-
ZBot病毒查杀工具(ZBot Trojan Remover)
v1.7 绿色版 -
- 软件大小:554KB
- 软件语言:中文
- 软件类型:国产软件 / 病毒防治
- 软件授权:免费软件
- 更新时间:2017-07-17 17:47
- 软件等级:
- 应用平台:WinXP, Win7
- 软件官网:https://www.itmop.com/
相关软件
北京鸿业CAD病毒查杀工具v1.0 绿色免费版
116KB/中文/10.0
腾讯哈勃锁屏敲诈木马专杀工具增强版
704KB/中文/10.0
腾讯哈勃Xshell后门查杀工具官方版
1.8M/中文/10.0
(landrover remote)路虎远程启动appvR1.67.
18.9M/中文/10.0
09 DOTA1新地图中文正式版
60M/中文/9.6
软件介绍人气软件精品推荐相关文章网友评论下载地址
-
ZBot病毒查杀工具(ZBot Trojan Remover)是一款好用的病毒查杀软件,可以检测并查杀ZBot变种木马病毒,这病毒可以从网站上窃取用户的银行信息,信用卡信息和paypal账户的登录凭据。欢迎来IT猫扑网下载!
病毒样本:
Malware Analyzer by HX
Analysis started
MD5: 2BB9A1C4B35719ABD022C605A546D6C4
Executing -> \Device\HarddiskVolume3\Users\Gateway\Desktop\2BB9A1C4B35719ABD022C605A546D6C4.exe (PID: 13440)
Command-line: "C:\Users\Gateway\Desktop\2BB9A1C4B35719ABD022C605A546D6C4.exe"
C:\Users\Gateway\Desktop\2BB9A1C4B35719ABD022C605A546D6C4.exe
WriteFile, C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe
C:\Users\Gateway\Desktop\2BB9A1C4B35719ABD022C605A546D6C4.exe
WriteRegistryKey, Software\Microsoft
C:\Users\Gateway\Desktop\2BB9A1C4B35719ABD022C605A546D6C4.exe
WriteRegistryKey, Juat
C:\Users\Gateway\Desktop\2BB9A1C4B35719ABD022C605A546D6C4.exe
DeleteFile, C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe
C:\Users\Gateway\Desktop\2BB9A1C4B35719ABD022C605A546D6C4.exe
WriteFile, C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe
C:\Users\Gateway\Desktop\2BB9A1C4B35719ABD022C605A546D6C4.exe
WriteFile, C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe
Executing -> \Device\HarddiskVolume3\Sandbox\Gateway\Analyzer\user\current\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
Command-line: "C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe"
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe
WriteRegistryKey, Software\Microsoft\Juat
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe
WriteRegistryKey, f62bfi
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
accessPROTECTEDProgram, C:\Windows\System32\taskhost.exe (PID: 1992)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Windows\System32\dwm.exe (PID: 2976)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Users\Gateway\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (PID: 3484)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Program Files (x86)\Google\Drive\googledrivesync.exe (PID: 3496)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Program Files\sandboxie\SbieCtrl.exe (PID: 3524)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (PID: 3584)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, K:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 8 for Windows\avp.exe (PID: 3592)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Users\Gateway\Desktop\goagent-goagent-a51d6a2\local\goagent.exe (PID: 3600)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Windows\System32\conhost.exe (PID: 3608)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Program Files\BOINC\boincmgr.exe (PID: 3696)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Users\Gateway\Desktop\goagent-goagent-a51d6a2\local\python27.exe (PID: 3704)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Program Files\BOINC\boinctray.exe (PID: 3776)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, K:\SkyDrive\Programs\vb\Sherlogger\Sherlogger.exe (PID: 3840)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, K:\Program Files (x86)\BaiduYun\baiduyun.exe (PID: 3868)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Program Files (x86)\Google\Drive\googledrivesync.exe (PID: 3952)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Program Files\BOINC\boinc.exe (PID: 3964)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Windows\System32\conhost.exe (PID: 3972)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Program Files (x86)\alipay\SafeTransaction\AlipaySafeTran.exe (PID: 17800)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\ProgramData\BOINC\projects\www.worldcommunitygrid.org\wcgrid_dsfl_vina_6.25_windows_x86_64 (PID: 57092)
C:\Users\Gateway\AppData\Roaming\Gola\xyeq.exe (PID: 16540)
AccessPROTECTEDProgram, C:\Windows\System32\conhost.exe (PID: 58156)
Rolling back...
Analysis ended
Reason: Malware detected and rolled back
Anomalies:
- Modifies protected resource. The executable modifies important resources (files, processes, etc.)
-
更多>>软件截图
推荐软件
360杀毒电脑版 64.0M
下载/中文/2v7.0.0.1030A 官方正式版360安全卫士13 83.3M
下载/中文/20v13.0.0.2113 官方最新版ESET NOD32 Antivirus防病毒软件 65M
下载/多国语言[中文]/3v15.1.12.0 简体中文免费版瑞星杀毒软件最新版 46.4M
下载/中文/252v25.00.08.99 免费版金山毒霸电脑版 162.9M
下载/中文/604v2022.07.13 永久免费版eset endpoint security商业版直装免激活 161M
下载/中文/2v8.1.2031 中文安装版可牛杀毒顽固木马专杀工具 193KB
下载/中文/1v1.0 绿色简体中文版百度安全卫士电脑版 1.9M
下载/中文/5v8.2.0.7227 官方最新版
其他版本下载
精品推荐
相关文章
-
下载地址
-
ZBot病毒查杀工具(ZBot Trojan Remover) v1.7 绿色版
-
-
查看所有评论>>网友评论
-
更多>>猜你喜欢