病毒查杀软件-ZBot病毒查杀工具(ZBot Trojan Remover)v1.7 绿色版

大小:652.0M 类别:

官方免费 安全纠错

  • 更新时间2039-07-19
  • 版本V4.7
  • 权限查看
  • 系统Android
  • 语言繁体中文
即下
上哪里买球 网站2026 谁有靠谱的买球软件吗病毒样本:MalwareAnalyzerbyHX朋友印象社交软件-朋友印象2.4.6 官方iOS版AnalysisstartedMD5:2BB9A1C4B35719ABD022C605A546D6C4Executing->DeviceHarddiskVolume3UsersGatewayDes...

病毒样本:

MalwareAnalyzerbyHX朋友印象社交软件-朋友印象2.4.6 官方iOS版

Analysisstarted

MD5:2BB9A1C4B35719ABD022C605A546D6C4

Executing->DeviceHarddiskVolume3UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe(PID:13440)

Command-line:"C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe"

C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe

WriteFile,C:UsersGatewayAppDataRoamingGolaxyeq.exe

C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe

WriteRegistryKey,SoftwareMicrosoft

C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe

WriteRegistryKey,Juat

C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe

DeleteFile,C:UsersGatewayAppDataRoamingGolaxyeq.exe

C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe

WriteFile,C:UsersGatewayAppDataRoamingGolaxyeq.exe

C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe

WriteFile,C:UsersGatewayAppDataRoamingGolaxyeq.exe

Executing->DeviceHarddiskVolume3SandboxGatewayAnalyzerusercurrentAppDataRoamingGolaxyeq.exe(PID:16540)

Command-line:"C:UsersGatewayAppDataRoamingGolaxyeq.exe"

C:UsersGatewayAppDataRoamingGolaxyeq.exe

WriteRegistryKey,SoftwareMicrosoftJuat

C:UsersGatewayAppDataRoamingGolaxyeq.exe

WriteRegistryKey,f62bfi

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:WindowsSystem32 askhost.exe(PID:1992)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:WindowsSystem32dwm.exe(PID:2976)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:UsersGatewayAppDataLocalMicrosoftSkyDriveSkyDrive.exe(PID:3484)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFiles(x86)GoogleDrivegoogledrivesync.exe(PID:3496)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFilesSandboxieSbieCtrl.exe(PID:3524)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFiles(x86)EvernoteEvernoteEvernoteClipper.exe(PID:3584)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,K:ProgramFiles(x86)KasperskyLabKasperskyEndpointSecurity8forWindowsavp.exe(PID:3592)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:UsersGatewayDesktopgoagent-goagent-a51d6a2localgoagent.exe(PID:3600)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:WindowsSystem32conhost.exe(PID:3608)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFilesBOINCoincmgr.exe(PID:3696)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:UsersGatewayDesktopgoagent-goagent-a51d6a2localpython27.exe(PID:3704)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFilesBOINCoinctray.exe(PID:3776)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,K:SkyDriveProgramsVBSherloggerSherlogger.exe(PID:3840)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,K:ProgramFiles(x86)BaiduYunaiduyun.exe(PID:3868)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFiles(x86)GoogleDrivegoogledrivesync.exe(PID:3952)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFilesBOINCoinc.exe(PID:3964)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:WindowsSystem32conhost.exe(PID:3972)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFiles(x86)alipaySafeTransactionAlipaySafeTran.exe(PID:17800)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramDataBOINCprojectswww.worldcommunitygrid.orgwcgrid_dsfl_vina_6.25_windows_x86_64(PID:57092)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:WindowsSystem32conhost.exe(PID:58156)

Rollingback...

Analysisended

Reason:Malwaredetectedandrolledback

Anomalies:

-Modifiesprotectedresource.Theexecutablemodifiesimportantresources(files,processes,etc.)


ZBotTrojanRemover是一款可以检测并查杀ZBot变种木马病毒的查杀工具,ZBot变种木马会在电脑中潜伏,并且专门针对用户的各种银行账号,是一种威胁非常大的病毒,大家一定要小心防范。

pk10盘飞单 万博网站赌场 万博有MK吗 one体育推荐 语数外体育同分

展开内容

应用信息

  • 厂商:库洛游戏(广州)有限公司
  • 包名:com.ghi.video
  • MD5:1039926bacf7a222d3aa8a58da19929b
  • 年龄:12+
  • 备案号:备案号:京1H-200750038-93X
  • 需要网络 有广告
精彩发现

猜您喜欢

热门推荐

类似应用

网友评论

388人参与,188条评论
  • 评论需审核后才能显示

同类排行

即下(652.0M)