本机发现的一个文件

显示全部楼层 · 发表于 2012-7-8 19:17:37

<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>\Device\NamedPipe\lsarpc
</td>
</tr>
<tr>
<td>2002-01-01 19:07:23
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改注册表项
</td>
<td>HKUS\S-1-5-21-842925246-1935655697-1801674531-500\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache
</td>
</tr>
<tr>
<td>2002-01-01 19:07:23
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
</td>
</tr>
<tr>
<td>2002-01-01 19:07:23
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改注册表项
</td>
<td>HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Cache\Paths\Directory
</td>
</tr>
<tr>
<td>2002-01-01 19:07:23
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\Documents and Settings\Administrator\Local Settings\History
</td>
</tr>
<tr>
<td>2002-01-01 19:07:23
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改注册表项
</td>
<td>HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Common AppData
</td>
</tr>
<tr>
<td>2002-01-01 19:07:23
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>\Device\NamedPipe\ROUTER
</td>
</tr>
<tr>
<td>2002-01-01 19:07:23
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改注册表项
</td>
<td>HKUS\S-1-5-21-842925246-1935655697-1801674531-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MigrateProxy
</td>
<
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改注册表项
</td>
<td>HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Cache\Paths\Directory
</td>
</tr>
<tr>
<td>2002-01-01 19:07:23
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\Documents and Settings\Administrator\Local Settings\History

</tr>
<tr>
<td>2002-01-01 19:07:32
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>DNS/RPC 客户端访问
</td>
<td>\RPC Control\DNSResolver
</td>
</tr>
<tr>
<td>2002-01-01 19:07:32
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>\Device\Afd\Endpoint
</td>
</tr>
<tr>
<td>2002-01-01 19:07:32
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\Documents and Settings\Administrator\Local Settings\Temp\pxlup0.dll

</tr>
<tr>
<td>2002-01-01 19:07:32
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>DNS/RPC 客户端访问
</td>
<td>\RPC Control\DNSResolver
</td>
</tr>
<tr>
<td>2002-01-01 19:07:32
</td>

<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\Documents and Settings\Administrator\Local Settings\Temp\wf5yto.dll

</tr>
<tr>
<td>2002-01-01 19:07:40
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\Documents and Settings\Administrator\Local Settings\Temp\j0dxsn.dll

</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\Documents and Settings\Administrator\Local Settings\Temp\i4cwrm.dll
</td>
</tr>
<tr>
<td>2002-01-01 19:07:40
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>访问COM接口
</td>
<td>LocalSecurityAuthority.IncreaseBasePriority
</td>
</tr>
<tr>
<td>2002-01-01 19:07:40
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改注册表项
</td>
<td>HKLM\SOFTWARE\360Safe\safemon
</td>
</tr>
<tr>
<td>2002-01-01 19:07:40
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\WINDOWS\system32\UNAX.ico
</td>
</tr>
<tr>
<td>2002-01-01 19:07:40
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改注册表项
</td>
<td>HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\UNAX.exe
</td>
</tr>
<tr>
<td>2002-01-01 19:07:48
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
</tr>
<tr>
<td>2002-01-01 19:07:48
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>访问COM接口
</td>
<td>LocalSecurityAuthority.IncreaseBasePriority
</td>
</tr>
<tr>
<td>2002-01-01 19:07:48
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>\Device\B:
</td>
</tr>
<tr>
<td>2002-01-01 19:07:48
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>访问COM接口
</td>
<td>LocalSecurityAuthority.IncreaseBasePriority
</td>
</tr>
<tr>
<td>2002-01-01 19:07:48
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\Config.Msi\couixyet.exe
</td>
</tr>
<tr>
<td>2002-01-01 19:07:48
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>访问COM接口
</td>
<td>LocalSecurityAuthority.IncreaseBasePriority
</td>
</tr>
<tr>
<td>2002-01-01 19:07:48
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\Documents and Settings\Administrator\Application Data\Macromedia\Flash Player\#SharedObjects\4FU9T49U\imgcache.qq.com\x9bayz0u.exe
</td>
</tr>
<tr>
<td>2002-01-01 19:07:48
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>访问COM接口
</td>
<td>LocalSecurityAuthority.IncreaseBasePriority
</td>
</tr>
<tr>
<td>2002-01-01 19:07:48
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\Documents and Settings\Administrator\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#imgcache.qq.com\zlrfuvbq.exe
</td>
</tr>
<tr>
<td>2002-01-01 19:07:48
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>访问COM接口
</td>
<td>LocalSecurityAuthority.IncreaseBasePriority
</td>
</tr>
<tr>
<td>2002-01-01 19:07:48
</td>
<td>C:\Documents and Settings\Administrator\桌面\Uner7\Uner7.exe
</td>
<td>修改文件
</td>
<td>C:\Documents and Settings\Administrator\Application Data\Microsoft\IME\winabc\la5uggn0.exe
</td>
</tr>
</table>
<table width="100%" bgcolor="#CFCFE5" border="0">
<tr>
<td>
<font face="Arial" size="+1">报告结束</font>
</td>
</tr>
</table>
</body>
</html>

显示全部楼层 · 发表于 2012-7-8 19:19:24

amocken 发表于 2012-7-8 19:17
什么N久不更新？7月2日才更新过，尝鲜版的QVM最近也更新的比较频繁

你用3.0的试试。

显示全部楼层 · 发表于 2012-7-8 19:20:13

lvhaoran123 发表于 2012-7-8 19:16
他那个是3.1版本，你这个是3.0版本，还是有点差距的。

果断换3.1

显示全部楼层 · 发表于 2012-7-8 19:21:18

myset 发表于 2012-7-8 19:14
开了啊。。。好像 360经常出问题。。

我的QVM好像比你的新

显示全部楼层 · 发表于 2012-7-8 19:22:48

显示全部楼层 · 发表于 2012-7-8 19:22:51

lvhaoran123 发表于 2012-7-8 19:19
你用3.0的试试。

正式版已经是3.1了，尝鲜版是3.2

显示全部楼层 · 发表于 2012-7-8 19:23:23

To山山

显示全部楼层 · 发表于 2012-7-8 19:31:24

amocken 发表于 2012-7-8 19:22
正式版已经是3.1了，尝鲜版是3.2

3.2版对QVM人工智能引擎进行了升级，进一步提升了其查杀性能和精度、广度。

显示全部楼层 · 发表于 2012-7-8 19:40:04

费尔v8 动态防御拦截

显示全部楼层 · 发表于 2012-7-8 19:43:18

Emsisoft Anti-Malware清除！

[可疑文件] 本机发现的一个文件

本帖子中包含更多资源

本帖子中包含更多资源