搜索
楼主: 00006666
收起左侧

[病毒样本] 测试样本包 419X

  [复制链接]
Nocria
发表于 5 天前 | 显示全部楼层
本帖最后由 Nocria 于 2022-1-15 19:07 编辑

IKARUS - 208/419


本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
xiaobao233
发表于 5 天前 | 显示全部楼层
火绒(扫描599x????)(仅扫描不双击)



本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
Shake2333
发表于 5 天前 | 显示全部楼层
McAfee

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
东南大学
发表于 5 天前 | 显示全部楼层
本帖最后由 东南大学 于 2022-1-15 20:36 编辑

更新病毒库多kill 9x
  1. "c:\Downloads\20220115\419x\019.exe" infected with Trojan.Siggen16.33460 - deleted
  2. "c:\Downloads\20220115\419x\043.exe" infected with Trojan.Siggen16.33379 - deleted
  3. "c:\Downloads\20220115\419x\081.exe" infected with Trojan.Siggen16.33346 - deleted
  4. "c:\Downloads\20220115\419x\107.exe" infected with Trojan.PWS.Siggen3.10442 - deleted
  5. "c:\Downloads\20220115\419x\121.exe" infected with Trojan.Siggen16.33460 - deleted
  6. "c:\Downloads\20220115\419x\147.exe" infected with Trojan.Siggen16.33377 - deleted
  7. "c:\Downloads\20220115\419x\156.exe" infected with Trojan.Siggen16.33460 - deleted
  8. "c:\Downloads\20220115\419x\189.exe" infected with Trojan.PWS.Vidar.17 - deleted
  9. "c:\Downloads\20220115\419x\226.exe" infected with Trojan.PWS.Siggen3.10441 - deleted
复制代码



大蜘蛛扫描Kill 346x,剩余73x(其中56x小红伞扫描可杀)
  1. "c:\Downloads\20220115\419x\001.xlsb" - deleted
  2. "c:\Downloads\20220115\419x\001.xlsb/xl/macrosheets/sheet1.bin" - infected
  3. "c:\Downloads\20220115\419x\001.xlsb/xl/macrosheets/sheet1.bin" infected with X97M.DownLoader.848
  4. "c:\Downloads\20220115\419x\002.xlsb" - deleted
  5. "c:\Downloads\20220115\419x\002.xlsb/xl/macrosheets/sheet1.bin" - infected
  6. "c:\Downloads\20220115\419x\002.xlsb/xl/macrosheets/sheet1.bin" infected with X97M.DownLoader.848
  7. "c:\Downloads\20220115\419x\003.xlsb" - deleted
  8. "c:\Downloads\20220115\419x\003.xlsb/xl/macrosheets/sheet1.bin" - infected
  9. "c:\Downloads\20220115\419x\003.xlsb/xl/macrosheets/sheet1.bin" infected with X97M.DownLoader.848
  10. "c:\Downloads\20220115\419x\004.xlsb" - deleted
  11. "c:\Downloads\20220115\419x\004.xlsb/xl/macrosheets/sheet1.bin" - infected
  12. "c:\Downloads\20220115\419x\004.xlsb/xl/macrosheets/sheet1.bin" infected with X97M.DownLoader.848
  13. "c:\Downloads\20220115\419x\005.dll" infected with Trojan.Emotet.1141 - deleted
  14. "c:\Downloads\20220115\419x\006.dll" infected with Trojan.Emotet.1141 - deleted
  15. "c:\Downloads\20220115\419x\007.dll" infected with Trojan.Emotet.1141 - deleted
  16. "c:\Downloads\20220115\419x\008.dll" infected with Trojan.Emotet.1141 - deleted
  17. "c:\Downloads\20220115\419x\009.dll" infected with Trojan.Emotet.1141 - deleted
  18. "c:\Downloads\20220115\419x\010.dll" infected with Trojan.Emotet.1141 - deleted
  19. "c:\Downloads\20220115\419x\011.dll" infected with Trojan.Emotet.1141 - deleted
  20. "c:\Downloads\20220115\419x\012.dll" infected with Trojan.Emotet.1141 - deleted
  21. "c:\Downloads\20220115\419x\013.dll" infected with Trojan.Emotet.1141 - deleted
  22. "c:\Downloads\20220115\419x\014.dll" infected with Trojan.Emotet.1141 - deleted
  23. "c:\Downloads\20220115\419x\015.dll" infected with Trojan.Emotet.1141 - deleted
  24. "c:\Downloads\20220115\419x\016.exe" is hacktool program Tool.BtcMine.2239 - deleted
  25. "c:\Downloads\20220115\419x\017.dll" infected with Trojan.Emotet.1141 - deleted
  26. "c:\Downloads\20220115\419x\018.exe" infected with Trojan.Fakealert.59687 - deleted
  27. "c:\Downloads\20220115\419x\020.dll" infected with Trojan.Emotet.1141 - deleted
  28. "c:\Downloads\20220115\419x\021.dll" infected with Trojan.Emotet.1141 - deleted
  29. "c:\Downloads\20220115\419x\022.exe" - deleted
  30. "c:\Downloads\20220115\419x\022.exe/v.exe" - infected
  31. "c:\Downloads\20220115\419x\022.exe/v.exe" infected with Trojan.PWS.Siggen3.8311
  32. "c:\Downloads\20220115\419x\022.exe/x.exe" - infected
  33. "c:\Downloads\20220115\419x\022.exe/x.exe" infected with Trojan.InjectNET.14
  34. "c:\Downloads\20220115\419x\023.dll" infected with Trojan.Emotet.1141 - deleted
  35. "c:\Downloads\20220115\419x\024.dll" infected with Trojan.Emotet.1141 - deleted
  36. "c:\Downloads\20220115\419x\025.dll" infected with Trojan.Emotet.1141 - deleted
  37. "c:\Downloads\20220115\419x\026.dll" infected with Trojan.Emotet.1141 - deleted
  38. "c:\Downloads\20220115\419x\028.dll" infected with Trojan.Emotet.1141 - deleted
  39. "c:\Downloads\20220115\419x\029.dll" infected with Trojan.Emotet.1141 - deleted
  40. "c:\Downloads\20220115\419x\030.dll" infected with Trojan.Emotet.1141 - deleted
  41. "c:\Downloads\20220115\419x\031.dll" infected with Trojan.Emotet.1141 - deleted
  42. "c:\Downloads\20220115\419x\032.exe" is hacktool program Tool.BtcMine.2239 - deleted
  43. "c:\Downloads\20220115\419x\033.dll" infected with Trojan.Emotet.1141 - deleted
  44. "c:\Downloads\20220115\419x\034.dll" infected with Trojan.Emotet.1141 - deleted
  45. "c:\Downloads\20220115\419x\035.dll" infected with Trojan.Emotet.1141 - deleted
  46. "c:\Downloads\20220115\419x\036.exe" is hacktool program Tool.BtcMine.2235 - deleted
  47. "c:\Downloads\20220115\419x\037.dll" infected with Trojan.Emotet.1141 - deleted
  48. "c:\Downloads\20220115\419x\038.dll" infected with Trojan.Emotet.1141 - deleted
  49. "c:\Downloads\20220115\419x\039.dll" infected with Trojan.Emotet.1141 - deleted
  50. "c:\Downloads\20220115\419x\040.dll" infected with Trojan.Emotet.1141 - deleted
  51. "c:\Downloads\20220115\419x\041.dll" infected with Trojan.Emotet.1141 - deleted
  52. "c:\Downloads\20220115\419x\044.dll" infected with Trojan.Emotet.1141 - deleted
  53. "c:\Downloads\20220115\419x\045.exe" infected with Trojan.PWS.Siggen3.10430 - deleted
  54. "c:\Downloads\20220115\419x\046.dll" infected with Trojan.Emotet.1141 - deleted
  55. "c:\Downloads\20220115\419x\047.dll" infected with Trojan.Emotet.1141 - deleted
  56. "c:\Downloads\20220115\419x\048.dll" infected with Trojan.Emotet.1141 - deleted
  57. "c:\Downloads\20220115\419x\049.dll" infected with Trojan.Emotet.1141 - deleted
  58. "c:\Downloads\20220115\419x\050.exe" is hacktool program Tool.BtcMine.2239 - deleted
  59. "c:\Downloads\20220115\419x\051.dll" infected with Trojan.Emotet.1141 - deleted
  60. "c:\Downloads\20220115\419x\052.dll" infected with Trojan.Emotet.1141 - deleted
  61. "c:\Downloads\20220115\419x\053.dll" infected with Trojan.Emotet.1141 - deleted
  62. "c:\Downloads\20220115\419x\054.dll" infected with Trojan.Emotet.1141 - deleted
  63. "c:\Downloads\20220115\419x\055.dll" infected with Trojan.Emotet.1141 - deleted
  64. "c:\Downloads\20220115\419x\056.dll" infected with Trojan.Emotet.1141 - deleted
  65. "c:\Downloads\20220115\419x\057.dll" infected with Trojan.Emotet.1141 - deleted
  66. "c:\Downloads\20220115\419x\058.dll" infected with Trojan.Emotet.1141 - deleted
  67. "c:\Downloads\20220115\419x\059.exe" infected with Trojan.PWS.Stealer.31749 - deleted
  68. "c:\Downloads\20220115\419x\060.dll" infected with Trojan.Emotet.1141 - deleted
  69. "c:\Downloads\20220115\419x\061.dll" infected with Trojan.Emotet.1141 - deleted
  70. "c:\Downloads\20220115\419x\062.dll" infected with Trojan.Emotet.1141 - deleted
  71. "c:\Downloads\20220115\419x\063.dll" infected with Trojan.Emotet.1141 - deleted
  72. "c:\Downloads\20220115\419x\064.dll" infected with Trojan.Emotet.1141 - deleted
  73. "c:\Downloads\20220115\419x\065.dll" infected with Trojan.Emotet.1141 - deleted
  74. "c:\Downloads\20220115\419x\066.dll" infected with Trojan.Emotet.1141 - deleted
  75. "c:\Downloads\20220115\419x\067.exe" infected with Trojan.Siggen16.33274 - deleted
  76. "c:\Downloads\20220115\419x\068.dll" infected with Trojan.Emotet.1141 - deleted
  77. "c:\Downloads\20220115\419x\069.dll" infected with Trojan.Emotet.1141 - deleted
  78. "c:\Downloads\20220115\419x\070.dll" infected with Trojan.Emotet.1141 - deleted
  79. "c:\Downloads\20220115\419x\071.dll" infected with Trojan.Emotet.1141 - deleted
  80. "c:\Downloads\20220115\419x\072.exe" infected with Trojan.Fakealert.59687 - deleted
  81. "c:\Downloads\20220115\419x\073.dll" infected with Trojan.Emotet.1141 - deleted
  82. "c:\Downloads\20220115\419x\074.dll" infected with Trojan.Emotet.1141 - deleted
  83. "c:\Downloads\20220115\419x\075.dll" infected with Trojan.Emotet.1141 - deleted
  84. "c:\Downloads\20220115\419x\076.dll" infected with Trojan.Emotet.1141 - deleted
  85. "c:\Downloads\20220115\419x\077.dll" infected with Trojan.Emotet.1141 - deleted
  86. "c:\Downloads\20220115\419x\078.dll" infected with Trojan.Emotet.1141 - deleted
  87. "c:\Downloads\20220115\419x\079.exe" infected with Trojan.Siggen16.33315 - deleted
  88. "c:\Downloads\20220115\419x\080.dll" infected with Trojan.Emotet.1141 - deleted
  89. "c:\Downloads\20220115\419x\082.dll" infected with Trojan.Emotet.1141 - deleted
  90. "c:\Downloads\20220115\419x\083.dll" infected with Trojan.Emotet.1141 - deleted
  91. "c:\Downloads\20220115\419x\084.dll" infected with Trojan.Emotet.1141 - deleted
  92. "c:\Downloads\20220115\419x\085.dll" infected with Trojan.Emotet.1141 - deleted
  93. "c:\Downloads\20220115\419x\086.dll" infected with Trojan.Emotet.1141 - deleted
  94. "c:\Downloads\20220115\419x\087.dll" infected with Trojan.Emotet.1141 - deleted
  95. "c:\Downloads\20220115\419x\088.dll" infected with Trojan.Emotet.1141 - deleted
  96. "c:\Downloads\20220115\419x\089.dll" infected with Trojan.Emotet.1141 - deleted
  97. "c:\Downloads\20220115\419x\091.dll" infected with Trojan.Emotet.1141 - deleted
  98. "c:\Downloads\20220115\419x\092.exe" is hacktool program Tool.BtcMine.2235 - deleted
  99. "c:\Downloads\20220115\419x\094.dll" infected with Trojan.Emotet.1141 - deleted
  100. "c:\Downloads\20220115\419x\095.dll" infected with Trojan.Emotet.1141 - deleted
  101. "c:\Downloads\20220115\419x\096.dll" infected with Trojan.Emotet.1141 - deleted
  102. "c:\Downloads\20220115\419x\097.exe" infected with Trojan.PWS.Stealer.31749 - deleted
  103. "c:\Downloads\20220115\419x\098.dll" infected with Trojan.Emotet.1141 - deleted
  104. "c:\Downloads\20220115\419x\099.dll" infected with Trojan.Emotet.1141 - deleted
  105. "c:\Downloads\20220115\419x\100.dll" infected with Trojan.Emotet.1141 - deleted
  106. "c:\Downloads\20220115\419x\101.dll" infected with Trojan.Emotet.1141 - deleted
  107. "c:\Downloads\20220115\419x\102.exe" infected with Trojan.Fakealert.59687 - deleted
  108. "c:\Downloads\20220115\419x\103.exe" infected with Trojan.Siggen16.33226 - deleted
  109. "c:\Downloads\20220115\419x\104.exe" infected with Trojan.Fakealert.59687 - deleted
  110. "c:\Downloads\20220115\419x\106.exe" infected with Trojan.Fakealert.59687 - deleted
  111. "c:\Downloads\20220115\419x\108.exe" infected with Trojan.PWS.Vidar.17 - deleted
  112. "c:\Downloads\20220115\419x\109.dll" infected with Trojan.Emotet.1141 - deleted
  113. "c:\Downloads\20220115\419x\110.dll" infected with Trojan.Emotet.1141 - deleted
  114. "c:\Downloads\20220115\419x\111.dll" infected with Trojan.Emotet.1141 - deleted
  115. "c:\Downloads\20220115\419x\112.dll" infected with Trojan.Emotet.1141 - deleted
  116. "c:\Downloads\20220115\419x\113.dll" infected with Trojan.Emotet.1141 - deleted
  117. "c:\Downloads\20220115\419x\114.dll" infected with Trojan.Emotet.1141 - deleted
  118. "c:\Downloads\20220115\419x\115.dll" infected with Trojan.Emotet.1141 - deleted
  119. "c:\Downloads\20220115\419x\116.exe" infected with Trojan.Fakealert.59687 - deleted
  120. "c:\Downloads\20220115\419x\117.dll" infected with Trojan.Emotet.1141 - deleted
  121. "c:\Downloads\20220115\419x\118.dll" infected with Trojan.Emotet.1141 - deleted
  122. "c:\Downloads\20220115\419x\119.exe" infected with Trojan.Fakealert.59687 - deleted
  123. "c:\Downloads\20220115\419x\120.dll" infected with Trojan.Emotet.1141 - deleted
  124. "c:\Downloads\20220115\419x\122.dll" infected with Trojan.Emotet.1141 - deleted
  125. "c:\Downloads\20220115\419x\123.dll" infected with Trojan.Emotet.1141 - deleted
  126. "c:\Downloads\20220115\419x\124.dll" infected with Trojan.Emotet.1141 - deleted
  127. "c:\Downloads\20220115\419x\125.dll" infected with Trojan.Emotet.1141 - deleted
  128. "c:\Downloads\20220115\419x\126.exe" infected with Trojan.Fakealert.59687 - deleted
  129. "c:\Downloads\20220115\419x\127.dll" infected with Trojan.Emotet.1141 - deleted
  130. "c:\Downloads\20220115\419x\128.dll" infected with Trojan.Emotet.1141 - deleted
  131. "c:\Downloads\20220115\419x\129.dll" infected with Trojan.Emotet.1141 - deleted
  132. "c:\Downloads\20220115\419x\130.dll" infected with Trojan.Emotet.1141 - deleted
  133. "c:\Downloads\20220115\419x\131.dll" infected with Trojan.Emotet.1141 - deleted
  134. "c:\Downloads\20220115\419x\132.dll" infected with Trojan.Emotet.1141 - deleted
  135. "c:\Downloads\20220115\419x\133.dll" infected with Trojan.Emotet.1141 - deleted
  136. "c:\Downloads\20220115\419x\134.dll" infected with Trojan.Emotet.1141 - deleted
  137. "c:\Downloads\20220115\419x\135.dll" infected with Trojan.Emotet.1141 - deleted
  138. "c:\Downloads\20220115\419x\136.dll" infected with Trojan.Emotet.1141 - deleted
  139. "c:\Downloads\20220115\419x\137.dll" infected with Trojan.Emotet.1141 - deleted
  140. "c:\Downloads\20220115\419x\138.dll" infected with Trojan.Emotet.1141 - deleted
  141. "c:\Downloads\20220115\419x\139.dll" infected with Trojan.Emotet.1141 - deleted
  142. "c:\Downloads\20220115\419x\140.dll" infected with Trojan.Emotet.1141 - deleted
  143. "c:\Downloads\20220115\419x\141.dll" infected with Trojan.Emotet.1141 - deleted
  144. "c:\Downloads\20220115\419x\142.dll" infected with Trojan.Emotet.1141 - deleted
  145. "c:\Downloads\20220115\419x\143.dll" infected with Trojan.Emotet.1141 - deleted
  146. "c:\Downloads\20220115\419x\144.dll" infected with Trojan.Emotet.1141 - deleted
  147. "c:\Downloads\20220115\419x\145.dll" infected with Trojan.Emotet.1141 - deleted
  148. "c:\Downloads\20220115\419x\146.dll" infected with Trojan.Emotet.1141 - deleted
  149. "c:\Downloads\20220115\419x\148.dll" infected with Trojan.Emotet.1141 - deleted
  150. "c:\Downloads\20220115\419x\149.dll" infected with Trojan.Emotet.1141 - deleted
  151. "c:\Downloads\20220115\419x\150.exe" infected with Trojan.Siggen16.33323 - deleted
  152. "c:\Downloads\20220115\419x\151.dll" infected with Trojan.Emotet.1141 - deleted
  153. "c:\Downloads\20220115\419x\152.dll" infected with Trojan.Emotet.1141 - deleted
  154. "c:\Downloads\20220115\419x\153.dll" infected with Trojan.Emotet.1141 - deleted
  155. "c:\Downloads\20220115\419x\154.dll" infected with Trojan.Emotet.1141 - deleted
  156. "c:\Downloads\20220115\419x\155.dll" infected with Trojan.Emotet.1141 - deleted
  157. "c:\Downloads\20220115\419x\157.exe" infected with Trojan.Siggen16.33307 - deleted
  158. "c:\Downloads\20220115\419x\158.exe" infected with Trojan.Fakealert.59687 - deleted
  159. "c:\Downloads\20220115\419x\159.exe" is hacktool program Tool.BtcMine.2239 - deleted
  160. "c:\Downloads\20220115\419x\160.exe" infected with Trojan.Siggen16.33284 - deleted
  161. "c:\Downloads\20220115\419x\161.dll" infected with Trojan.Emotet.1141 - deleted
  162. "c:\Downloads\20220115\419x\162.dll" infected with Trojan.Emotet.1141 - deleted
  163. "c:\Downloads\20220115\419x\163.exe" infected with Trojan.Fakealert.59687 - deleted
  164. "c:\Downloads\20220115\419x\164.dll" infected with Trojan.Emotet.1141 - deleted
  165. "c:\Downloads\20220115\419x\165.dll" infected with Trojan.Emotet.1141 - deleted
  166. "c:\Downloads\20220115\419x\166.dll" infected with Trojan.Emotet.1141 - deleted
  167. "c:\Downloads\20220115\419x\167.exe" infected with Trojan.Siggen16.33323 - deleted
  168. "c:\Downloads\20220115\419x\168.dll" infected with Trojan.Emotet.1141 - deleted
  169. "c:\Downloads\20220115\419x\169.dll" infected with Trojan.Emotet.1141 - deleted
  170. "c:\Downloads\20220115\419x\170.dll" infected with Trojan.Emotet.1141 - deleted
  171. "c:\Downloads\20220115\419x\171.dll" infected with Trojan.Emotet.1141 - deleted
  172. "c:\Downloads\20220115\419x\172.exe" is hacktool program Tool.BtcMine.2239 - deleted
  173. "c:\Downloads\20220115\419x\173.exe" infected with Trojan.Siggen16.33309 - deleted
  174. "c:\Downloads\20220115\419x\174.dll" infected with Trojan.Emotet.1141 - deleted
  175. "c:\Downloads\20220115\419x\175.dll" infected with Trojan.Emotet.1141 - deleted
  176. "c:\Downloads\20220115\419x\176.exe" is hacktool program Tool.BtcMine.2235 - deleted
  177. "c:\Downloads\20220115\419x\177.exe" infected with Trojan.Fakealert.59687 - deleted
  178. "c:\Downloads\20220115\419x\178.dll" infected with Trojan.Emotet.1141 - deleted
  179. "c:\Downloads\20220115\419x\179.exe" infected with Trojan.PWS.Siggen3.10429 - deleted
  180. "c:\Downloads\20220115\419x\180.dll" infected with Trojan.Emotet.1141 - deleted
  181. "c:\Downloads\20220115\419x\181.exe" infected with Trojan.Siggen16.33229 - deleted
  182. "c:\Downloads\20220115\419x\182.dll" infected with Trojan.Emotet.1141 - deleted
  183. "c:\Downloads\20220115\419x\183.dll" infected with Trojan.Emotet.1141 - deleted
  184. "c:\Downloads\20220115\419x\184.exe" is hacktool program Tool.BtcMine.2239 - deleted
  185. "c:\Downloads\20220115\419x\185.dll" infected with Trojan.Emotet.1141 - deleted
  186. "c:\Downloads\20220115\419x\186.dll" infected with Trojan.Emotet.1141 - deleted
  187. "c:\Downloads\20220115\419x\187.dll" infected with Trojan.Emotet.1141 - deleted
  188. "c:\Downloads\20220115\419x\188.dll" infected with Trojan.Emotet.1141 - deleted
  189. "c:\Downloads\20220115\419x\190.dll" infected with Trojan.Emotet.1141 - deleted
  190. "c:\Downloads\20220115\419x\191.dll" infected with Trojan.Emotet.1141 - deleted
  191. "c:\Downloads\20220115\419x\192.dll" infected with Trojan.Emotet.1141 - deleted
  192. "c:\Downloads\20220115\419x\193.exe" is hacktool program Tool.BtcMine.2239 - deleted
  193. "c:\Downloads\20220115\419x\194.dll" infected with Trojan.Emotet.1141 - deleted
  194. "c:\Downloads\20220115\419x\195.dll" infected with Trojan.Emotet.1141 - deleted
  195. "c:\Downloads\20220115\419x\196.dll" infected with Trojan.Emotet.1141 - deleted
  196. "c:\Downloads\20220115\419x\197.dll" infected with Trojan.Emotet.1141 - deleted
  197. "c:\Downloads\20220115\419x\198.dll" infected with Trojan.Emotet.1141 - deleted
  198. "c:\Downloads\20220115\419x\199.dll" infected with Trojan.Emotet.1141 - deleted
  199. "c:\Downloads\20220115\419x\200.dll" infected with Trojan.Emotet.1141 - deleted
  200. "c:\Downloads\20220115\419x\201.exe" infected with Trojan.PWS.Stealer.31811 - deleted
  201. "c:\Downloads\20220115\419x\202.dll" infected with Trojan.Emotet.1141 - deleted
  202. "c:\Downloads\20220115\419x\203.dll" infected with Trojan.Emotet.1141 - deleted
  203. "c:\Downloads\20220115\419x\204.dll" infected with Trojan.Emotet.1141 - deleted
  204. "c:\Downloads\20220115\419x\205.dll" infected with Trojan.Emotet.1141 - deleted
  205. "c:\Downloads\20220115\419x\207.dll" infected with Trojan.Emotet.1141 - deleted
  206. "c:\Downloads\20220115\419x\208.dll" infected with Trojan.Emotet.1141 - deleted
  207. "c:\Downloads\20220115\419x\209.dll" infected with Trojan.Emotet.1141 - deleted
  208. "c:\Downloads\20220115\419x\210.dll" infected with Trojan.Emotet.1141 - deleted
  209. "c:\Downloads\20220115\419x\211.dll" infected with Trojan.Emotet.1141 - deleted
  210. "c:\Downloads\20220115\419x\212.dll" infected with Trojan.Emotet.1141 - deleted
  211. "c:\Downloads\20220115\419x\213.exe" infected with Trojan.PWS.Siggen3.10435 - deleted
  212. "c:\Downloads\20220115\419x\214.dll" infected with Trojan.Emotet.1141 - deleted
  213. "c:\Downloads\20220115\419x\215.dll" infected with Trojan.Emotet.1141 - deleted
  214. "c:\Downloads\20220115\419x\216.dll" infected with Trojan.Emotet.1141 - deleted
  215. "c:\Downloads\20220115\419x\217.dll" infected with Trojan.Emotet.1141 - deleted
  216. "c:\Downloads\20220115\419x\218.dll" infected with Trojan.Emotet.1141 - deleted
  217. "c:\Downloads\20220115\419x\219.exe" infected with Trojan.Siggen16.33308 - deleted
  218. "c:\Downloads\20220115\419x\220.dll" infected with Trojan.Emotet.1141 - deleted
  219. "c:\Downloads\20220115\419x\221.dll" infected with Trojan.Emotet.1141 - deleted
  220. "c:\Downloads\20220115\419x\222.dll" infected with Trojan.Emotet.1141 - deleted
  221. "c:\Downloads\20220115\419x\223.dll" infected with Trojan.Emotet.1141 - deleted
  222. "c:\Downloads\20220115\419x\224.dll" infected with Trojan.Emotet.1141 - deleted
  223. "c:\Downloads\20220115\419x\225.dll" infected with Trojan.Emotet.1141 - deleted
  224. "c:\Downloads\20220115\419x\227.dll" infected with Trojan.Emotet.1141 - deleted
  225. "c:\Downloads\20220115\419x\228.dll" infected with Trojan.Emotet.1141 - deleted
  226. "c:\Downloads\20220115\419x\229.dll" infected with Trojan.Emotet.1141 - deleted
  227. "c:\Downloads\20220115\419x\230.exe" infected with Trojan.PWS.Siggen3.10432 - deleted
  228. "c:\Downloads\20220115\419x\231.dll" infected with Trojan.Emotet.1141 - deleted
  229. "c:\Downloads\20220115\419x\232.dll" infected with Trojan.Emotet.1141 - deleted
  230. "c:\Downloads\20220115\419x\233.dll" infected with Trojan.Emotet.1141 - deleted
  231. "c:\Downloads\20220115\419x\234.dll" infected with Trojan.Emotet.1141 - deleted
  232. "c:\Downloads\20220115\419x\235.dll" infected with Trojan.Emotet.1141 - deleted
  233. "c:\Downloads\20220115\419x\236.dll" infected with Trojan.Emotet.1141 - deleted
  234. "c:\Downloads\20220115\419x\237.dll" infected with Trojan.Emotet.1141 - deleted
  235. "c:\Downloads\20220115\419x\238.dll" infected with Trojan.Emotet.1141 - deleted
  236. "c:\Downloads\20220115\419x\239.xlsb" - deleted
  237. "c:\Downloads\20220115\419x\239.xlsb/xl/macrosheets/sheet1.bin" - infected
  238. "c:\Downloads\20220115\419x\239.xlsb/xl/macrosheets/sheet1.bin" infected with X97M.DownLoader.873
  239. "c:\Downloads\20220115\419x\240.xlsb" - deleted
  240. "c:\Downloads\20220115\419x\240.xlsb/xl/macrosheets/sheet1.bin" - infected
  241. "c:\Downloads\20220115\419x\240.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  242. "c:\Downloads\20220115\419x\241.xlsb" - deleted
  243. "c:\Downloads\20220115\419x\241.xlsb/xl/macrosheets/sheet1.bin" - infected
  244. "c:\Downloads\20220115\419x\241.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  245. "c:\Downloads\20220115\419x\242.xlsb" - deleted
  246. "c:\Downloads\20220115\419x\242.xlsb/xl/macrosheets/sheet1.bin" - infected
  247. "c:\Downloads\20220115\419x\242.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  248. "c:\Downloads\20220115\419x\243.xlsb" - deleted
  249. "c:\Downloads\20220115\419x\243.xlsb/xl/macrosheets/sheet1.bin" - infected
  250. "c:\Downloads\20220115\419x\243.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  251. "c:\Downloads\20220115\419x\244.xlsb" - deleted
  252. "c:\Downloads\20220115\419x\244.xlsb/xl/macrosheets/sheet1.bin" - infected
  253. "c:\Downloads\20220115\419x\244.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  254. "c:\Downloads\20220115\419x\245.xlsb" - deleted
  255. "c:\Downloads\20220115\419x\245.xlsb/xl/macrosheets/sheet1.bin" - infected
  256. "c:\Downloads\20220115\419x\245.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  257. "c:\Downloads\20220115\419x\246.xlsb" - deleted
  258. "c:\Downloads\20220115\419x\246.xlsb/xl/macrosheets/sheet1.bin" - infected
  259. "c:\Downloads\20220115\419x\246.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  260. "c:\Downloads\20220115\419x\247.xlsb" - deleted
  261. "c:\Downloads\20220115\419x\247.xlsb/xl/macrosheets/sheet1.bin" - infected
  262. "c:\Downloads\20220115\419x\247.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  263. "c:\Downloads\20220115\419x\248.xlsb" - deleted
  264. "c:\Downloads\20220115\419x\248.xlsb/xl/macrosheets/sheet1.bin" - infected
  265. "c:\Downloads\20220115\419x\248.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  266. "c:\Downloads\20220115\419x\249.xlsb" - deleted
  267. "c:\Downloads\20220115\419x\249.xlsb/xl/macrosheets/sheet1.bin" - infected
  268. "c:\Downloads\20220115\419x\249.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  269. "c:\Downloads\20220115\419x\250.xlsb" - deleted
  270. "c:\Downloads\20220115\419x\250.xlsb/xl/macrosheets/sheet1.bin" - infected
  271. "c:\Downloads\20220115\419x\250.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  272. "c:\Downloads\20220115\419x\251.xlsb" - deleted
  273. "c:\Downloads\20220115\419x\251.xlsb/xl/macrosheets/sheet1.bin" - infected
  274. "c:\Downloads\20220115\419x\251.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  275. "c:\Downloads\20220115\419x\252.xlsb" - deleted
  276. "c:\Downloads\20220115\419x\252.xlsb/xl/macrosheets/sheet1.bin" - infected
  277. "c:\Downloads\20220115\419x\252.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  278. "c:\Downloads\20220115\419x\253.xlsb" - deleted
  279. "c:\Downloads\20220115\419x\253.xlsb/xl/macrosheets/sheet1.bin" - infected
  280. "c:\Downloads\20220115\419x\253.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  281. "c:\Downloads\20220115\419x\254.xlsb" - deleted
  282. "c:\Downloads\20220115\419x\254.xlsb/xl/macrosheets/sheet1.bin" - infected
  283. "c:\Downloads\20220115\419x\254.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  284. "c:\Downloads\20220115\419x\255.xlsb" - deleted
  285. "c:\Downloads\20220115\419x\255.xlsb/xl/macrosheets/sheet1.bin" - infected
  286. "c:\Downloads\20220115\419x\255.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  287. "c:\Downloads\20220115\419x\256.xlsb" - deleted
  288. "c:\Downloads\20220115\419x\256.xlsb/xl/macrosheets/sheet1.bin" - infected
  289. "c:\Downloads\20220115\419x\256.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  290. "c:\Downloads\20220115\419x\257.xlsb" - deleted
  291. "c:\Downloads\20220115\419x\257.xlsb/xl/macrosheets/sheet1.bin" - infected
  292. "c:\Downloads\20220115\419x\257.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  293. "c:\Downloads\20220115\419x\258.xlsb" - deleted
  294. "c:\Downloads\20220115\419x\258.xlsb/xl/macrosheets/sheet1.bin" - infected
  295. "c:\Downloads\20220115\419x\258.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  296. "c:\Downloads\20220115\419x\259.xlsb" - deleted
  297. "c:\Downloads\20220115\419x\259.xlsb/xl/macrosheets/sheet1.bin" - infected
  298. "c:\Downloads\20220115\419x\259.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  299. "c:\Downloads\20220115\419x\260.xlsb" - deleted
  300. "c:\Downloads\20220115\419x\260.xlsb/xl/macrosheets/sheet1.bin" - infected
  301. "c:\Downloads\20220115\419x\260.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  302. "c:\Downloads\20220115\419x\261.xlsb" - deleted
  303. "c:\Downloads\20220115\419x\261.xlsb/xl/macrosheets/sheet1.bin" - infected
  304. "c:\Downloads\20220115\419x\261.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  305. "c:\Downloads\20220115\419x\262.xlsb" - deleted
  306. "c:\Downloads\20220115\419x\262.xlsb/xl/macrosheets/sheet1.bin" - infected
  307. "c:\Downloads\20220115\419x\262.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  308. "c:\Downloads\20220115\419x\263.xlsb" - deleted
  309. "c:\Downloads\20220115\419x\263.xlsb/xl/macrosheets/sheet1.bin" - infected
  310. "c:\Downloads\20220115\419x\263.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  311. "c:\Downloads\20220115\419x\264.xlsb" - deleted
  312. "c:\Downloads\20220115\419x\264.xlsb/xl/macrosheets/sheet1.bin" - infected
  313. "c:\Downloads\20220115\419x\264.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  314. "c:\Downloads\20220115\419x\265.xlsb" - deleted
  315. "c:\Downloads\20220115\419x\265.xlsb/xl/macrosheets/sheet1.bin" - infected
  316. "c:\Downloads\20220115\419x\265.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  317. "c:\Downloads\20220115\419x\266.xlsb" - deleted
  318. "c:\Downloads\20220115\419x\266.xlsb/xl/macrosheets/sheet1.bin" - infected
  319. "c:\Downloads\20220115\419x\266.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  320. "c:\Downloads\20220115\419x\267.xlsb" - deleted
  321. "c:\Downloads\20220115\419x\267.xlsb/xl/macrosheets/sheet1.bin" - infected
  322. "c:\Downloads\20220115\419x\267.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  323. "c:\Downloads\20220115\419x\268.xlsb" - deleted
  324. "c:\Downloads\20220115\419x\268.xlsb/xl/macrosheets/sheet1.bin" - infected
  325. "c:\Downloads\20220115\419x\268.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  326. "c:\Downloads\20220115\419x\269.xlsb" - deleted
  327. "c:\Downloads\20220115\419x\269.xlsb/xl/macrosheets/sheet1.bin" - infected
  328. "c:\Downloads\20220115\419x\269.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  329. "c:\Downloads\20220115\419x\270.xlsb" - deleted
  330. "c:\Downloads\20220115\419x\270.xlsb/xl/macrosheets/sheet1.bin" - infected
  331. "c:\Downloads\20220115\419x\270.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  332. "c:\Downloads\20220115\419x\271.xlsb" - deleted
  333. "c:\Downloads\20220115\419x\271.xlsb/xl/macrosheets/sheet1.bin" - infected
  334. "c:\Downloads\20220115\419x\271.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  335. "c:\Downloads\20220115\419x\272.xlsb" - deleted
  336. "c:\Downloads\20220115\419x\272.xlsb/xl/macrosheets/sheet1.bin" - infected
  337. "c:\Downloads\20220115\419x\272.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  338. "c:\Downloads\20220115\419x\273.xlsb" - deleted
  339. "c:\Downloads\20220115\419x\273.xlsb/xl/macrosheets/sheet1.bin" - infected
  340. "c:\Downloads\20220115\419x\273.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  341. "c:\Downloads\20220115\419x\274.xlsb" - deleted
  342. "c:\Downloads\20220115\419x\274.xlsb/xl/macrosheets/sheet1.bin" - infected
  343. "c:\Downloads\20220115\419x\274.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  344. "c:\Downloads\20220115\419x\275.xlsb" - deleted
  345. "c:\Downloads\20220115\419x\275.xlsb/xl/macrosheets/sheet1.bin" - infected
  346. "c:\Downloads\20220115\419x\275.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  347. "c:\Downloads\20220115\419x\276.xlsb" - deleted
  348. "c:\Downloads\20220115\419x\276.xlsb/xl/macrosheets/sheet1.bin" - infected
  349. "c:\Downloads\20220115\419x\276.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  350. "c:\Downloads\20220115\419x\277.xlsb" - deleted
  351. "c:\Downloads\20220115\419x\277.xlsb/xl/macrosheets/sheet1.bin" - infected
  352. "c:\Downloads\20220115\419x\277.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  353. "c:\Downloads\20220115\419x\278.xlsb" - deleted
  354. "c:\Downloads\20220115\419x\278.xlsb/xl/macrosheets/sheet1.bin" - infected
  355. "c:\Downloads\20220115\419x\278.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  356. "c:\Downloads\20220115\419x\279.xlsb" - deleted
  357. "c:\Downloads\20220115\419x\279.xlsb/xl/macrosheets/sheet1.bin" - infected
  358. "c:\Downloads\20220115\419x\279.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  359. "c:\Downloads\20220115\419x\280.xlsb" - deleted
  360. "c:\Downloads\20220115\419x\280.xlsb/xl/macrosheets/sheet1.bin" - infected
  361. "c:\Downloads\20220115\419x\280.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  362. "c:\Downloads\20220115\419x\281.xlsb" - deleted
  363. "c:\Downloads\20220115\419x\281.xlsb/xl/macrosheets/sheet1.bin" - infected
  364. "c:\Downloads\20220115\419x\281.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  365. "c:\Downloads\20220115\419x\282.xlsb" - deleted
  366. "c:\Downloads\20220115\419x\282.xlsb/xl/macrosheets/sheet1.bin" - infected
  367. "c:\Downloads\20220115\419x\282.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  368. "c:\Downloads\20220115\419x\283.xlsb" - deleted
  369. "c:\Downloads\20220115\419x\283.xlsb/xl/macrosheets/sheet1.bin" - infected
  370. "c:\Downloads\20220115\419x\283.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  371. "c:\Downloads\20220115\419x\284.xlsb" - deleted
  372. "c:\Downloads\20220115\419x\284.xlsb/xl/macrosheets/sheet1.bin" - infected
  373. "c:\Downloads\20220115\419x\284.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  374. "c:\Downloads\20220115\419x\285.xlsb" - deleted
  375. "c:\Downloads\20220115\419x\285.xlsb/xl/macrosheets/sheet1.bin" - infected
  376. "c:\Downloads\20220115\419x\285.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  377. "c:\Downloads\20220115\419x\286.xlsb" - deleted
  378. "c:\Downloads\20220115\419x\286.xlsb/xl/macrosheets/sheet1.bin" - infected
  379. "c:\Downloads\20220115\419x\286.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  380. "c:\Downloads\20220115\419x\287.xlsb" - deleted
  381. "c:\Downloads\20220115\419x\287.xlsb/xl/macrosheets/sheet1.bin" - infected
  382. "c:\Downloads\20220115\419x\287.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  383. "c:\Downloads\20220115\419x\288.xlsb" - deleted
  384. "c:\Downloads\20220115\419x\288.xlsb/xl/macrosheets/sheet1.bin" - infected
  385. "c:\Downloads\20220115\419x\288.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  386. "c:\Downloads\20220115\419x\289.xlsb" - deleted
  387. "c:\Downloads\20220115\419x\289.xlsb/xl/macrosheets/sheet1.bin" - infected
  388. "c:\Downloads\20220115\419x\289.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  389. "c:\Downloads\20220115\419x\290.xlsb" - deleted
  390. "c:\Downloads\20220115\419x\290.xlsb/xl/macrosheets/sheet1.bin" - infected
  391. "c:\Downloads\20220115\419x\290.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  392. "c:\Downloads\20220115\419x\291.xlsb" - deleted
  393. "c:\Downloads\20220115\419x\291.xlsb/xl/macrosheets/sheet1.bin" - infected
  394. "c:\Downloads\20220115\419x\291.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  395. "c:\Downloads\20220115\419x\292.xlsb" - deleted
  396. "c:\Downloads\20220115\419x\292.xlsb/xl/macrosheets/sheet1.bin" - infected
  397. "c:\Downloads\20220115\419x\292.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  398. "c:\Downloads\20220115\419x\293.xlsb" - deleted
  399. "c:\Downloads\20220115\419x\293.xlsb/xl/macrosheets/sheet1.bin" - infected
  400. "c:\Downloads\20220115\419x\293.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  401. "c:\Downloads\20220115\419x\294.xlsb" - deleted
  402. "c:\Downloads\20220115\419x\294.xlsb/xl/macrosheets/sheet1.bin" - infected
  403. "c:\Downloads\20220115\419x\294.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  404. "c:\Downloads\20220115\419x\295.xlsb" - deleted
  405. "c:\Downloads\20220115\419x\295.xlsb/xl/macrosheets/sheet1.bin" - infected
  406. "c:\Downloads\20220115\419x\295.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  407. "c:\Downloads\20220115\419x\296.xlsb" - deleted
  408. "c:\Downloads\20220115\419x\296.xlsb/xl/macrosheets/sheet1.bin" - infected
  409. "c:\Downloads\20220115\419x\296.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  410. "c:\Downloads\20220115\419x\297.xlsb" - deleted
  411. "c:\Downloads\20220115\419x\297.xlsb/xl/macrosheets/sheet1.bin" - infected
  412. "c:\Downloads\20220115\419x\297.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  413. "c:\Downloads\20220115\419x\298.xlsb" - deleted
  414. "c:\Downloads\20220115\419x\298.xlsb/xl/macrosheets/sheet1.bin" - infected
  415. "c:\Downloads\20220115\419x\298.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  416. "c:\Downloads\20220115\419x\299.xlsb" - deleted
  417. "c:\Downloads\20220115\419x\299.xlsb/xl/macrosheets/sheet1.bin" - infected
  418. "c:\Downloads\20220115\419x\299.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  419. "c:\Downloads\20220115\419x\300.xlsb" - deleted
  420. "c:\Downloads\20220115\419x\300.xlsb/xl/macrosheets/sheet1.bin" - infected
  421. "c:\Downloads\20220115\419x\300.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  422. "c:\Downloads\20220115\419x\301.xlsb" - deleted
  423. "c:\Downloads\20220115\419x\301.xlsb/xl/macrosheets/sheet1.bin" - infected
  424. "c:\Downloads\20220115\419x\301.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  425. "c:\Downloads\20220115\419x\302.xlsb" - deleted
  426. "c:\Downloads\20220115\419x\302.xlsb/xl/macrosheets/sheet1.bin" - infected
  427. "c:\Downloads\20220115\419x\302.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  428. "c:\Downloads\20220115\419x\303.xlsb" - deleted
  429. "c:\Downloads\20220115\419x\303.xlsb/xl/macrosheets/sheet1.bin" - infected
  430. "c:\Downloads\20220115\419x\303.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  431. "c:\Downloads\20220115\419x\304.xlsb" - deleted
  432. "c:\Downloads\20220115\419x\304.xlsb/xl/macrosheets/sheet1.bin" - infected
  433. "c:\Downloads\20220115\419x\304.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  434. "c:\Downloads\20220115\419x\305.xlsb" - deleted
  435. "c:\Downloads\20220115\419x\305.xlsb/xl/macrosheets/sheet1.bin" - infected
  436. "c:\Downloads\20220115\419x\305.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  437. "c:\Downloads\20220115\419x\306.xlsb" - deleted
  438. "c:\Downloads\20220115\419x\306.xlsb/xl/macrosheets/sheet1.bin" - infected
  439. "c:\Downloads\20220115\419x\306.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  440. "c:\Downloads\20220115\419x\307.xlsb" - deleted
  441. "c:\Downloads\20220115\419x\307.xlsb/xl/macrosheets/sheet1.bin" - infected
  442. "c:\Downloads\20220115\419x\307.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  443. "c:\Downloads\20220115\419x\308.xlsb" - deleted
  444. "c:\Downloads\20220115\419x\308.xlsb/xl/macrosheets/sheet1.bin" - infected
  445. "c:\Downloads\20220115\419x\308.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  446. "c:\Downloads\20220115\419x\309.xlsb" - deleted
  447. "c:\Downloads\20220115\419x\309.xlsb/xl/macrosheets/sheet1.bin" - infected
  448. "c:\Downloads\20220115\419x\309.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  449. "c:\Downloads\20220115\419x\310.xlsb" - deleted
  450. "c:\Downloads\20220115\419x\310.xlsb/xl/macrosheets/sheet1.bin" - infected
  451. "c:\Downloads\20220115\419x\310.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  452. "c:\Downloads\20220115\419x\311.xlsb" - deleted
  453. "c:\Downloads\20220115\419x\311.xlsb/xl/macrosheets/sheet1.bin" - infected
  454. "c:\Downloads\20220115\419x\311.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  455. "c:\Downloads\20220115\419x\312.xlsb" - deleted
  456. "c:\Downloads\20220115\419x\312.xlsb/xl/macrosheets/sheet1.bin" - infected
  457. "c:\Downloads\20220115\419x\312.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  458. "c:\Downloads\20220115\419x\313.xlsb" - deleted
  459. "c:\Downloads\20220115\419x\313.xlsb/xl/macrosheets/sheet1.bin" - infected
  460. "c:\Downloads\20220115\419x\313.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  461. "c:\Downloads\20220115\419x\314.xlsb" - deleted
  462. "c:\Downloads\20220115\419x\314.xlsb/xl/macrosheets/sheet1.bin" - infected
  463. "c:\Downloads\20220115\419x\314.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  464. "c:\Downloads\20220115\419x\315.xlsb" - deleted
  465. "c:\Downloads\20220115\419x\315.xlsb/xl/macrosheets/sheet1.bin" - infected
  466. "c:\Downloads\20220115\419x\315.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  467. "c:\Downloads\20220115\419x\316.xlsb" - deleted
  468. "c:\Downloads\20220115\419x\316.xlsb/xl/macrosheets/sheet1.bin" - infected
  469. "c:\Downloads\20220115\419x\316.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  470. "c:\Downloads\20220115\419x\317.xlsb" - deleted
  471. "c:\Downloads\20220115\419x\317.xlsb/xl/macrosheets/sheet1.bin" - infected
  472. "c:\Downloads\20220115\419x\317.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  473. "c:\Downloads\20220115\419x\318.xlsb" - deleted
  474. "c:\Downloads\20220115\419x\318.xlsb/xl/macrosheets/sheet1.bin" - infected
  475. "c:\Downloads\20220115\419x\318.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  476. "c:\Downloads\20220115\419x\319.xlsb" - deleted
  477. "c:\Downloads\20220115\419x\319.xlsb/xl/macrosheets/sheet1.bin" - infected
  478. "c:\Downloads\20220115\419x\319.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  479. "c:\Downloads\20220115\419x\320.xlsb" - deleted
  480. "c:\Downloads\20220115\419x\320.xlsb/xl/macrosheets/sheet1.bin" - infected
  481. "c:\Downloads\20220115\419x\320.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  482. "c:\Downloads\20220115\419x\321.xlsb" - deleted
  483. "c:\Downloads\20220115\419x\321.xlsb/xl/macrosheets/sheet1.bin" - infected
  484. "c:\Downloads\20220115\419x\321.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  485. "c:\Downloads\20220115\419x\322.xlsb" - deleted
  486. "c:\Downloads\20220115\419x\322.xlsb/xl/macrosheets/sheet1.bin" - infected
  487. "c:\Downloads\20220115\419x\322.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  488. "c:\Downloads\20220115\419x\323.xlsb" - deleted
  489. "c:\Downloads\20220115\419x\323.xlsb/xl/macrosheets/sheet1.bin" - infected
  490. "c:\Downloads\20220115\419x\323.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  491. "c:\Downloads\20220115\419x\324.xlsb" - deleted
  492. "c:\Downloads\20220115\419x\324.xlsb/xl/macrosheets/sheet1.bin" - infected
  493. "c:\Downloads\20220115\419x\324.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  494. "c:\Downloads\20220115\419x\325.xlsb" - deleted
  495. "c:\Downloads\20220115\419x\325.xlsb/xl/macrosheets/sheet1.bin" - infected
  496. "c:\Downloads\20220115\419x\325.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  497. "c:\Downloads\20220115\419x\326.xlsb" - deleted
  498. "c:\Downloads\20220115\419x\326.xlsb/xl/macrosheets/sheet1.bin" - infected
  499. "c:\Downloads\20220115\419x\326.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  500. "c:\Downloads\20220115\419x\327.xlsb" - deleted
  501. "c:\Downloads\20220115\419x\327.xlsb/xl/macrosheets/sheet1.bin" - infected
  502. "c:\Downloads\20220115\419x\327.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  503. "c:\Downloads\20220115\419x\328.xlsb" - deleted
  504. "c:\Downloads\20220115\419x\328.xlsb/xl/macrosheets/sheet1.bin" - infected
  505. "c:\Downloads\20220115\419x\328.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  506. "c:\Downloads\20220115\419x\329.xlsb" - deleted
  507. "c:\Downloads\20220115\419x\329.xlsb/xl/macrosheets/sheet1.bin" - infected
  508. "c:\Downloads\20220115\419x\329.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  509. "c:\Downloads\20220115\419x\330.xlsb" - deleted
  510. "c:\Downloads\20220115\419x\330.xlsb/xl/macrosheets/sheet1.bin" - infected
  511. "c:\Downloads\20220115\419x\330.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  512. "c:\Downloads\20220115\419x\331.xlsb" - deleted
  513. "c:\Downloads\20220115\419x\331.xlsb/xl/macrosheets/sheet1.bin" - infected
  514. "c:\Downloads\20220115\419x\331.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  515. "c:\Downloads\20220115\419x\332.xlsb" - deleted
  516. "c:\Downloads\20220115\419x\332.xlsb/xl/macrosheets/sheet1.bin" - infected
  517. "c:\Downloads\20220115\419x\332.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  518. "c:\Downloads\20220115\419x\333.xlsb" - deleted
  519. "c:\Downloads\20220115\419x\333.xlsb/xl/macrosheets/sheet1.bin" - infected
  520. "c:\Downloads\20220115\419x\333.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  521. "c:\Downloads\20220115\419x\334.xlsb" - deleted
  522. "c:\Downloads\20220115\419x\334.xlsb/xl/macrosheets/sheet1.bin" - infected
  523. "c:\Downloads\20220115\419x\334.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  524. "c:\Downloads\20220115\419x\335.xlsb" - deleted
  525. "c:\Downloads\20220115\419x\335.xlsb/xl/macrosheets/sheet1.bin" - infected
  526. "c:\Downloads\20220115\419x\335.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  527. "c:\Downloads\20220115\419x\336.xlsb" - deleted
  528. "c:\Downloads\20220115\419x\336.xlsb/xl/macrosheets/sheet1.bin" - infected
  529. "c:\Downloads\20220115\419x\336.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  530. "c:\Downloads\20220115\419x\337.xlsb" - deleted
  531. "c:\Downloads\20220115\419x\337.xlsb/xl/macrosheets/sheet1.bin" - infected
  532. "c:\Downloads\20220115\419x\337.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  533. "c:\Downloads\20220115\419x\338.xlsb" - deleted
  534. "c:\Downloads\20220115\419x\338.xlsb/xl/macrosheets/sheet1.bin" - infected
  535. "c:\Downloads\20220115\419x\338.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  536. "c:\Downloads\20220115\419x\339.xlsb" - deleted
  537. "c:\Downloads\20220115\419x\339.xlsb/xl/macrosheets/sheet1.bin" - infected
  538. "c:\Downloads\20220115\419x\339.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  539. "c:\Downloads\20220115\419x\340.xlsb" - deleted
  540. "c:\Downloads\20220115\419x\340.xlsb/xl/macrosheets/sheet1.bin" - infected
  541. "c:\Downloads\20220115\419x\340.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  542. "c:\Downloads\20220115\419x\341.xlsb" - deleted
  543. "c:\Downloads\20220115\419x\341.xlsb/xl/macrosheets/sheet1.bin" - infected
  544. "c:\Downloads\20220115\419x\341.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  545. "c:\Downloads\20220115\419x\342.xlsb" - deleted
  546. "c:\Downloads\20220115\419x\342.xlsb/xl/macrosheets/sheet1.bin" - infected
  547. "c:\Downloads\20220115\419x\342.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  548. "c:\Downloads\20220115\419x\343.xlsb" - deleted
  549. "c:\Downloads\20220115\419x\343.xlsb/xl/macrosheets/sheet1.bin" - infected
  550. "c:\Downloads\20220115\419x\343.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  551. "c:\Downloads\20220115\419x\344.xlsb" - deleted
  552. "c:\Downloads\20220115\419x\344.xlsb/xl/macrosheets/sheet1.bin" - infected
  553. "c:\Downloads\20220115\419x\344.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  554. "c:\Downloads\20220115\419x\345.xlsb" - deleted
  555. "c:\Downloads\20220115\419x\345.xlsb/xl/macrosheets/sheet1.bin" - infected
  556. "c:\Downloads\20220115\419x\345.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  557. "c:\Downloads\20220115\419x\346.xlsb" - deleted
  558. "c:\Downloads\20220115\419x\346.xlsb/xl/macrosheets/sheet1.bin" - infected
  559. "c:\Downloads\20220115\419x\346.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  560. "c:\Downloads\20220115\419x\347.xlsb" - deleted
  561. "c:\Downloads\20220115\419x\347.xlsb/xl/macrosheets/sheet1.bin" - infected
  562. "c:\Downloads\20220115\419x\347.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  563. "c:\Downloads\20220115\419x\348.xlsb" - deleted
  564. "c:\Downloads\20220115\419x\348.xlsb/xl/macrosheets/sheet1.bin" - infected
  565. "c:\Downloads\20220115\419x\348.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  566. "c:\Downloads\20220115\419x\349.xlsb" - deleted
  567. "c:\Downloads\20220115\419x\349.xlsb/xl/macrosheets/sheet1.bin" - infected
  568. "c:\Downloads\20220115\419x\349.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  569. "c:\Downloads\20220115\419x\350.xlsb" - deleted
  570. "c:\Downloads\20220115\419x\350.xlsb/xl/macrosheets/sheet1.bin" - infected
  571. "c:\Downloads\20220115\419x\350.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  572. "c:\Downloads\20220115\419x\351.xlsb" - deleted
  573. "c:\Downloads\20220115\419x\351.xlsb/xl/macrosheets/sheet1.bin" - infected
  574. "c:\Downloads\20220115\419x\351.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  575. "c:\Downloads\20220115\419x\352.xlsb" - deleted
  576. "c:\Downloads\20220115\419x\352.xlsb/xl/macrosheets/sheet1.bin" - infected
  577. "c:\Downloads\20220115\419x\352.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  578. "c:\Downloads\20220115\419x\353.xlsb" - deleted
  579. "c:\Downloads\20220115\419x\353.xlsb/xl/macrosheets/sheet1.bin" - infected
  580. "c:\Downloads\20220115\419x\353.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  581. "c:\Downloads\20220115\419x\354.xlsb" - deleted
  582. "c:\Downloads\20220115\419x\354.xlsb/xl/macrosheets/sheet1.bin" - infected
  583. "c:\Downloads\20220115\419x\354.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  584. "c:\Downloads\20220115\419x\355.xlsb" - deleted
  585. "c:\Downloads\20220115\419x\355.xlsb/xl/macrosheets/sheet1.bin" - infected
  586. "c:\Downloads\20220115\419x\355.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  587. "c:\Downloads\20220115\419x\356.xlsb" - deleted
  588. "c:\Downloads\20220115\419x\356.xlsb/xl/macrosheets/sheet1.bin" - infected
  589. "c:\Downloads\20220115\419x\356.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  590. "c:\Downloads\20220115\419x\357.xlsb" - deleted
  591. "c:\Downloads\20220115\419x\357.xlsb/xl/macrosheets/sheet1.bin" - infected
  592. "c:\Downloads\20220115\419x\357.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  593. "c:\Downloads\20220115\419x\358.xlsb" - deleted
  594. "c:\Downloads\20220115\419x\358.xlsb/xl/macrosheets/sheet1.bin" - infected
  595. "c:\Downloads\20220115\419x\358.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  596. "c:\Downloads\20220115\419x\359.xlsb" - deleted
  597. "c:\Downloads\20220115\419x\359.xlsb/xl/macrosheets/sheet1.bin" - infected
  598. "c:\Downloads\20220115\419x\359.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  599. "c:\Downloads\20220115\419x\360.xlsb" - deleted
  600. "c:\Downloads\20220115\419x\360.xlsb/xl/macrosheets/sheet1.bin" - infected
  601. "c:\Downloads\20220115\419x\360.xlsb/xl/macrosheets/sheet1.bin" infected with W97M.DownLoader.5485
  602. "c:\Downloads\20220115\419x\419.xlsb" - deleted
  603. "c:\Downloads\20220115\419x\419.xlsb/xl/sharedStrings.bin" - infected
  604. "c:\Downloads\20220115\419x\419.xlsb/xl/sharedStrings.bin" infected with X97M.DownLoader.809
复制代码


  1. ALERT: [W97M/Dldr.Agent.zaxok] c:\Downloads\20220115\419x\362.xlsb <<< Contains code of the W97M/Dldr.Agent.zaxok Word macro virus [renamed]
  2. ALERT: [W97M/Dldr.Agent.smqwo] c:\Downloads\20220115\419x\363.xlsb <<< Contains code of the W97M/Dldr.Agent.smqwo Word macro virus [renamed]
  3. ALERT: [W97M/Dldr.Agent.vxomz] c:\Downloads\20220115\419x\364.xlsb <<< Contains code of the W97M/Dldr.Agent.vxomz Word macro virus [renamed]
  4. ALERT: [W97M/Dldr.Agent.htoag] c:\Downloads\20220115\419x\365.xlsb <<< Contains code of the W97M/Dldr.Agent.htoag Word macro virus [renamed]
  5. ALERT: [W97M/Dldr.Agent.wjabk] c:\Downloads\20220115\419x\366.xlsb <<< Contains code of the W97M/Dldr.Agent.wjabk Word macro virus [renamed]
  6. ALERT: [W97M/Dldr.EncDoc.kuqsn] c:\Downloads\20220115\419x\367.xlsb <<< Contains code of the W97M/Dldr.EncDoc.kuqsn Word macro virus [renamed]
  7. ALERT: [W97M/Dldr.Agent.rxgjp] c:\Downloads\20220115\419x\368.xlsb <<< Contains code of the W97M/Dldr.Agent.rxgjp Word macro virus [renamed]
  8. ALERT: [W97M/Dldr.Agent.tmjfa] c:\Downloads\20220115\419x\369.xlsb <<< Contains code of the W97M/Dldr.Agent.tmjfa Word macro virus [renamed]
  9. ALERT: [W97M/Dldr.Agent.rumoa] c:\Downloads\20220115\419x\370.xlsb <<< Contains code of the W97M/Dldr.Agent.rumoa Word macro virus [renamed]
  10. ALERT: [W97M/Dldr.Agent.uocod] c:\Downloads\20220115\419x\371.xlsb <<< Contains code of the W97M/Dldr.Agent.uocod Word macro virus [renamed]
  11. ALERT: [W97M/Dldr.Agent.hlxmg] c:\Downloads\20220115\419x\373.xlsb <<< Contains code of the W97M/Dldr.Agent.hlxmg Word macro virus [renamed]
  12. ALERT: [W97M/Dldr.Agent.davzm] c:\Downloads\20220115\419x\374.xlsb <<< Contains code of the W97M/Dldr.Agent.davzm Word macro virus [renamed]
  13. ALERT: [W97M/Dldr.Agent.rrssq] c:\Downloads\20220115\419x\375.xlsb <<< Contains code of the W97M/Dldr.Agent.rrssq Word macro virus [renamed]
  14. ALERT: [W97M/Dldr.EncDoc.xofde] c:\Downloads\20220115\419x\376.xlsb <<< Contains code of the W97M/Dldr.EncDoc.xofde Word macro virus [renamed]
  15. ALERT: [W97M/Dldr.Agent.sdkhb] c:\Downloads\20220115\419x\377.xlsb <<< Contains code of the W97M/Dldr.Agent.sdkhb Word macro virus [renamed]
  16. ALERT: [W97M/Dldr.Agent.cabcb] c:\Downloads\20220115\419x\378.xlsb <<< Contains code of the W97M/Dldr.Agent.cabcb Word macro virus [renamed]
  17. ALERT: [W97M/Dldr.Agent.kmmut] c:\Downloads\20220115\419x\379.xlsb <<< Contains code of the W97M/Dldr.Agent.kmmut Word macro virus [renamed]
  18. ALERT: [W97M/Dldr.Agent.lstrp] c:\Downloads\20220115\419x\380.xlsb <<< Contains code of the W97M/Dldr.Agent.lstrp Word macro virus [renamed]
  19. ALERT: [W97M/Dldr.Agent.yhiwg] c:\Downloads\20220115\419x\381.xlsb <<< Contains code of the W97M/Dldr.Agent.yhiwg Word macro virus [renamed]
  20. ALERT: [W97M/Dldr.Agent.nymjb] c:\Downloads\20220115\419x\382.xlsb <<< Contains code of the W97M/Dldr.Agent.nymjb Word macro virus [renamed]
  21. ALERT: [W97M/Dldr.EncDoc.kudut] c:\Downloads\20220115\419x\383.xlsb <<< Contains code of the W97M/Dldr.EncDoc.kudut Word macro virus [renamed]
  22. ALERT: [W97M/Dldr.Agent.pmlbb] c:\Downloads\20220115\419x\384.xlsb <<< Contains code of the W97M/Dldr.Agent.pmlbb Word macro virus [renamed]
  23. ALERT: [W97M/Dldr.Agent.tfsor] c:\Downloads\20220115\419x\385.xlsb <<< Contains code of the W97M/Dldr.Agent.tfsor Word macro virus [renamed]
  24. ALERT: [W97M/Dldr.Agent.xmzew] c:\Downloads\20220115\419x\386.xlsb <<< Contains code of the W97M/Dldr.Agent.xmzew Word macro virus [renamed]
  25. ALERT: [W97M/Dldr.EncDoc.wksxk] c:\Downloads\20220115\419x\387.xlsb <<< Contains code of the W97M/Dldr.EncDoc.wksxk Word macro virus [renamed]
  26. ALERT: [W97M/Dldr.Agent.wktqr] c:\Downloads\20220115\419x\388.xlsb <<< Contains code of the W97M/Dldr.Agent.wktqr Word macro virus [renamed]
  27. ALERT: [W97M/Dldr.EncDoc.kdvjy] c:\Downloads\20220115\419x\389.xlsb <<< Contains code of the W97M/Dldr.EncDoc.kdvjy Word macro virus [renamed]
  28. ALERT: [W97M/Dldr.EncDoc.vwiuh] c:\Downloads\20220115\419x\390.xlsb <<< Contains code of the W97M/Dldr.EncDoc.vwiuh Word macro virus [renamed]
  29. ALERT: [W97M/Dldr.Agent.uwakn] c:\Downloads\20220115\419x\391.xlsb <<< Contains code of the W97M/Dldr.Agent.uwakn Word macro virus [renamed]
  30. ALERT: [W97M/Dldr.Agent.hdfxv] c:\Downloads\20220115\419x\392.xlsb <<< Contains code of the W97M/Dldr.Agent.hdfxv Word macro virus [renamed]
  31. ALERT: [W97M/Dldr.Agent.xgoeo] c:\Downloads\20220115\419x\393.xlsb <<< Contains code of the W97M/Dldr.Agent.xgoeo Word macro virus [renamed]
  32. ALERT: [W97M/Dldr.Agent.wbnqi] c:\Downloads\20220115\419x\394.xlsb <<< Contains code of the W97M/Dldr.Agent.wbnqi Word macro virus [renamed]
  33. ALERT: [W97M/Dldr.Agent.hcgoc] c:\Downloads\20220115\419x\395.xlsb <<< Contains code of the W97M/Dldr.Agent.hcgoc Word macro virus [renamed]
  34. ALERT: [W97M/Dldr.Agent.sfpzx] c:\Downloads\20220115\419x\396.xlsb <<< Contains code of the W97M/Dldr.Agent.sfpzx Word macro virus [renamed]
  35. ALERT: [W97M/Dldr.Agent.hfzji] c:\Downloads\20220115\419x\397.xlsb <<< Contains code of the W97M/Dldr.Agent.hfzji Word macro virus [renamed]
  36. ALERT: [W97M/Dldr.EncDoc.deaoq] c:\Downloads\20220115\419x\398.xlsb <<< Contains code of the W97M/Dldr.EncDoc.deaoq Word macro virus [renamed]
  37. ALERT: [W97M/Dldr.Agent.pehiw] c:\Downloads\20220115\419x\399.xlsb <<< Contains code of the W97M/Dldr.Agent.pehiw Word macro virus [renamed]
  38. ALERT: [W97M/Dldr.EncDoc.nqwkd] c:\Downloads\20220115\419x\400.xlsb <<< Contains code of the W97M/Dldr.EncDoc.nqwkd Word macro virus [renamed]
  39. ALERT: [W97M/Dldr.Agent.znwpv] c:\Downloads\20220115\419x\401.xlsb <<< Contains code of the W97M/Dldr.Agent.znwpv Word macro virus [renamed]
  40. ALERT: [W97M/Dldr.EncDoc.ofrhb] c:\Downloads\20220115\419x\402.xlsb <<< Contains code of the W97M/Dldr.EncDoc.ofrhb Word macro virus [renamed]
  41. ALERT: [W97M/Dldr.Agent.zxfat] c:\Downloads\20220115\419x\403.xlsb <<< Contains code of the W97M/Dldr.Agent.zxfat Word macro virus [renamed]
  42. ALERT: [W97M/Dldr.EncDoc.ljbdj] c:\Downloads\20220115\419x\404.xlsb <<< Contains code of the W97M/Dldr.EncDoc.ljbdj Word macro virus [renamed]
  43. ALERT: [W97M/Dldr.Agent.hesxw] c:\Downloads\20220115\419x\405.xlsb <<< Contains code of the W97M/Dldr.Agent.hesxw Word macro virus [renamed]
  44. ALERT: [W97M/Dldr.Agent.pgzuv] c:\Downloads\20220115\419x\406.xlsb <<< Contains code of the W97M/Dldr.Agent.pgzuv Word macro virus [renamed]
  45. ALERT: [W97M/Dldr.Agent.qosxb] c:\Downloads\20220115\419x\407.xlsb <<< Contains code of the W97M/Dldr.Agent.qosxb Word macro virus [renamed]
  46. ALERT: [W97M/Dldr.Agent.axzpj] c:\Downloads\20220115\419x\408.xlsb <<< Contains code of the W97M/Dldr.Agent.axzpj Word macro virus [renamed]
  47. ALERT: [W97M/Dldr.EncDoc.rwrao] c:\Downloads\20220115\419x\409.xlsb <<< Contains code of the W97M/Dldr.EncDoc.rwrao Word macro virus [renamed]
  48. ALERT: [W97M/Dldr.EncDoc.irpla] c:\Downloads\20220115\419x\410.xlsb <<< Contains code of the W97M/Dldr.EncDoc.irpla Word macro virus [renamed]
  49. ALERT: [W97M/Dldr.EncDoc.vbfoz] c:\Downloads\20220115\419x\411.xlsb <<< Contains code of the W97M/Dldr.EncDoc.vbfoz Word macro virus [renamed]
  50. ALERT: [W97M/Dldr.Agent.fyxtz] c:\Downloads\20220115\419x\412.xlsb <<< Contains code of the W97M/Dldr.Agent.fyxtz Word macro virus [renamed]
  51. ALERT: [W97M/Dldr.Agent.ypbzm] c:\Downloads\20220115\419x\413.xlsb <<< Contains code of the W97M/Dldr.Agent.ypbzm Word macro virus [renamed]
  52. ALERT: [W97M/Dldr.Agent.ldynz] c:\Downloads\20220115\419x\414.xlsb <<< Contains code of the W97M/Dldr.Agent.ldynz Word macro virus [renamed]
  53. ALERT: [W97M/Dldr.Agent.aouzl] c:\Downloads\20220115\419x\415.xlsb <<< Contains code of the W97M/Dldr.Agent.aouzl Word macro virus [renamed]
  54. ALERT: [W97M/Dldr.Agent.rkvum] c:\Downloads\20220115\419x\416.xlsb <<< Contains code of the W97M/Dldr.Agent.rkvum Word macro virus [renamed]
  55. ALERT: [W97M/Dldr.Agent.ayzxq] c:\Downloads\20220115\419x\417.xlsb <<< Contains code of the W97M/Dldr.Agent.ayzxq Word macro virus [renamed]
  56. ALERT: [W97M/Dldr.Agent.tkdmn] c:\Downloads\20220115\419x\418.xlsb <<< Contains code of the W97M/Dldr.Agent.tkdmn Word macro virus [renamed]
复制代码




netweb
发表于 5 天前 | 显示全部楼层
093.exe真的是病毒吗?只是在启动文件夹写入new driver.lnk,我没发现该文件。



时间;应用程序;操作;目标;操作;规则;其他信息
2022/1/15 14:20:34;C:\test\093.exe;获取文件访问权;C:\Users\itemp10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\new driver.lnk;已允许;保护启动文件夹、桌面文件夹、计划任务文件夹;删除文件

时间;应用程序;操作;目标;操作;规则;其他信息
2022/1/15 14:20:42;C:\test\093.exe;获取文件访问权;C:\Users\itemp10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\new driver.lnk;已允许;保护启动文件夹、桌面文件夹、计划任务文件夹;获取文件独占访问权,删除文件,写入到文件

时间;应用程序;操作;目标;操作;规则;其他信息
2022/1/15 14:20:51;C:\test\093.exe;未知操作;C:\Users\itemp10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\new driver.lnk;已允许;保护启动文件夹、桌面文件夹、计划任务文件夹;

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
带刀侍卫
发表于 5 天前 | 显示全部楼层

下载时间



大团圆V1.0清空(0双击)




部分表现:
ESET

AVAST

智量

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
vaedzy
发表于 5 天前 | 显示全部楼层
本帖最后由 vaedzy 于 2022-1-15 14:49 编辑
netweb 发表于 2022-1-15 14:40
093.exe真的是病毒吗?只是在启动文件夹写入new driver.lnk,我没发现该文件。


看调查图是进去了启动项。但具体是啥,由于MDE阻断了没有后续调查了。

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
netweb
发表于 5 天前 | 显示全部楼层
vaedzy 发表于 2022-1-15 14:46
看调查图是进去了启动项。但具体是啥,由于MDE阻断了没有后续调查了。

我知道它写入了启动文件夹,但我没发现该文件,里面只有desktop.ini







    生如夏花之绚烂,死如秋叶之静美  
    2022/1/15 下午3:58:15
    bye  
    From The Amazing Artifact:Netscape
             
    Hacker-云
    发表于 5 天前 | 显示全部楼层
    本帖最后由 Hacker-云 于 2022-1-15 15:08 编辑

    360极速准备
    2022年1月15日15:05:52


    2022年1月15日15:08:08,剩余是38个,几乎一样的文件?这个格式不杀?


    本帖子中包含更多资源

    您需要 登录 才可以下载或查看,没有帐号?快速注册

    x
    NICO-COOPER
    发表于 5 天前 | 显示全部楼层
    补一个FSP,监控+扫描剩余15个,双击后剩余14个,其中206.exe成功运行,手动MWFC拦截联网行为,DG未反应。

    本帖子中包含更多资源

    您需要 登录 才可以下载或查看,没有帐号?快速注册

    x
    您需要登录后才可以回帖 登录 | 快速注册

    本版积分规则

    手机版|杀毒软件|软件论坛| 卡饭论坛

    Copyright © KaFan  KaFan.cn All Rights Reserved.

    Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2022-1-20 07:25 , Processed in 0.092918 second(s), 14 queries .

    卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

    快速回复 客服 返回顶部 返回列表