[求救] 開機跑出CMD
如圖 一開機就自動跑三個CMD視窗不曉得要傳什麼檔案
查了IP來源應該都是中國大陸
應該是中毒了吧
目前用MSE作完整掃描明天看結果
系統是Win server 2012 R2 所以沒辦法用Combofix (好像很多東西都不能用在伺服器上
爬文有看到一篇狀況類似的#1IcSiN3B
但是沒看到如何解決
很少碰伺服器的新手 懇請賜教
--
※ 發信站: 批踢踢實業坊(ptt.cc), 來自: 59.127.252.129
※ 文章網址: https://www.ptt.cc/bbs/AntiVirus/M.1487787478.A.60E.html
推
02/23 03:10, , 1F
02/23 03:10, 1F
→
02/23 03:10, , 2F
02/23 03:10, 2F
→
02/23 03:11, , 3F
02/23 03:11, 3F
→
02/23 09:41, , 4F
02/23 09:41, 4F
→
02/23 10:29, , 5F
02/23 10:29, 5F
推
02/23 12:45, , 6F
02/23 12:45, 6F
→
02/23 12:45, , 7F
02/23 12:45, 7F
噓
02/23 16:19, , 8F
02/23 16:19, 8F
→
02/23 16:28, , 9F
02/23 16:28, 9F
→
02/23 16:29, , 10F
02/23 16:29, 10F
→
02/23 16:30, , 11F
02/23 16:30, 11F
→
02/23 17:11, , 12F
02/23 17:11, 12F
→
02/23 17:11, , 13F
02/23 17:11, 13F
→
02/23 17:13, , 14F
02/23 17:13, 14F
推
02/23 20:08, , 15F
02/23 20:08, 15F
→
02/23 22:08, , 16F
02/23 22:08, 16F
推
02/23 22:27, , 17F
02/23 22:27, 17F
→
02/23 22:45, , 18F
02/23 22:45, 18F
推
02/24 12:22, , 19F
02/24 12:22, 19F
推
02/24 13:12, , 20F
02/24 13:12, 20F
推
02/25 22:54, , 21F
02/25 22:54, 21F