我是一只笨笨鱼 - 2005-12-11 18:25:00
下面是我的系统日志:
O23 - NT 服务: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\NVIDIA\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)
O23 - NT 服务: ForceWare IP service (nSvcIp) - Unknown owner - C:\NVIDIA\NetworkAccessManager\bin\nSvcIp.exe
O23 - NT 服务: ForceWare user log service (nSvcLog) - Unknown owner - C:\NVIDIA\NetworkAccessManager\bin\nSvcLog.exe
O23 - NT 服务: P4P Service - Sohu.com Inc. - f:\Program Files\P4P\p2psvr.exe
O23 - NT 服务: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Corporation Limited - f:\program files\rising\rfw\rfwsrv.exe
O23 - NT 服务: Rising Process Communication Center (RsCCenter) - rising - F:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
O23 - NT 服务: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - F:\PROGRAM FILES\RISING\RAV\Ravmond.exe
O23 - NT 服务: Window Time - Unknown owner - C:\WINDOWS\svchost.exe
我的瑞星防火墙在开机时提示系统中有木马,是这样显示的:
总共29个,分别是
xxx.exe>>c:\windows\svchost_hook.dll ->backdoor.gpigeon.tfs
(在上面X表示可变部分,这样的一共有28个)
还有一个是这样的:explore.exe>>c:\windows\explore.exe ->worm.mail.fanbot
希望您能给我一个详细的方案好吗,谢谢了
建能 - 2005-12-11 18:32:00
O23 - NT 服务: Window Time - Unknown owner - C:\WINDOWS\svchost.exe
灰鸽子病毒,查杀灰鸽子的方法在这里有解答!http://forum.ikaka.com/topic.asp?board=28&artid=6372316 http://forum.ikaka.com/topic.asp?board=28&artid=7107792O23 - NT
我是一只笨笨鱼 - 2005-12-11 19:12:00
谢谢大哥哥,小弟在这里给你鞠躬了!
© 2000 - 2026 Rising Corp. Ltd.