mp pass

ykz1991

原帖由 jimmyleo 于 2007-12-16 12:12 发表

这个就是纯粹的报壳了……

差不多，解压后就不报了

solcroft

期待着老鹰的新版本，官方说下星期发布

挪威的冬天

就算是微点也不能当饭吃啊。。。

信息        2007-12-16  08:39:23        您此次查毒共查出1个病毒以及危险代码                       
信息        2007-12-16  08:39:23        您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件5个                       
信息        2007-12-16  08:39:23        金山毒霸主程序查毒过程结束，查毒方式：命令行查毒                       
病毒        2007-12-16  08:39:23        C:\Documents and Settings\Norways Winter\桌面\nncc1.rar\nncc1.exe        Win32.Hack.AgentT.ty.131072        跳过，未处理

qigang

RX20.22.61暂时未报！

Nblock

真的假的 不高兴测了 楼主别吓我 肯定ok

Nblock

我的未升级微点 杀掉27个毒 完美

微点主动防御软件  预升级
程序版本： 1.2.10571.0168
特征版本： 1.6.528.071210
更新时间： 2007-12-10 17:09:48
创建时间 键 名称 原数据 新数据 创建者
2007-12-16 19:24:45 HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PCIHARDDISK\ IMAGEPATH  \??\C:\WINDOWS\SYSTEM32\FAT32.SYS
2007-12-16 19:24:18 HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ WINSYSM  C:\WINDOWS\75976M.EXE C:\WINDOWS\75976M.EXE
2007-12-16 19:24:11 HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ WINSYSW  C:\WINDOWS\75976L.EXE C:\WINDOWS\75976L.EXE
2007-12-16 19:24:04 HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ LOTUSHLP  C:\WINDOWS\LOTUSHLP.EXE C:\PROGRAM FILES\LSASSF.EXE
2007-12-16 19:22:51 HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\COMINT32\ IMAGEPATH  \??\C:\WINDOWS\SYSTEM32\DRIVERS\COMINT32.SYS C:\PROGRAM FILES\LSASS1.EXE
2007-12-16 19:22:27 HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZHTU\ IMAGEPATH  \??\D:\TEMP\TMP6.TMP C:\PROGRAM FILES\LSASS0.EXE

[ 本帖最后由 Nblock 于 2007-12-16 19:53 编辑 ]

挪威的冬天

原帖由 Nblock 于 2007-12-16 19:37 发表
我的未升级微点 杀 27个

微点主动防御软件  预升级
程序版本： 1.2.10571.0168
特征版本： 1.6.528.071210
更新时间： 2007-12-10 17:09:48
创建时间 键 名称 原数据 新数据 创建者
2007-12-16 19:24: ...

。。。在说什么。。。

Graybird

Starting the file scan:

Begin scan in 'E:\Virus\nncc1.rar'
E:\Virus\nncc1.rar
  [0] Archive type: RAR
  --> nncc1.exe
      [DETECTION] Is the Trojan horse TR/Drop.Delf.alm
      [WARNING]   The file was ignored!

Graybird

Starting the file scan:

Begin scan in 'E:\Virus\部分衍生物.rar'
E:\Virus\部分衍生物.rar
  [0] Archive type: RAR
  --> WXPTDI.SYS
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.45056
  --> LSASS2.EXE
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> LSASSF.EXE
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> LSASSM.EXE
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> LSASSH.EXE
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> LSASSI.EXE
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> LSASSN.EXE
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGam.htk
  --> COMINT32.SYS
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> HOOKHELP.SYS
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> MSHMDJ32.DLL
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> YELTINTYE.DLL
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> UPDATE.EXE
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
      [WARNING]   The file was ignored!
Begin scan in 'E:\Virus\GDQQHXI32.rar'
E:\Virus\GDQQHXI32.rar
  [0] Archive type: RAR
  --> GDQQHXI32.DLL
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
      [WARNING]   The file was ignored!
Begin scan in 'E:\Virus\TMP29.rar'
E:\Virus\TMP29.rar
  [0] Archive type: RAR
  --> TMP29.TMP
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
      [WARNING]   The file was ignored!


End of the scan: 2007年12月17日  15:22
Used time: 00:31 min

The scan has been done completely.

      0 Scanning directories
     18 Files were scanned
     14 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      4 Files not concerned
      3 Archives were scanned
      3 Warnings
      0 Notes

qbter

同时开红伞，费尔，NOD32的监控，费尔最先报，红伞次之，nod32没反应