论坛: 电脑门诊 标题: 有什么可疑的地方吗? 复制本贴地址    
作者: quancy5022 [quancy5022]    论坛用户   登录
本帖由 [阿Q] 从 << 病毒专区 >> 转移而来

本帖由 [日月双星] 从 << 菜鸟乐园>> 转移而来

          . .. ...: Hax0rcitos Rootkit Detector v0.3b :... .. .
Rkd v0.3b - Rootkit Detector
Programmed by aT4r@3wdesign.es
Copyright (c) 2003 3W Design, Security http://www.3WDesign.es


-Gathering Service list Information... ( Found: 260 services )
-Gathering process List Information... ( Found: 24 process )
-Searching for Hidden process Handles. ( Found: 0 Hidden Process )
-Searching again for Hidden Services.. ( Found: 0 Hidden Services)
-Searching for wrong Service Paths.... ( Found: 2 wrong Services )
-------------------------------------------------------------------------
*SV: KNetWch (KNetWch) PATH: \??\D:\DOCUME~1\quancy\LOCALS~1\Temp\Rar$EX
KNetWch.SYS
-------------------------------------------------------------------------
*SV: SKNFW (SKNFW) PATH: \??\D:\WINDOWS\System32\Drivers\SKNFW.sys
-------------------------------------------------------------------------
-Searching for Rootkit Modules........
-------------------------------------------------------------------------
*SUSPICIOUS MODULE!! d:\shadu\rising\rav\apihook.dll
-------------------------------------------------------------------------
*SUSPICIOUS MODULE!! d:\shadu\rising\rav\memmon.dll
-------------------------------------------------------------------------
*WARNING! MODULE d:\windows\system32\user32.dll SEEMS TO BE HOOKED
-------------------------------------------------------------------------
*WARNING! MODULE d:\windows\system32\gdi32.dll SEEMS TO BE HOOKED
-------------------------------------------------------------------------
*SUSPICIOUS MODULE!! d:\windows\system32\imm32.dll
-------------------------------------------------------------------------
*SUSPICIOUS MODULE!! d:\windows\system32\lpk.dll
-------------------------------------------------------------------------
*SUSPICIOUS MODULE!! d:\windows\system32\usp10.dll
-------------------------------------------------------------------------
*SUSPICIOUS MODULE!! d:\windows\system32\apihookdll.dll
-------------------------------------------------------------------------

地主 发表时间: 04-07-16 16:46

论坛: 电脑门诊

20CN网络安全小组版权所有
Copyright © 2000-2010 20CN Security Group. All Rights Reserved.
论坛程序编写:NetDemon

粤ICP备05087286号