进程和DLL文件查询
wintbp.exe 进程资料
wintbp.exe是什么进程?
进程信息 | |
进程文件: | wintbp.exe |
---|---|
进程名称: | Zotob.E Worm Module |
英文描述: | wintbp.exe is a process belonging to Zotob.E Worm. This process is a security risk and should be removed from your system. If found on your system make sure that you have downloaded the latest update for your antivirus application. |
中文描述: | WORM_RBOT.CBQ病毒,该病毒为Windows下的PE病毒。病毒运行后会在Windows的系统文件夹中产生病毒的自身拷贝文件wintbp.exe,并在注册表[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]下创建wintbp.exe="wintbp.exe"自启动项。该病毒利用微软的WindowsPlugandPlay漏洞通过网络进行传播。病毒产生任意的IP地址作为目标,随后检查目前IP地址机器的445端口是否打开。如果该端口打开,病毒就会对目标机器进行攻击。如果攻击失败或该机器的445端口未打开,病毒就会产生另外一个IP地址作为目标。另外,病毒还会在受感染机器上建立一个FTP服务器,随后该机器在端口7778打开一个远程的shell并通过该远程shell建立一个FTP脚本。另外,该病毒的传播行为只针对Windows2000,XP,和Server2003系统,因为微软的WindowsPlugandPlay漏洞只存在于这些系统上。 |
程序用途: | 未知 |
进程作者: | 未知 |
进程属于: | Zotob.E Worm |
进程属性 | ||
系统进程: | 否 | |
---|---|---|
应用程序: | 否 | |
后台程序: | 是 | |
使用访问: | 是 | |
访问网络: | 否 | |
进程行为 | ||
危险等级: | 4 (N/A无危险 5最危险) | |
间碟软件: | 否 | |
广告软件: | 否 | |
病毒进程: | 是 | |
木马进程: | 是 |
进程查询结果由 xpcha.com 提供
热门进程
- QQLiveUp.exe QQLiveUp.exe
- pcclient.exe Trend Micro PC-Cillin Component
- searchindexer.exe
- lsass.exe Local Security Authority Service
- dwm.exe dwm.exe
- feedback.exe feedback.exe
- ocraware.exe Ocraware
- lviss.exe Worm.Ircbot.Gen.lviss
- msascui.exe Microsoft Windows Defender Antispyware
- ereg.exe
- devenv.exe Microsoft Visual Studio
- InfoMgr.exe InfoMgr.exe
- vaioupdt.exe Sony Vaio Update
- wmiadap.exe AutoDiscovery/AutoPurge (ADAP) Service
- LienVandeKelderrr.exe LienVandeKelderrr.exe
- lkcitdl.exe National Instruments Part of Logos
- mscoree.dll Microsoft .NET Runtime Execution Engine
- MotoMidMan.exe MotoMidMan.exe
- pcfmgr.exe PowerPannel
- lsm.exe lsm.exe
网友正在查
- wintbp.exe
- popcorn72.exe
- glf8dglf8d.exe
- devgulp.exe
- winlogin.exe
- hkcontrol.exe
- capp.exe
- wpctrl95.exe
- SamingTray.exe
- libupdte.exe
- msimg32.dll
- convlog.exe
- CtrlProcess.exe
- QlbCtrl.exe
- SiMoCo.exe
- sp00lsv.exe
- SCRNSAVE.EXE
- roxwatchtray.exe
- tranicon.exe
- iexp_log.txt
- LiveBaduk.exe
- svctrl.exe
- mmrun.exe
- avcenter.exe
- grabber.exe
- faxcom.dll
- WinMerge.exe
- sqlmangr.exe
- Show_B.exe
- tt_reco.exe
- svhost.exe
- brmfrsmg.exe
- wxpload.exe
- netpopup.exe
- dbghelp.dll
- x1.exe
- unpack.dll
- ash.dll
- Photos.exe
- rasmans.dll
- winker.exe
- onenotem.exe
- winds.exe
- exploer.exe
- FFI.exe
- Aboutagirl.exe
- HookManager.exe
- smenu.exe
- netants.exe
- gpedit.dll
- stopw.exe
- alcxmntr.exe
- khost.exe
- gui.exe
- KVTray.exe
- messageblock.exe
- pexplorer.exe
- sfmatmsg.dll
- netdrv.exe
- winscard.dll
- acertmb.exe
- vietato.exe
- eveil.exe
- javaee.dll
- hpmanager.exe
- qqbq.exe
- cnyhkey.exe
- gcascleaner.exe
- intelmem.exe
- gwhotkey.exe
- avast.setup
- ipsecmon.exe
- OQYJIM.exe
- sac.exe
- pntiomon.exe
- dm1service.exe
- CYLEOU.exe
- billminder
- wlballoon.exe
- vb40016.dll
- iw3sp.exe
- securityutil.dll
- jdmail.exe
- AntiU.exe
- smartexplorer.exe
- updtsup3.exe
- tosobex.exe
- ipsecsnp.dll
- XWatDog.exe
- UninstFl.exe
- t.dll
- visio.exe
- UUCall3.exe
- wd.exe
- attune_st.exe
- Xmanager.exe
- adsldp.dll
- astrotoolbar.exe
- avicap32.dll
- OTwo.exe