经典鱼翅 - 2007-12-25 16:27:00
进程特权扫描
特殊特权被允许: SeDebugPrivilege [PID = 2388, C:\PROGRAM FILES\RISING\ANTISPYWARE\RUNIEP.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2388, C:\PROGRAM FILES\RISING\ANTISPYWARE\RUNIEP.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 3916, D:\浩方\HFGAMEOPT\GAMECLIENT.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 3916, D:\浩方\HFGAMEOPT\GAMECLIENT.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 3828, C:\PROGRAM FILES\THUNDER NETWORK\THUNDER\PROGRAM\THUNDER5.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 3828, C:\PROGRAM FILES\THUNDER NETWORK\THUNDER\PROGRAM\THUNDER5.EXE]
==================================
API HOOK
入口点错误:CreateProcessA (危险等级: 高, 被下面模块所HOOK: 0x010E31BD)
入口点错误:CreateProcessW (危险等级: 高, 被下面模块所HOOK: 0x010E32A5)
[用户系统信息]Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) ; MEGAUPLOAD 2.0; .NET CLR 1.1.4322)
日不懂啊 - 2007-12-25 17:44:00
这叫啥日志?
弄全点OK?
© 2000 - 2026 Rising Corp. Ltd.