病毒名称:
Worm.P2P.Delf.ab
类别: 蠕虫病毒
病毒资料:
破坏方法:
1.修改注册表:
1
HKEY_CURRENT_USER\Software\Microsoft
\Internet EXPlorer\Main
"start page" :
HTTP\\WWW.UEUSOBRASILEIROCOMMUITOORGUL
HOCOMMUITOAMOROHOHOH
2
HKEY_LOCAL_MACHINE\Software\Microsoft
\Windows\Currentversion\Run
"appboost.exe" : %SYSTEM%\APPBOOST.EXE
3
HKEY_LOCAL_MACHINE\Software\Microsoft
\Windows\Currentversion\Run
"appbost.exe" : %SYSTEM%\APPBOST.EXE
4
HKEY_LOCAL_MACHINE\Software\Microsoft
\Windows\Currentversion\Run
"tappboost" : %WINDOWS%\SYS32\TAPPBOOST.EXE
5
HKEY_CURRENT_USER\Software\Microsoft
\Windows\Currentversion\Run
"appboost.exe" : %SYSTEM%\APPBOOST.EXE
6
HKEY_CURRENT_USER\Software\Microsoft
\Windows\Currentversion\Run
"appbost.exe" : %SYSTEM%\APPBOST.EXE
7
HKEY_CURRENT_USER\Software\Microsoft
\Windows\Currentversion\Run
"tappboost" : %WINDOWS%\SYS32\TAPPBOOST.EXE
8
HKEY_LOCAL_MACHINE\Software\Microsoft
\Windows\Currentversion\RunServices
"appboost.exe" : %SYSTEM%\APPBOOST.EXE
9
HKEY_LOCAL_MACHINE\Software\Microsoft
\Windows\Currentversion\RunServices
"appbost.exe" : %SYSTEM%\APPBOST.EXE
10
HKEY_LOCAL_MACHINE\Software\Microsoft
\Windows\Currentversion\RunServices
"tappboost" : %WINDOWS%\SYS32\TAPPBOOST.EXE
病毒的清除法:
使用光华反病毒软件,彻底删除。
病毒演示:
病毒FAQ:
Windows下的PE病毒。
发现日期:
2004-12-22
