盘符下的中华吸血鬼（2.3.1版）

显示全部楼层 · 发表于 2008-9-1 11:07:26

从U盘里掏出来的！

显示全部楼层 · 发表于 2008-9-1 11:09:10

Begin scan in 'C:\盘符下的中华吸血鬼.rar'
C:\盘符下的中华吸血鬼.rar
[NOTE]    The file was moved to '96c6d7e4.qua'!

End of the scan: 2008年9月1日  11:08
Used time: 00:04 Minute(s)

The scan has been done completely.

   0 Scanning directories
   3 Files were scanned
   1 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   1 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   2 Files not concerned
   1 Archives were scanned
   0 Warnings
   1 Notes

显示全部楼层 · 发表于 2008-9-1 11:10:49

Win32:Trojan-gen {Other}

显示全部楼层 · 发表于 2008-9-1 12:32:15

2008-9-1 12:33:57 检测到: Trojan-Downloader.Win32.Agent.ulp Internet Explorer http://bbs.kafan.cn/attachment.p ... 220243483//recycle.{645FF040-5081-101B-9F08-00AA002F954E}/GHOSTBAK.exe//PE_Patch//MEW

显示全部楼层 · 发表于 2008-9-1 13:03:45

信息 2008-09-01  13:03:13 您此次查毒隔离了1个文件
信息 2008-09-01  13:03:13 您此次查毒共查出1个病毒以及危险代码
信息 2008-09-01  13:03:13 您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件5个
信息 2008-09-01  13:03:13 金山毒霸主程序查毒过程结束，查毒方式：命令行查毒
病毒 2008-09-01  13:03:13 D:\Desktop\Åì·ûÏÂμÄÖD»aÎüÑa1í.rar\recycle.{645FF040-5081-101B-9F08-00AA002F954E}\GHOSTBAK.exe Worm.Agent.ui.61440 隔离成功

显示全部楼层 · 发表于 2008-9-1 13:07:25

请求的对象被感染，发现下列病毒 Trojan-Downloader.Win32.Agent.ulp

显示全部楼层 · 发表于 2008-9-1 13:17:11

2008-9-1 13:14:58 文件系统实时防护文件 C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\ZAD4GVB5\盘符下的中华吸血鬼[1].rar Win32/AutoRun.PT 蠕虫已删除（下次重新启动后） - 已隔离 NT AUTHORITY\SYSTEM 在应用程序新建的文件上发生事件: D:\Program Files\TheWorld 2.0\TheWorld.exe.

显示全部楼层 · 发表于 2008-9-1 13:17:58

2008-9-1 13:16:16 已完成任务
2008-9-1 13:16:16 已删除: Trojan-Downloader.Win32.Agent.ulp C:\Documents and Settings\Owner.LENOVO-73E3485B\桌面\盘符下的中华吸血鬼.rar/recycle.{645FF040-5081-101B-9F08-00AA002F954E}\GHOSTBAK.exe
2008-9-1 13:16:15 已检测到: Trojan-Downloader.Win32.Agent.ulp C:\Documents and Settings\Owner.LENOVO-73E3485B\桌面\盘符下的中华吸血鬼.rar/recycle.{645FF040-5081-101B-9F08-00AA002F954E}\GHOSTBAK.exe/PE_Patch/MEW
2008-9-1 13:16:13 已启动任务

显示全部楼层 · 发表于 2008-9-1 13:18:59

GHOSTBAK.exe Generic QHosts.a.gen (特洛伊)

显示全部楼层 · 发表于 2008-9-1 13:31:15

卡巴秒杀！

[病毒样本] 盘符下的中华吸血鬼（2.3.1版）