刚刚装的系统就被小红伞检测出有病毒了!晕掉~!!!!
(附图和杀毒日志)
AntiVir PersonalEdition Premium
Report file date: 2007年8月14日 15:32
Scanning for 1018484 virus strains and unwanted programs.
Licensed to: ? ?
Serial number: 1100619299-PEPWE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: Owner
Computer name: FOUNDERT-F84B2A
Version information:
BUILD.DAT : 287 15691 Bytes 2007-5-10 12:16:00
AVSCAN.EXE : 7.0.4.15 282664 Bytes 2007-4-20 05:37:16
AVSCAN.DLL : 7.0.4.4 33832 Bytes 2007-3-27 05:31:56
LUKE.DLL : 7.0.4.11 143400 Bytes 2007-3-27 05:26:06
LUKERES.DLL : 7.0.4.0 10280 Bytes 2007-3-19 05:19:00
ANTIVIR0.VDF : 6.35.0.1 7371264 Bytes 2006-5-31 07:08:58
ANTIVIR1.VDF : 6.39.0.129 7251968 Bytes 2007-7-10 04:42:44
ANTIVIR2.VDF : 6.39.0.226 1223680 Bytes 2007-8-10 04:42:44
ANTIVIR3.VDF : 6.39.0.236 136704 Bytes 2007-8-14 06:52:40
AVEWIN32.DLL : 7.4.0.60 2716160 Bytes 2007-8-14 04:42:44
AVWINLL.DLL : 1.0.0.7 14376 Bytes 2007-2-26 03:36:28
AVPREF.DLL : 7.0.2.1 24616 Bytes 2007-3-27 05:31:52
AVREP.DLL : 7.0.0.1 155688 Bytes 2007-4-16 06:16:24
AVPACK32.DLL : 7.3.0.15 360488 Bytes 2007-8-14 04:42:44
AVREG.DLL : 7.0.1.2 31784 Bytes 2007-3-15 02:05:10
AVEVTLOG.DLL : 7.0.0.18 86056 Bytes 2007-3-27 05:16:06
AVARKT.DLL : 1.0.0.17 278568 Bytes 2007-5-2 04:32:28
NETNT.DLL : 7.0.0.0 7720 Bytes 2007-3-8 04:09:44
RCIMAGE.DLL : 7.0.1.15 2461736 Bytes 2007-3-13 04:07:54
RCTEXT.DLL : 7.0.45.0 86056 Bytes 2007-3-19 06:02:46
Configuration settings for the scan:
Jobname..........................: Manual Selection
Configuration file...............: C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Premium\PROFILES\folder.avp
Logging..........................: low
Primary action...................: repair
Secondary action.................: quarantine
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: I:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: All files
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,
Macro heuristic..................: on
File heuristic...................: high
Deviating risk categories........: +APPL,+GAME,+JOKE,+PCK,+SPR,
Start of the scan: 2007年8月14日 15:32
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'Maxthon.exe' - '1' Module(s) have been scanned
Scan process 'TIMPlatform.exe' - '1' Module(s) have been scanned
Scan process 'QQ.exe' - '1' Module(s) have been scanned
Scan process 'EXPLORER.EXE' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'SVCHOST.EXE' - '1' Module(s) have been scanned
Scan process 'ALG.EXE' - '1' Module(s) have been scanned
Scan process 'avmailc.exe' - '1' Module(s) have been scanned
Scan process 'avesvc.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'CTFMON.EXE' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'zlclient.exe' - '0' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'SPOOLSV.EXE' - '1' Module(s) have been scanned
Scan process 'VSMON.EXE' - '0' Module(s) have been scanned
Scan process 'SVCHOST.EXE' - '1' Module(s) have been scanned
Scan process 'SVCHOST.EXE' - '1' Module(s) have been scanned
Scan process 'SVCHOST.EXE' - '1' Module(s) have been scanned
Scan process 'SVCHOST.EXE' - '1' Module(s) have been scanned
Scan process 'SVCHOST.EXE' - '1' Module(s) have been scanned
Scan process 'LSASS.EXE' - '1' Module(s) have been scanned
Scan process 'SERVICES.EXE' - '1' Module(s) have been scanned
Scan process 'WINLOGON.EXE' - '1' Module(s) have been scanned
Scan process 'CSRSS.EXE' - '1' Module(s) have been scanned
Scan process 'SMSS.EXE' - '1' Module(s) have been scanned
27 processes with 27 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[NOTE] No virus was found!
Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!
Boot sector 'D:\'
[NOTE] No virus was found!
Boot sector 'E:\'
[NOTE] No virus was found!
Boot sector 'F:\'
[NOTE] No virus was found!
Boot sector 'G:\'
[NOTE] No virus was found!
Starting to scan the registry.
The registry was scanned ( '9' files ).
Starting the file scan:
Begin scan in 'C:\'
C:\PAGEFILE.SYS
[WARNING] The file could not be opened!
C:\dosh\ghos\fr
[DETECTION] Is the Trojan horse TR/Zlob.1.Gen.7
[INFO] The file was moved to '471d5ded.qua'!
Begin scan in 'D:\' <软件>
Begin scan in 'E:\' <音乐>
Begin scan in 'F:\' <游戏>
Begin scan in 'G:\' <下载>
Begin scan in 'H:\'
Search path H:\ could not be opened!
设备未就绪。
Begin scan in 'I:\'
Search path I:\ could not be opened!
设备未就绪。
End of the scan: 2007年8月14日 16:01
Used time: 29:02 min
The scan has been done completely.
1832 Scanning directories
63178 Files were scanned
1 viruses and/or unwanted programs were found
0 classified as suspicious:
0 files were deleted
0 files were repaired
1 files were moved to quarantine
0 files were renamed
1 Files cannot be scanned
63177 Files not concerned
366 Archives were scanned
1 Warnings
0 Notes
0 Hidden objects were found |