morfar.exe木马一直弹出游戏广告，搜不出来也清除不了

09:56:06:025,Morfar.exe,4560:0,4560,EXEC_create,C:\Users\Administrator\AppData\Roaming\iNotePad\pkg\Morfar.exe,parent_pid:9208 cmdline:'C:\Users\Administrator\AppData\Roaming\iNotePad\pkg\Morfar.exe' image_base:0x00000000008E0000 image_size:0x00038000 ,0x00000000 [操作成功完成。 ],
09:56:06:025,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Session Manager,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:026,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Session Manager,access:0x00000009 ,0x00000000 [操作成功完成。 ],
09:56:06:028,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Wow64\x86,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:028,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Wow64\x86\,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:028,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Session Manager,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:029,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Session Manager,access:0x00000009 ,0x00000000 [操作成功完成。 ],
09:56:06:033,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\FileSystem,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:033,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\FileSystem\LongPathsEnabled,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:034,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Session Manager,access:0x00000009 ,0x00000000 [操作成功完成。 ],
09:56:06:035,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Session Manager,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:035,Morfar.exe,4560:0,4560,FILE_open,C:\Users\Administrator\AppData\Roaming\iNotePad\pkg\iUtils.dll,access:0x00100021 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],
09:56:06:035,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:035,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:035,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\CustomLocale,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:036,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Language,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:036,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\MUI\UILanguages,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:036,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\MUI\UILanguages\zh-CN,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:036,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\MUI\UILanguages\zh-CN\Type,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:036,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\MUI\UILanguages\zh-CN\DefaultFallback,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:036,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\MUI\UILanguages\zh-CN\en-US,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:036,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\MUI\UILanguages\zh-CN\DefaultFallback,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:036,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\MUI\UILanguages\zh-CN\en-US,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:036,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\MUI\UILanguages\zh-CN\LCID,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:036,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\MUI\UILanguages\zh-CN\Type,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:036,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500,access:0x02000000 ,0x00000000 [操作成功完成。 ],
09:56:06:036,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\MUI\Settings\LanguageConfiguration,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:037,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500,access:0x02000000 ,0x00000000 [操作成功完成。 ],
09:56:06:037,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500,access:0x02000000 ,0x00000000 [操作成功完成。 ],
09:56:06:037,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\Control Panel\Desktop,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:037,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500,access:0x02000000 ,0x00000000 [操作成功完成。 ],
09:56:06:037,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\Control Panel\Desktop\MuiCached,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:037,Morfar.exe,4560:3616,4560,REG_getval,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\Control Panel\Desktop\MuiCached\MachinePreferredUILanguages,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:037,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:038,Morfar.exe,4560:0,4560,FILE_open,C:\Users\Administrator\AppData\Roaming\iNotePad\pkg\iUtils.dll,access:0x00120089 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:0,4560,FILE_open,C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.928_none_429ce31a8a8fefd2\GdiPlus.dll,access:0x00100021 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:0,4560,FILE_open,C:\Windows\SysWOW64\urlmon.dll,access:0x00100021 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],

09:56:06:048,Morfar.exe,4560:1384,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:4408,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:1384,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:4408,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:0,4560,FILE_open,C:\Windows\SysWOW64\wininet.dll,access:0x00100021 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:8276,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:8276,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:0,4560,FILE_open,C:\Windows\SysWOW64\IPHLPAPI.DLL,access:0x00100021 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:0,4560,FILE_open,C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.844_none_11adecdf30011423\comctl32.dll,access:0x00100021 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:4408,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:1384,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:4408,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:048,Morfar.exe,4560:0,4560,FILE_open,C:\Windows\SysWOW64\iertutil.dll,access:0x00100021 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],
09:56:06:049,Morfar.exe,4560:1384,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:049,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:049,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:049,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Sorting\Versions,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:049,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Sorting\Versions\,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],

义乌市傲芽电子商务商行..

是一款轻巧高效免费，电脑版功能强大，可以全面我们的电脑，小巧，占用资源小-2024最新版本

2024-11-23 10:11广告

立即查看

09:56:06:049,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Sorting\Versions\000603xx,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:049,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\CustomLocale,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:049,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\ExtendedLocale,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:050,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options,access:0x00000009 ,0x00000000 [操作成功完成。 ],
09:56:06:050,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:050,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:050,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\Control Panel\Desktop,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:050,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Compatibility32,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:050,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE,access:0x02000000 ,0x00000000 [操作成功完成。 ],
09:56:06:050,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Windows,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:050,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Windows\LoadAppInit_DLLs,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:051,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:051,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:051,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:051,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:051,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:051,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:051,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500_Classes\Local Settings,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:051,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500_Classes\Local Settings\Software\Microsoft,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:053,Morfar.exe,4560:0,4560,FILE_open,C:\Windows\WindowsShell.Manifest,access:0x001200A9 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],
09:56:06:053,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\SideBySide,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:053,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\ldap,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:053,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\ldap\LdapClientIntegrity,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:053,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\ldap,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:053,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\ldap,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:053,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\ldap,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:054,Morfar.exe,4560:0,4560,FILE_open,C:\Windows\SysWOW64\kernel.appcore.dll,access:0x00100021 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],
09:56:06:054,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:054,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:054,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:054,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:054,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy\Enabled,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:054,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:054,Morfar.exe,4560:0,4560,FILE_open,C:\Windows\SysWOW64\uxtheme.dll,access:0x00100021 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],
09:56:06:055,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:055,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:055,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:055,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Themes\Personalize,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:055,Morfar.exe,4560:3616,4560,REG_getval,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Themes\Personalize\AppsUseLightTheme,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:056,Morfar.exe,4560:0,4560,FILE_open,C:\Windows\SysWOW64\windows.storage.dll,access:0x00100021 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],

09:56:06:056,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:056,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:057,Morfar.exe,4560:0,4560,FILE_open,C:\Windows\SysWOW64\wldp.dll,access:0x00100021 alloc_size:0 attrib:0x00000000 share_access:0x00000005 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],
09:56:06:057,Morfar.exe,4560:1384,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:057,Morfar.exe,4560:1384,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\CI,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D},access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Category,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Name,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\RelativePath,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500,access:0x02000000 ,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\2,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:3616,4560,REG_getval,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\AppData,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Sorting\Versions\000603xx,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:058,Morfar.exe,4560:0,4560,FILE_open,C:\Windows\Globalization\Sorting\SortDefault.nls,access:0x00120089 alloc_size:0 attrib:0x00000000 share_access:0x00000001 disposition:0x00000001 options:0x00000060 ,0x00000000 [操作成功完成。 ],
09:56:06:059,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Sorting\Ids,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:059,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Sorting\Ids\zh,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:059,Morfar.exe,4560:3616,4560,FILE_touch,C:\Users\Administrator\AppData\Roaming\iNotePad\iMiniDump,access:0x00100001 alloc_size:0 attrib:0x00000080 share_access:0x00000003 disposition:0x00000002 options:0x00200021 ,0x00000000 [操作成功完成。 ],
09:56:06:059,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:059,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],

09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\MonitorRegistry,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_USERS\S-1-5-21-3300882840-3968337680-1944493803-500_Classes,access:0x02000000 ,0x00000000 [操作成功完成。 ],
09:56:06:060,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:061,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\FolderValueFlags,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:061,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:061,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:061,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:061,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9},access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:061,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9}\DriveMask,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:061,Morfar.exe,4560:3616,4560,FILE_touch,C:\Users\Administrator\AppData\Roaming\iNotePad\LnkIco,access:0x00100001 alloc_size:0 attrib:0x00000080 share_access:0x00000003 disposition:0x00000002 options:0x00200021 ,0x00000000 [操作成功完成。 ],
09:56:06:062,Morfar.exe,4560:3616,4560,FILE_touch,C:\Users\Administrator\AppData\Roaming\iNotePad\Temp,access:0x00100001 alloc_size:0 attrib:0x00000080 share_access:0x00000003 disposition:0x00000002 options:0x00200021 ,0x00000000 [操作成功完成。 ],
09:56:06:062,Morfar.exe,4560:3616,4560,FILE_touch,C:\Users\Administrator\AppData\Roaming\iNotePad\cfg,access:0x00100001 alloc_size:0 attrib:0x00000080 share_access:0x00000003 disposition:0x00000002 options:0x00200021 ,0x00000000 [操作成功完成。 ],
09:56:06:062,Morfar.exe,4560:3616,4560,FILE_touch,C:\Users\Administrator\AppData\Roaming\iNotePad\Log,access:0x00100001 alloc_size:0 attrib:0x00000080 share_access:0x00000003 disposition:0x00000002 options:0x00200021 ,0x00000000 [操作成功完成。 ],
09:56:06:062,Morfar.exe,4560:3616,4560,FILE_touch,C:\Users\Administrator\AppData\Roaming\iNotePad\Update,access:0x00100001 alloc_size:0 attrib:0x00000080 share_access:0x00000003 disposition:0x00000002 options:0x00200021 ,0x00000000 [操作成功完成。 ],
09:56:06:063,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\iNotePad,access:0x00000001 ,0x00000000 [操作成功完成。 ],
09:56:06:063,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\iNotePad\vs,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:063,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\iNotePad\ch,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:063,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\iNotePad\gid,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:063,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Session Manager,access:0x00000009 ,0x00000000 [操作成功完成。 ],
09:56:06:064,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System,access:0x00020019 ,0x00000000 [操作成功完成。 ],
09:56:06:064,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:064,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorAdmin,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:065,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Notifications\41940B3AA3BC0875,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:065,Morfar.exe,4560:3616,4560,REG_getval,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Notifications\41940B3AA3BC0875,type:0x00000000 datalen:0 data:,0x00000000 [操作成功完成。 ],
09:56:06:066,Morfar.exe,4560:3616,4560,REG_openkey,HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\bam\State\UserSettings\S-1-5-21-3300882840-3968337680-1944493803-500,access:0x000F003F ,0x00000000 [操作成功完成。 ],
09:56:06:067,Morfar.exe,4560:0,4560,EXEC_destroy,C:\Users\Administrator\AppData\Roaming\iNotePad\pkg\Morfar.exe,parent_pid:9208 cmdline:'C:\Users\Administrator\AppData\Roaming\iNotePad\pkg\Morfar.exe' ,0x00000000 [操作成功完成。 ],

您好，您使用火绒安全工具-专杀工具了吗？您的游戏广告是什么时候开始弹出的呢？您最近下载过什么软件吗？或者您留一下QQ，我们具体帮您看一下~

您好，一直没有收到您的回复，不知道您的问题解决了吗？

朋友的电脑，应该是安装万能五笔以后出现的。
开着火绒就没有弹窗广告了，关了还会出来

感谢您的反馈，这边建议您开着火绒，会给电脑提供一定的防护病毒作用并且可以拦截弹窗，建议定期进行查杀，后续还有问题及时反馈~

扫二维码下载贴吧客户端

下载贴吧APP
看高清直播、视频！

8回复贴，共1页

<<返回火绒吧

分享到:

日	一	二	三	四	五	六