SHA256: c6bdc4334457fb56f43b8fa7624d4e0e3da59bcfdc8eb0d4fad28034d5d0be8f
File name: flashplayer20_ga_install.exe
Detection ratio: 6 / 53
Analysis date: 2016-01-12 14:09:17 UTC ( 4 minutes ago )
https://www.virustotal.com/en/fi ... nalysis/1452607757/
2016/1/12 22:12:49,C:\Users\AA\AppData\Local\Temp\EC87.tmp,26,Blocked ;修改受保护的注册表键 (HKLM\SYSTEM\ControlSet001\Control\SESSION MANAGER,PendingFileRenameOperations)
2016/1/12 22:13:01,C:\Users\AA\AppData\Local\Temp\EC87.tmp,53,Allowed ;执行应用程序 (C:\Users\AA\Desktop\1\flashplayer20_ga_install.exe)
2016/1/12 22:13:01,C:\Windows\Temp\DPTF\esif_assist.exe,53,Allowed ;执行应用程序 (\??\C:\windows\system32\conhost.exe 0xffffffff)
2016/1/12 22:13:01,C:\Windows\System32\conhost.exe,40,Allowed ;以修改权限打开进程或线程 (esif_assist.exe(pid=6028))
2016/1/12 22:13:04,C:\Windows\Temp\DPTF\esif_assist.exe,26,Blocked ;修改受保护的注册表键 (HKCU\Software\Microsoft\Windows\CurrentVersion\Run,BluetoothManage)
2016/1/12 22:13:06,C:\Windows\Temp\DPTF\esif_assist.exe,50,Allowed ;使用 DNS 解析服务访问网络
2016/1/12 22:13:08,C:\Windows\Temp\DPTF\esif_assist.exe,48,Allowed ;出站网络访问
|
发表于 2016-1-12 22:16:22
