shuibianla - 2005-9-16 10:55:00
文件路径C:\Program Files\Internet Explorer\IEXPLORE.EXE
shuibianla - 2005-9-16 10:59:00
O23 - NT 服务: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - NT 服务: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - NT 服务: Gray_Pigeon_Server2.0 (GrayPigeonServer2.0) - Unknown owner - C:\WINDOWS\G_Server2.0.exe
O23 - NT 服务: Rising Process Communication Center (RsCCenter) - rising - C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
O23 - NT 服务: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - C:\PROGRAM FILES\RISING\RAV\Ravmond.exe
花落花又开 - 2005-9-16 11:00:00
您好,这个路径是木马插入正常进程中.
请用hijackthis1.99.1版把日志扫上来看看.
这个工具在本版置顶贴中有提供下载.
花落花又开 - 2005-9-16 11:01:00
【回复“shuibianla”的帖子】
O23 - NT 服务: Gray_Pigeon_Server2.0 (GrayPigeonServer2.0) - Unknown owner - C:\WINDOWS\G_Server2.0.exe
此项是鸽子.
清除方法请参考:
http://forum.ikaka.com/topic.asp?board=28&artid=5666824
冷雨夜阑 - 2005-9-16 11:12:00
O23 - NT 服务: Gray_Pigeon_Server2.0 (GrayPigeonServer2.0) - Unknown owner - C:\WINDOWS\G_Server2.0.exe老鸽子一只.按上面提供的网点杀
shuibianla - 2005-9-16 11:19:00
我试试
© 2000 - 2026 Rising Corp. Ltd.