微点交流论坛

标题: 受不了，现在微点报天人网络电视里的沸点为已知木马... [打印本页]

作者: xt.w 时间: 2006-12-11 09:02 标题: 受不了，现在微点报天人网络电视里的沸点为已知木马...

http://www.tvren.com/
请版主尽快解决啊，在沸点网络电视你随便开个频道微点就报已知病毒。

时间处理结果木马名称木马进程名木马文件创建者
2006-12-11 09:14:35 用户取消未知后门程序 D:\PROGRAM FILES\SOGOU PXP\VODSVR.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH14.EXE
2006-12-11 09:14:31 用户取消未知后门程序 D:\PROGRAM FILES\COMMON FILES\SOGOU PXP\P2PSVR.EXE D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH14.EXE
2006-12-11 09:14:24 用户取消未知后门程序 D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSE17.TMP\KILLPROCDLL.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH14.EXE
2006-12-11 09:14:20 用户取消未知后门程序 D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSE17.TMP\NSSCM.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH14.EXE
2006-12-11 09:08:14 处理成功未知后门程序 D:\PROGRAM FILES\COMMON FILES\SOGOU PXP\P2PSVR.EXE D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOHE.EXE
2006-12-11 09:08:07 处理成功未知后门程序 D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSC11.TMP\KILLPROCDLL.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOHE.EXE
2006-12-11 09:07:59 处理成功未知后门程序 D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSC11.TMP\NSSCM.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOHE.EXE
2006-12-11 09:07:43 处理成功未知后门程序 D:\PROGRAM FILES\SOGOU PXP\P2PCLIENT.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOHA.EXE
2006-12-11 09:07:40 处理成功未知后门程序 D:\PROGRAM FILES\SOGOU PXP\PXPNET.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOHA.EXE
2006-12-11 09:07:37 处理成功未知后门程序 D:\PROGRAM FILES\SOGOU PXP\VODSVR.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOHA.EXE
2006-12-11 09:07:33 处理成功未知后门程序 D:\PROGRAM FILES\COMMON FILES\SOGOU PXP\P2PSVR.EXE D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOHA.EXE
2006-12-11 09:07:28 处理成功未知后门程序 D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSRD.TMP\KILLPROCDLL.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOHA.EXE
2006-12-11 09:07:25 处理成功未知后门程序 D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSRD.TMP\NSSCM.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOHA.EXE
2006-12-11 09:07:17 处理成功未知后门程序 D:\PROGRAM FILES\SOGOU PXP\VODSVR.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH6.EXE
2006-12-11 09:07:11 处理成功未知后门程序 D:\PROGRAM FILES\COMMON FILES\SOGOU PXP\P2PSVR.EXE D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH6.EXE
2006-12-11 09:07:04 处理成功未知后门程序 D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSI9.TMP\KILLPROCDLL.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH6.EXE
2006-12-11 09:07:00 处理成功未知后门程序 D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSI9.TMP\NSSCM.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH6.EXE
2006-12-11 09:06:39 处理成功未知后门程序 D:\PROGRAM FILES\SOGOU PXP\P2PCLIENT.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH2.EXE
2006-12-11 09:06:39 处理成功未知后门程序 D:\PROGRAM FILES\SOGOU PXP\PXPNET.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH2.EXE
2006-12-11 09:06:39 处理成功未知后门程序 D:\PROGRAM FILES\SOGOU PXP\VODSVR.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH2.EXE
2006-12-11 09:06:39 处理成功未知后门程序 D:\PROGRAM FILES\COMMON FILES\SOGOU PXP\P2PSVR.EXE D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH2.EXE
2006-12-11 09:06:39 处理成功未知后门程序 D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSH5.TMP\KILLPROCDLL.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH2.EXE
2006-12-11 09:06:39 处理成功未知后门程序 D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSH5.TMP\NSSCM.DLL D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH2.EXE
2006-12-11 09:06:39 处理成功未知后门程序 D:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\SOH2.EXE D:\PROGRAM FILES\TVREN\TVREN_NETTV.EXE

作者: 一个人的旅行 时间: 2006-12-11 09:12
已知?明明是未知的嘛,呵呵,你可以加到可信程序里.

作者: Legend 时间: 2006-12-11 09:14
请问您微点的具体版本是什么?请在辅助功能--关于中查看下.
另外,请将沸点的下载连接发到:support@micropoint.com.cn.

[ Last edited by Legend on 2006-12-11 at 09:17 ]

作者: david1126103 时间: 2006-12-11 13:32
天人里有很多流氓恶意程序。。。

作者: xt.w 时间: 2006-12-11 16:40
微点主动防御软件
程序版本： 1.2.10513
特征版本： 1.4.174.061208
更新时间： 2006-12-10 12:43:48

版权所有 (C) 2005 Micropoint Corporation

北京东方微点信息技术有限责任公司
福建东方微点信息安全有限责任公司

信箱：support@micropoint.com.cn

下载地址在一楼有，第一个连接就是。

回二楼的，在报警时提示是木马，照我看来应该是已知的。如果是未知照以往是报未知木马的

作者: Legend 时间: 2006-12-11 16:48
好的,谢谢楼主提供的信息,我门具体测试后会给您回复的

欢迎光临微点交流论坛 (http://bbs.micropoint.com.cn/)

bbs.micropoint.com.cn