进程和DLL文件查询
winnt.exe 进程资料
winnt.exe是什么进程?
进程信息 | |
| 进程文件: | winnt.exe |
|---|---|
| 进程名称: | Trojan.MoFei.a |
| 中文描述: | 该病毒又名墨菲,病毒采用UPX压缩,使自身能更迅速地通过网络传播,病毒会通过修改注册表的旧式智能卡驱动程序的注册项来启动自身。相应注册表键值为:HKLM\SYSTEM\ControlSet001\Services\SCardDrv或BRowse\ImagePath。病毒运行后扫描计算机、破解密码、复制病毒体,病毒会在当前系统中添加新用户“tsinternetuser”到管理员组,并设置口令,然后将自己植入到IEXPLORER.EXE和LSASS.EXE中,随着浏览器的启动而启动。 病毒还会定时到指定的网站上下载程序。病毒还会收集用户计算机上的相关信息。 |
| 程序用途: | 后门木马病毒以窃取信息为主。 |
| 进程位置: | windir |
| 进程作者: | 未知 |
进程属性 | ||
| 系统进程: | 否 | |
|---|---|---|
| 应用程序: | 否 | |
| 后台程序: | 是 | |
| 使用访问: | 是 | |
| 访问网络: | 否 | |
进程行为 | ||
| 危险等级: | 0 (N/A无危险 5最危险) | |
| 间碟软件: | 是 | |
| 广告软件: | 是 | |
| 病毒进程: | 是 | |
| 木马进程: | 是 | |
进程查询结果由 xpcha.com 提供
热门进程
- QQLiveUp.exe QQLiveUp.exe
- pcclient.exe Trend Micro PC-Cillin Component
- searchindexer.exe
- lsass.exe Local Security Authority Service
- dwm.exe dwm.exe
- feedback.exe feedback.exe
- ocraware.exe Ocraware
- lviss.exe Worm.Ircbot.Gen.lviss
- msascui.exe Microsoft Windows Defender Antispyware
- ereg.exe
- devenv.exe Microsoft Visual Studio
- InfoMgr.exe InfoMgr.exe
- vaioupdt.exe Sony Vaio Update
- wmiadap.exe AutoDiscovery/AutoPurge (ADAP) Service
- LienVandeKelderrr.exe LienVandeKelderrr.exe
- lkcitdl.exe National Instruments Part of Logos
- mscoree.dll Microsoft .NET Runtime Execution Engine
- MotoMidMan.exe MotoMidMan.exe
- pcfmgr.exe PowerPannel
- lsm.exe lsm.exe
网友正在查
- winnt.exe
- nsef.dll
- Cfinet32.exe
- NetBarThunder.exe
- exploreb.exe
- AWall.exe
- BWMeter.exe
- upsd.exe
- mediaaccessinstpack.exe
- gjlqsyjp.exe
- MagBox.exe
- ahfp.exe
- typestar.exe
- tt1player.exe
- funplayer.exe
- finder.com
- opistat.exe
- BDSRHOOK.DLL
- vsmvhk.dll
- 379d19e0.dll
- explorere.exe
- avirchk.exe
- ylive.exe
- KPDrv4XP.EXE
- gimmygames.exe
- finder.exe
- SRDiscW.exe
- nweb.exe
- eagle2.exe
- iexplorere.exe
- smiptray.exe
- services.exe
- capabilitymanager.exe
- ico.exe
- killer_qqinvite.exe
- iMusic.exe
- emedtray.exe
- MyManager.exe
- qse.exe
- mqsvc.exe
- inter.exe
- rk.exe
- mwtkwro.exe
- External.exe
- NETSTART.exe
- aucbnpn.exe
- KvDetect.exe
- wapiit.exe
- javaws.exe
- pdfspme_win.exe
- ahqrun.exe
- regscv.exe
- auagent.exe
- 我的相片.pif
- ifrmewrk.exe
- inetsvr.exe
- qmgrprxy.dll
- hpgs2wnf.exe
- tvren-nettv.exe
- ezdesk.exe
- DMedia.exe
- wdfmgr.exe
- mmapi.dll
- SysHotKey.exe
- sbmx.exe
- aua1.exe
- luall.exe
- ntlsapi.dll
- msjter35.dll
- divxpro505bundle.exe
- SYSMON32.EXE
- w32backdoor-egl.exe
- Iciba.exe
- achtung.exe
- cfsys.dll
- sti_ci.dll
- NSStarter.exe
- sed.exe
- dpagnt.exe
- nilm.exe
- imgadmin.ocx
- discover.exe
- net32a.exe
- SCGina.dll
- apntex.exe
- jview,exe
- RSpider.exe
- ntosa32.exe
- ecomwr.dll
- PPLive.exe
- RoleId.exe
- RSCopy.exe
- MKTYPLIB.EXE
- reswin.exe
- so3d.exe
- vmware-authd.ex
- URLServ.exe
- U盘检测器.exe
- svc.exe
- dnlsvc.exe