT r)=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>ToolBIT.exe=>(NSIS o)=>zlib_nsis0001=>(RAR Sfx o)=>1.exe Password-protected Not scanned(file was password-protected)
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>(AutoIT r)=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>SplittedFiles.exe=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>ToolBIT.exe=>(NSIS o)=>zlib_nsis0001=>(RAR Sfx o)=>1.exe Password-protected Not scanned(file was password-protected)
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>(AutoIT Script)=>(unicode) AIT:Trojan.Nymeria.1583 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>D:\#?07K,A>DBK\#Stealer\Stealer\?52\Test_1\Loader.exe Trojan.GenericKD.31720482 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>SplittedFiles.exe=>(AutoIT Script)=>(unicode) AIT:Trojan.Nymeria.1583 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>SplittedFiles.exe=>D:\#?07K,A>DBK\#Stealer\Stealer\?52\Test_1\Loader.exe Trojan.GenericKD.31720482 Deleted
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3feada980237e605429c0eac41cbcab442727b207d1d6ce39d8e12daf608da76.exe=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>SplittedFiles.exe=>D:=>#?07K,A>DBK=>#Stealer=>Stealer=>?52=>Test_1=>ToolBIT.exe=>(NSIS o)=>zlib_nsis0001=>(RAR Sfx o)=>1.exe Password-protected Not scanned(file was password-protected)
- C:\Users\Joseph\Desktop\20190301\Kafan_Sample_3ad3f118ed2d7d50c25ad1e0ffa2c54c7f769b68fb5e98013f50bb5b6d2ff1c4.exe Gen:Suspicious.Cloud.8.uG0@a0nH0Uki
- Kafan_Sample_4338bf0330dff0e353c4a4a9974c85130dce719c437684a6612ef8561243f8b7
- C:\Users\Joseph\AppData\Roaming\3.exe is infected with Gen:Variant.Ransom.Fantom.4
- C:\Users\Joseph\AppData\Roaming\2.exe is infected with Trojan.GenericKDZ.53050
- C:\Users\Joseph\AppData\Roaming\1.exe is infected with Gen:Variant.Ulise.29003
复制代码
|