进程C:\WINDOWS\SYSTEM32\WINLOGON.EXE触发了文件类规则
老弹出这个窗口是怎么回事啊!!怎么解决啊?
以下是部份log文件:
操作 时间 进程名称 文件
修改 2008-01-28 15:00:56 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\ALERTMAN.EXE
修改 2008-01-28 15:01:00 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\BACKRAV.EXE
修改 2008-01-28 15:01:05 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\COPYRUN\RAVCOPY.EXE
修改 2008-01-28 15:01:11 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\DEFCFG.EXE
修改 2008-01-28 15:01:15 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\FILEDSTY.EXE
修改 2008-01-28 15:01:19 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\INBUILD.EXE
修改 2008-01-28 15:01:22 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\LANGSET.EXE
修改 2008-01-28 15:01:33 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\MONCFG.EXE
修改 2008-01-28 15:01:40 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\RAVCOPY.EXE
修改 2008-01-28 15:01:43 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\RAVHDBAK.EXE
修改 2008-01-28 15:01:46 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\RAVLITE.EXE
修改 2008-01-28 15:01:50 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\RAVQUICK.EXE
修改 2008-01-28 15:01:54 C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\PROGRAM FILES\RISING\RAV\RAVSSAVE.EXE
[用户系统信息]Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; TheWorld)
