摘要:
看了Executing DLLs as a Windows Service這篇文章後終於知道是怎麼一回事了,於是把相關的register value 砍掉,用sc delete "Server_name"砍掉Windows Service。再找出對應的random.dll找出他修改日期。再搜出相關檔案一併移除。https://code.google.com/p/malwarecookbook/source/browse/trunk/13/7/install_svc.pyRecipe 13-7:Executing DLLs as a Windows ServiceYou ca 阅读全文
摘要:
Recover System AccessInsert your Windows startup CD into your CD-ROM drive and reboot your computer. Having a CD loaded during boot up may trigger a series of prompts. Select any option in the prompt consistent with instructing your computer to start from the CD-ROM drive.Press "R" on your 阅读全文