病毒查杀软件-ZBot病毒查杀工具(ZBot Trojan Remover)v1.7 绿色版

大小:1,119.4M 类别:

官方免费 安全纠错

  • 更新时间2025-01-26
  • 版本V8.6
  • 权限查看
  • 系统Android
  • 语言中文
即下
在线的打鱼 德宏微信红包打鱼病毒样本:MalwareAnalyzerbyHX360桌面日历软件2016-360桌面日历6.9.4中文免费安装版AnalysisstartedMD5:2BB9A1C4B35719ABD022C605A546D6C4Executing->DeviceHarddiskVolume3UsersGa...

病毒样本:

MalwareAnalyzerbyHX360桌面日历软件2016-360桌面日历6.9.4中文免费安装版

Analysisstarted

MD5:2BB9A1C4B35719ABD022C605A546D6C4

Executing->DeviceHarddiskVolume3UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe(PID:13440)

Command-line:"C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe"

C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe

WriteFile,C:UsersGatewayAppDataRoamingGolaxyeq.exe

C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe

WriteRegistryKey,SoftwareMicrosoft

C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe

WriteRegistryKey,Juat

C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe

DeleteFile,C:UsersGatewayAppDataRoamingGolaxyeq.exe

C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe

WriteFile,C:UsersGatewayAppDataRoamingGolaxyeq.exe

C:UsersGatewayDesktop2BB9A1C4B35719ABD022C605A546D6C4.exe

WriteFile,C:UsersGatewayAppDataRoamingGolaxyeq.exe

Executing->DeviceHarddiskVolume3SandboxGatewayAnalyzerusercurrentAppDataRoamingGolaxyeq.exe(PID:16540)

Command-line:"C:UsersGatewayAppDataRoamingGolaxyeq.exe"

C:UsersGatewayAppDataRoamingGolaxyeq.exe

WriteRegistryKey,SoftwareMicrosoftJuat

C:UsersGatewayAppDataRoamingGolaxyeq.exe

WriteRegistryKey,f62bfi

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:WindowsSystem32 askhost.exe(PID:1992)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:WindowsSystem32dwm.exe(PID:2976)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:UsersGatewayAppDataLocalMicrosoftSkyDriveSkyDrive.exe(PID:3484)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFiles(x86)GoogleDrivegoogledrivesync.exe(PID:3496)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFilesSandboxieSbieCtrl.exe(PID:3524)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFiles(x86)EvernoteEvernoteEvernoteClipper.exe(PID:3584)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,K:ProgramFiles(x86)KasperskyLabKasperskyEndpointSecurity8forWindowsavp.exe(PID:3592)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:UsersGatewayDesktopgoagent-goagent-a51d6a2localgoagent.exe(PID:3600)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:WindowsSystem32conhost.exe(PID:3608)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFilesBOINCoincmgr.exe(PID:3696)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:UsersGatewayDesktopgoagent-goagent-a51d6a2localpython27.exe(PID:3704)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFilesBOINCoinctray.exe(PID:3776)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,K:SkyDriveProgramsVBSherloggerSherlogger.exe(PID:3840)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,K:ProgramFiles(x86)BaiduYunaiduyun.exe(PID:3868)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFiles(x86)GoogleDrivegoogledrivesync.exe(PID:3952)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFilesBOINCoinc.exe(PID:3964)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:WindowsSystem32conhost.exe(PID:3972)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramFiles(x86)alipaySafeTransactionAlipaySafeTran.exe(PID:17800)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:ProgramDataBOINCprojectswww.worldcommunitygrid.orgwcgrid_dsfl_vina_6.25_windows_x86_64(PID:57092)

C:UsersGatewayAppDataRoamingGolaxyeq.exe(PID:16540)

AccessPROTECTEDProgram,C:WindowsSystem32conhost.exe(PID:58156)

Rollingback...

Analysisended

Reason:Malwaredetectedandrolledback

Anomalies:

-Modifiesprotectedresource.Theexecutablemodifiesimportantresources(files,processes,etc.)


ZBotTrojanRemover是一款可以检测并查杀ZBot变种木马病毒的查杀工具,ZBot变种木马会在电脑中潜伏,并且专门针对用户的各种银行账号,是一种威胁非常大的病毒,大家一定要小心防范。

展开内容

应用信息

  • 厂商:阿里巴巴(中国)有限公司
  • 包名:com.zyx.wifi
  • MD5:1039926bacf7a222d3aa8a58da19929b
  • 年龄:12+
  • 备案号:备案号:京4B-201565003-65K
  • 需要网络 无广告
精彩发现

猜您喜欢

热门推荐

类似应用

网友评论

70人参与,70条评论
  • 评论需审核后才能显示

同类排行

即下(1,119.4M)