【1】2020-06-21 07:46:02,系统防护,系统加固,reg.exe触犯注册表防护规则, 已阻止
操作进程:C:\Windows\System32\reg.exe
命令行:reg add "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SppExtComObj.exe" /f /v VerifierDlls /t REG_SZ /d "SppExtComObjHook.dll"
父进程:C:\Windows\SYSTEM32\cmd.exe
防护项目:映像劫持项
目标注册表:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SppExtComObj.exe\VerifierDlls
操作类型:【修改】
数据内容:SppExtComObjHook.dll
操作结果:已阻止
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
|