Wipe MBR

显示全部楼层 · 发表于 2014-8-30 08:47:59

挥泪斩情思发表于 2014-8-29 23:00
费尔蓝屏保护拦截，点阻止后系统蓝屏

费尔这个我碰到过好几次，，好像对这种病毒不能回滚，，，，，

显示全部楼层 · 发表于 2014-8-30 11:53:57

观阴大湿发表于 2014-8-29 21:12
诺顿最擅长对付这种MBR病毒

运行后直接蓝屏！

显示全部楼层 · 发表于 2014-8-30 12:16:49

本帖最后由深山红叶__ 于 2014-8-30 12:18 编辑

菩提祖师发表于 2014-8-30 01:50
why you are use english?
that reason is for avoid any SB?

Yep.
To avoid one SB's sockpuppet.
This fool thought he is God.How fantistic!
He knew nothing but pretended to be a man who is good in cracking.
Maybe he is the man who used to be laughed at by mj.
Cause mj programmed "the best protection".

Also
He thought foreign Anti-virus softwares were all better than those from CHN.How funny.
Only a SHIT who just used sockpuppets to spread his ridiculously idea.

So,I use English to see whether he can know what his foreign daddy saying now.

显示全部楼层 · 发表于 2014-8-30 12:22:12

当成病毒来杀...

暂停进程

结束进程

game over -没有蓝屏

显示全部楼层 · 发表于 2014-8-30 12:29:22

liulangzhecgr 发表于 2014-8-30 12:22
当成病毒来杀...

暂停进程

Some ARK tools use pspterminateprocess.
rtlsetprocessiscritical just broke on ntterminateprocess.

Recover ntopenprocess hook
Get EPROCESS
Call pspterminateprocess

显示全部楼层 · 发表于 2014-8-30 12:54:23

深山红叶__ 发表于 2014-8-30 12:29
Some ARK tools use pspterminateprocess.
rtlsetprocessiscritical just broke on ntterminateprocess. ...

能不能别说鸟语？根本看不懂

显示全部楼层 · 发表于 2014-8-30 12:55:31

提示: 该帖被管理员或版主屏蔽

显示全部楼层 · 发表于 2014-8-30 12:55:50

胖福发表于 2014-8-30 11:53
运行后直接蓝屏！

我这是N360 不是22版本的

显示全部楼层 · 发表于 2014-8-30 12:59:43

eam kill

显示全部楼层 · 发表于 2014-8-30 13:03:48

观阴大湿发表于 2014-8-30 12:55
我这是N360 不是22版本的

我是N36021版！

观阴大湿头像被屏蔽	发表于 2014-8-30 12:55:31 \| 显示全部楼层提示: 该帖被管理员或版主屏蔽
观阴大湿头像被屏蔽
	回复举报

[病毒样本] Wipe MBR

本帖子中包含更多资源