本帖最后由 UNknownOoo 于 2024-1-17 00:31 编辑
火绒
扫描:3X
- 扫描文件:9
- 发现风险:8
- 已处理风险:0
- 病毒详情:
- 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\if\3c87b4316c.msi >> KB >> COMSupport.dll, 病毒名:Backdoor/Ghost.ba, 病毒ID:d3b84ea0d02a7fc4, 处理结果:暂不处理
- 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\if\3c87b4316c.msi >> KB >> Application2\COMSupport.dll, 病毒名:Backdoor/Ghost.ba, 病毒ID:d3b84ea0d02a7fc4, 处理结果:暂不处理
- 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\if\3c87b4316c.msi >> COMSupport.dll, 病毒名:Backdoor/Ghost.ba, 病毒ID:d3b84ea0d02a7fc4, 处理结果:暂不处理
- 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\if\3c87b4316c.msi >> COMSupport.dll_1, 病毒名:Backdoor/Ghost.ba, 病毒ID:d3b84ea0d02a7fc4, 处理结果:暂不处理
- 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\if\Iineinset.msi >> a.bat, 病毒名:Trojan/BAT.Starter.at, 病毒ID:060898d156c0c897, 处理结果:暂不处理
- 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\if\Iineinset.msi >> vbs, 病毒名:Trojan/Generic!E52496E454DF2CD4, 病毒ID:e52496e454df2cd4, 处理结果:暂不处理
- 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\if\woyou24166.msi >> a.bat, 病毒名:Trojan/BAT.Starter.at, 病毒ID:060898d156c0c897, 处理结果:暂不处理
- 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\if\woyou24166.msi >> vbs, 病毒名:Trojan/Generic!E52496E454DF2CD4, 病毒ID:e52496e454df2cd4, 处理结果:暂不处理
复制代码 运行:
59865946.msi -> 特征 捉2衍生物
- 病毒名称:Backdoor/Ghost.ba
- 病毒ID:D3B84EA0D02A7FC4
- 病毒路径:C:\Users\Administrator\AppData\Roaming\TgrmDp\COMSupport.dll
- 病毒名称:Backdoor/Ghost.ba
- 病毒ID:D3B84EA0D02A7FC4
- 病毒路径:C:\Users\Public\Documents\COMSupport.dll
复制代码
Aicoin.exe -> 特征 捉衍生物
- 病毒名称:Backdoor/Lotok.dhk
- 病毒ID:33CEF734E64D96D5
- 病毒路径:C:\Users\Administrator\AppData\Roaming\BProtects\DataState.dll
复制代码
aicoinx64.exe -> MISS
jisujiemakuhuduan.exe -> 拉黑衍生物 4X
- 病毒名称:Trojan/Generic!185D8AEC0DE218FE
- 病毒ID:185D8AEC0DE218FE
- 病毒路径:C:\Users\Default\Desktop\Fe964a67eHTl\yybob\mozglue.dll
- 病毒名称:Trojan/Generic!958A4AF174E0FCD6
- 病毒ID:958A4AF174E0FCD6
- 病毒路径:C:\Users\Default\Desktop\Fe964a67eHTl\yybob\QuickSeeBase.dll
- 病毒名称:Trojan/Generic!762639A95CEBCD8A
- 病毒ID:762639A95CEBCD8A
- 病毒路径:C:\Users\Administrator\AppData\RoamingLocalLows\WPerceptionsimulation\AMPPL\ALGinfo\Run\libexpat.dll
- 病毒名称:Trojan/Generic!EFF526AB0D474D1D
- 病毒ID:EFF526AB0D474D1D
- 病毒路径:C:\Users\Administrator\AppData\RoamingLocalLows\WPerceptionsimulation\AMPPL\ALGinfo\Run\mestat.dll
复制代码
TGsetup-4.14.4-x64.msi -> 特征捉衍生物
- 病毒名称:HVM:TrojanDownloader/Maloader.t
- 病毒ID:A456DEFD96738281
- 病毒路径:C:\Program Files (x86)\setup\tdnnt\byy160a07.exe
复制代码
TXQQ9.9.7.20811_x64.exe -> MISS
X-Sec
扫描:4X- ---------------------
- 2024/01/17 00:07:55 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\if\59865946.msi -- [rame-classic] Dropper.Agent/MSI!1.F3A6
- 2024/01/17 00:07:56 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\if\3c87b4316c.msi -- [rame-classic] Dropper.Agent/MSI!1.F3A6
- 2024/01/17 00:07:59 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\if\Aicoin.exe -- [xave-cloud] Trojan.Generic
- 2024/01/17 00:08:16 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\if\TGsetup-4.14.4-x64.msi -- [rame-tfe] Trojan.ScarletFlash!8.FB27
复制代码
|