引用:
原帖由 spicalhook 于 2008-7-19 11:55 发表 
卡巴PDM也被过了
不过貌似是死的
谁说被过了?!
2008/7/19 12:25:02 _DELME.BAT Placed in group Low Restricted
2008/7/19 12:25:02 _DELME.BAT Process start C:\USERS\WESLEY\DESKTOP\接受\_DELME.BAT
2008/7/19 12:25:41 _DELME.BAT Denied: KLPrivileges/KLPermissionAppAccess/KLPermissionProcEmbed/KLCodeInject Code intrusion c:\windows\system32\conime.exe
2008/7/19 12:25:44 _DELME.BAT Denied: KLPrivileges/KLPermissionAppAccess/KLPermissionProcManage/KLSuspend Suspend another process c:\windows\system32\conime.exe
2008/7/19 12:25:44 _DELME.BAT Process exit C:\USERS\WESLEY\DESKTOP\接受\_DELME.BAT
2008/7/19 12:25:01 接受.EXE Placed in group Low Restricted
2008/7/19 12:25:02 接受.EXE Process start C:\USERS\WESLEY\DESKTOP\接受\接受.EXE
2008/7/19 12:25:21 接受.EXE Denied: KLPrivileges/KLPermissionAppAccess/KLPermissionProcEmbed/KLCodeInject Code intrusion c:\users\wesley\desktop\接受\_delme.bat
2008/7/19 12:25:32 接受.EXE Denied: KLPrivileges/KLPermissionAppAccess/KLPermissionProcManage/KLSuspend Suspend another process c:\users\wesley\desktop\接受\_delme.bat
2008/7/19 12:25:32 接受.EXE Process exit C:\USERS\WESLEY\DESKTOP\接受\接受.EXE
[
本帖最后由 zwl2828 于 2008-7-19 12:27 编辑 ]
