病毒名称:
Trojan.Bluefire.041
类别: 木马病毒
病毒资料:
破坏方法:
后门病毒,打开并监听TCP端口:19191,等待远程连接。
病毒支持如下命令:
help exit ver list passwd
clearpw sysinfo halt screen sice?
force logoff shutdown reboot poweroff
kill [Process ID]
hide [desktop/taskbar/start/trayicon/clock]
show [desktop/taskbar/start/trayicon/clock]
open [monitor/driver/FTP/http [dir]]
close [monitor/driver/ftp/http]
catch [Jpeg Filename]
disable [mouse/desktop/task/taskbar/start/cad]
enabled [mouse/desktop/task/taskbar/start/cad]
changeb [on/off]
charspy [result/on/off]
keyspy [result/on/off]
snapexe/unsnapexe
recstart[wav filename]/recstop/recstate
cmd [dos command line]
run [filename]
chat [messages you want to send]
bladd [filename]/blview/blclear
病毒的清除法:
使用光华反病毒软件,彻底删除。
病毒演示:
病毒FAQ:
Windows下的PE病毒。
发现日期:
2003-10-20