进程和DLL文件查询
LienVandeKelderrr.exe 进程资料
LienVandeKelderrr.exe是什么进程?
进程信息 | |
| 进程文件: | LienVandeKelderrr.exe |
|---|---|
| 进程名称: | LienVandeKelderrr.exe |
| 中文描述: | WORM_MYTOB.BI病毒,该病毒为Windows下的PE病毒。病毒运行后会在Windows系统文件夹产生自身的拷贝文件LienVandeKelderrr.exe。并在注册表[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]下创建http://www.lienvandekelder.be="\LienVandeKelderrr.exe"自启动项,还通过修改注册表阻止WindowsXPSP2防火墙的运行。这个蠕虫还具有后门能力。蠕虫有一个内置的IRCbot,可以在收到远程恶意用户的命令后自动在机器上执行命令。这个IRCbot会连接到irc.blackcarder.net的IRC服务器上,然后加入名为#RWNT的信道。一旦连接上,蠕虫就会侦听来自远程用户的命令,然后在本地机器上执行命令,这样实际上就使远程用户控制了受感染的系统。 |
| 程序用途: | 未知 |
| 进程作者: | 未知 |
进程属性 | ||
| 系统进程: | 否 | |
|---|---|---|
| 应用程序: | 否 | |
| 后台程序: | 否 | |
| 使用访问: | 否 | |
| 访问网络: | 否 | |
进程行为 | ||
| 危险等级: | 2 (N/A无危险 5最危险) | |
| 间碟软件: | 否 | |
| 广告软件: | 否 | |
| 病毒进程: | 是 | |
| 木马进程: | 否 | |
进程查询结果由 xpcha.com 提供
热门进程
- QQLiveUp.exe QQLiveUp.exe
- pcclient.exe Trend Micro PC-Cillin Component
- searchindexer.exe
- lsass.exe Local Security Authority Service
- dwm.exe dwm.exe
- feedback.exe feedback.exe
- ocraware.exe Ocraware
- lviss.exe Worm.Ircbot.Gen.lviss
- msascui.exe Microsoft Windows Defender Antispyware
- ereg.exe
- devenv.exe Microsoft Visual Studio
- InfoMgr.exe InfoMgr.exe
- vaioupdt.exe Sony Vaio Update
- wmiadap.exe AutoDiscovery/AutoPurge (ADAP) Service
- LienVandeKelderrr.exe LienVandeKelderrr.exe
- lkcitdl.exe National Instruments Part of Logos
- MotoMidMan.exe MotoMidMan.exe
- mscoree.dll Microsoft .NET Runtime Execution Engine
- pcfmgr.exe PowerPannel
- lsm.exe lsm.exe
网友正在查
- LienVandeKelderrr.exe
- tca.exe
- UIHost.exe
- QQLiveUp.exe
- searchindexer.exe
- Tempserver.exe
- java.exe
- gdriver.exe
- mdnsresponder.exe
- windsl_mtu.exe
- members-area.exe
- mscoree.dll
- kmwom.exe
- trayicon.exe
- ewidoctrl.exe
- admlib32.exe
- winver.exe
- fsguiexe.exe
- antivirs.exe
- gvim.exe
- csmsv.exe
- pntask.exe
- fsguiexe.exe
- qttask.exe
- the weather channel.exe
- zdlm.exe
- eml.exe
- aclservice.exe
- RsFsa.exe
- rund1132.exe
- slmdmsr.exe
- mcwcecfg.exe
- win32sl.exe
- lnchbrd.exe
- pcclient.exe
- rmsvc.exe
- JXJ_QQ.Exe
- nipsvc.exe
- ws3lib.exe
- wuweb.dll
- wpa.exe
- 3p_1.exe
- dwwin.exe
- vpop3.exe
- ereg.exe
- fxzrggu.exe
- qcssbl9.exe
- SpyEmergency.exe
- Client99SE.exe
- OEMipm12.exe
- ProcessTamerTray.exe
- winsched.exe
- idman.exe
- adremove.exe
- AeroSidebarV2.exe
- hot_kiss.exe
- iw3sp.exe
- funfont1.1.exe
- nTuneService.exe
- TPLiveNotify.exe
- shd401lc.dll
- ravsuteibie.exe
- svcr.exe
- eabh.dll
- mmbun.exe
- cahootwebcard.exe
- online_party.exe
- nvscv32.exe
- HprSnap6.exe
- im_2.exe
- ashwebsv.exe
- efpeadm.exe
- winbas12.exe
- Dllexe32.exe
- UniExtract.exe
- smagent.exe
- dmknf.exe
- crscc.exe
- WCAD.exe
- icqlite.exe
- prockiller.exe
- realsched.exe
- ScenPlayer.exe
- rundlI32.exe
- iao.exe
- clramcleaner.exe
- fixtitle.exe
- rascfg.dll
- seeve.exe
- mysqld-max.exe
- sncopy.exe
- KVMonXP_9.kxp
- DeskAdServ.exe
- ramsys.exe
- secedit.exe
- avg23emc.exe
- fspc.exe
- secretmaker.exe
- cardmonitor1.0.exe
- ysbagree.exe