进程和DLL文件查询
Order.exe 进程资料
Order.exe是什么进程?
进程信息 | |
进程文件: | Order.exe |
---|---|
进程名称: | Worm.Wukill.g |
中文描述: | Trojan.Dockiller.b病毒,这是一种Windows下的PE病毒,它是由VB编写的木马病毒,以pCode方式编译而成,看上去酷似Word文档。中此病毒后,它会先复制自身到%WINDIR%\system\regedit.exe和%WINDIR%\system32\order.exe,再在注册表[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\RUN]项中添加"OFFICE"=%WINDIR%\system32\order.exe。该病毒的主要目的是试图获取用户系统密码。用户双击病毒文件时,会显示消息“无法打开高版本的Word文件”,造成假象,迷惑用户。手工清除时请先结束病毒进程,再删除%WINDIR%\system\regedit.exe和%WINDIR%\system32\order.exe,最后清除注册表中相关启动项即可。 |
程序用途: | 病毒木马 |
进程位置: | \WINDOWS\System32\ |
进程作者: | 未知 |
进程属性 | ||
系统进程: | 是 | |
---|---|---|
应用程序: | 否 | |
后台程序: | 是 | |
使用访问: | 是 | |
访问网络: | 否 | |
进程行为 | ||
危险等级: | 0 (N/A无危险 5最危险) | |
间碟软件: | 是 | |
广告软件: | 是 | |
病毒进程: | 是 | |
木马进程: | 是 |
进程查询结果由 xpcha.com 提供
热门进程
- QQLiveUp.exe QQLiveUp.exe
- pcclient.exe Trend Micro PC-Cillin Component
- searchindexer.exe
- lsass.exe Local Security Authority Service
- dwm.exe dwm.exe
- feedback.exe feedback.exe
- ocraware.exe Ocraware
- lviss.exe Worm.Ircbot.Gen.lviss
- msascui.exe Microsoft Windows Defender Antispyware
- ereg.exe
- devenv.exe Microsoft Visual Studio
- InfoMgr.exe InfoMgr.exe
- vaioupdt.exe Sony Vaio Update
- wmiadap.exe AutoDiscovery/AutoPurge (ADAP) Service
- LienVandeKelderrr.exe LienVandeKelderrr.exe
- lkcitdl.exe National Instruments Part of Logos
- mscoree.dll Microsoft .NET Runtime Execution Engine
- MotoMidMan.exe MotoMidMan.exe
- pcfmgr.exe PowerPannel
- lsm.exe lsm.exe
网友正在查
- Order.exe
- NeteaseBarESCore.exe
- gearaspi.dll
- FirewallGUI.exe
- msdev.exe
- systemram.exe
- mssvces.exe
- netflx.dll
- neodvdstd.exe
- LLV.EXE
- ONENOTE.EXE
- mfc42enu.dll
- chao.exe
- esyndicateinst.exe
- unfspad.exe
- mbox2c.exe
- msoobd.exe
- Servor.exe
- Wn_sys8x.sys
- ssk3.exe
- userinit32.exe
- zhotkey.exe
- ddcyv.dll
- msmc.exe
- FileRubber.exe
- cctrust.dll
- VMSnap1.exe
- FileBackup.exe
- Winl0g0n.exe
- AdPop.Exe
- ravseteuy.exe
- wmp54gsv1_1.exe
- fips.exe
- WangWang.exe
- msvc.exe
- msjtes40.dll
- hpqthb08.exe
- msnsspc.dll
- bgoomain.exe
- ICCLIENT.exe
- makeIE.exe
- jar50.dll
- archpr.exe
- registry.exe
- systm32.exe
- MacromediaLicensing.exe
- popup.dat
- ftpclient.exe
- jiffybar.exe
- wmencagt.exe
- scmj.exe
- win32spl.dll
- mfcn42d.dll
- pqv2isvc.exe
- MemStat.exe
- mswinsck.ocx
- mspmsnsv.dll
- SVNService.exe
- CCProxy.exe
- 34yf28fg.exe
- SMmmonior.exe
- sens.dll
- dmcpl.exe
- uninstall.exe
- wstime.exe
- FPinger.exe
- ShadowSetting.exe
- AVWEBGRD.EXE
- SN填写专家.exe
- upwizun.exe
- administrator.exe
- Update_OB.exe
- admilliservx.dll
- oscm3.exe
- ams60.exe
- EzBkGndMusic.exe
- avsynmgr.exe
- navbrowser.exe
- winasse.exe
- osserver.exe
- ofant.exe
- CoralQQ.exe
- ramsaverpro.exe
- msysdll.exe
- sqlexp.exe
- attune_cu.exe
- QQHook.dll
- CaptureOne.exe
- calrem.exe
- CheckInstall.exe
- Winsys.exe
- 006.exe
- Syswindow.exe
- alive_.exe
- fsrw.exe
- drvddll.exe
- wincsql.exe
- restory.exe
- sskupdater4bp5.exe
- tracerpt.exe