分享
 
 
 

Win32.Troj.StartPage.ig

王朝system·作者佚名  2008-08-14
窄屏简体版  字體: |||超大  

病毒名称(中文):

主页改霸

病毒别名:

Trojan.Win32.StartPage.ig[AVP]

威胁级别:

★★☆☆☆

病毒类型:

木马程序

病毒长度:

5632

影响系统:

Win9xWinNTWin2000WinXPWin2003

病毒行为:

编写工具:

传染条件:

发作条件:

系统修改:

1.在注册表主键"HKLMSOFTWAREMicrosoftInternetExplorerMain"下,添加如下键值:

"LocalPage"="%SystemRoot%secure.html"

2.在注册表主键"HKLMSOFTWAREMicrosoftInternetExplorerMain"下,添加如下键值:

"StartPage"="%SystemRoot%secure.html"

3.在注册表主键"HKLMSOFTWAREMicrosoftInternetExplorerMain"下,添加如下键值:

"Default_Page_URL"="%SystemRoot%secure.html"

4.在注册表主键"HKCUSOFTWAREMicrosoftInternetExplorerMain"下,添加如下键值:

"Default_Page_URL"="%SystemRoot%secure.html"

5.在注册表主键"HKCUSOFTWAREMicrosoftInternetExplorerMain"下,添加如下键值:

"startPage"="%SystemRoot%secure.html"

6.在注册表主键"HKCUSOFTWAREMicrosoftInternetExplorerMain"下,添加如下键值:

"LocalPage"="%SystemRoot%secure.html"

7.在"%SYSTEMROOT%"目录下,添加如下文件:"secure.html"

8.在hosts文件中以下行:(即当用户登录以下网站时,自动转向%SystemRoot%secure.html)

127.0.0.1ruworld.com

127.0.0.1maxxxhosters.com

127.0.0.1therealsearch.com

127.0.0.1thumbest-traffic.com

127.0.0.1600pics.com

127.0.0.1tonser.4-counter.com

127.0.0.1free.sinpussy.com

127.0.0.1hightcalldialer.com

127.0.0.1bestpornnews.com

127.0.0.1thumberland.com

127.0.0.1greg-search.com

127.0.0.1connect.online-dialer.com

127.0.0.10190-dialer.com

127.0.0.1approvedlinks.com

127.0.0.1install.xxxtoolbar.com

127.0.0.1download.buxomatic.com

127.0.0.1dia.4-counter.com

127.0.0.1vse-moe.biz

127.0.0.1crue.global-counter.com

127.0.0.1line-plus.com

127.0.0.1porno-links.biz

127.0.0.1download.tntdialer.com

127.0.0.1freelivesex.org

127.0.0.1free3xmatures.com

127.0.0.1bestpics.net

127.0.0.1dikai.com

127.0.0.1world-search.biz

127.0.0.11-se.com

127.0.0.158q.com

127.0.0.1aifind.cc

127.0.0.1aifind.info

127.0.0.1allneedsearch.com

127.0.0.1auto.ie.searchforge.com

127.0.0.1awebfind.biz

127.0.0.1best.royalsearch.net

127.0.0.1cracks.am

127.0.0.1default-homepage-network.com

127.0.0.1find.microgirls.com

127.0.0.1find4u.net

127.0.0.1freshvideogals.com

127.0.0.1i-lookup.com

127.0.0.1ie-search.com

127.0.0.1in.webcounter.cc

127.0.0.1itseasy.us

127.0.0.1just.find-itnow.com

127.0.0.1link.startmake.com

127.0.0.1mysearchnow.com

127.0.0.1nativehardcore.com

127.0.0.1qwertysearch123.biz

127.0.0.1search.ieplugin.com

127.0.0.1search.psn.cn

127.0.0.1searchbar.findthewebsiteyouneed.com

127.0.0.1searchcentrix.com

127.0.0.1searchmyrequest.com

127.0.0.1super-spider.com

127.0.0.1t.rack.cc

127.0.0.1teen-biz.com

127.0.0.1teenhqpics.com

127.0.0.1tits.hardcore4ever.net

127.0.0.1webcoolsearch.com

127.0.0.1wmmse.com

127.0.0.1008i.com

127.0.0.12fastsearch.net

127.0.0.18095.com

127.0.0.1alfa-search.com

127.0.0.1boredlife.com

127.0.0.1couldnotfind.com

127.0.0.1cracks.am

127.0.0.1daum.net

127.0.0.1dreamwiz.com

127.0.0.1find-itnow.com

127.0.0.1find4u.net

127.0.0.1firstbookmark.com

127.0.0.1gajai.com

127.0.0.1hand-book.com

127.0.0.1hao123.com

127.0.0.1hotsearchbox.com

127.0.0.1hotwebsearch.com

127.0.0.1hugesearch.net

127.0.0.1iquicksearch.com

127.0.0.1lookfor.cc

127.0.0.1naver.com

127.0.0.1nkvd.us

127.0.0.1novafuck.com

127.0.0.1ohcorea.com

127.0.0.1omega-search.com

127.0.0.1onet.pl

127.0.0.1power-search.info

127.0.0.1rightfinder.net

127.0.0.1search-1.net

127.0.0.1search-and-go.com

127.0.0.1search-dot.com

127.0.0.1search-space.com

127.0.0.1searchforge.com

127.0.0.1searching-the-net.com

127.0.0.1searchv.com

127.0.0.1searchxl.com

127.0.0.1seznam.cz

127.0.0.1slotch.com

127.0.0.1spidersearch.com

127.0.0.1startium.com

127.0.0.1ttjj.com

127.0.0.1viewpornkey.com

127.0.0.1wazzupnet.com

127.0.0.1websearch.com

127.0.0.1windowws.cc

127.0.0.1xgmm.com

127.0.0.1xwebsearch.biz

127.0.0.1yourbookmarks.ws

127.0.0.1collections.inhost.info

127.0.0.1collections.inhost2.info

127.0.0.1www.ruworld.com

127.0.0.1www.maxxxhosters.com

127.0.0.1www.therealsearch.com

127.0.0.1www.thumbest-traffic.com

127.0.0.1www.600pics.com

127.0.0.1www.hightcalldialer.com

127.0.0.1www.bestpornnews.com

127.0.0.1www.thumberland.com

127.0.0.1www.greg-search.com

127.0.0.1www.0190-dialer.com

127.0.0.1www.approvedlinks.com

127.0.0.1www.vse-moe.biz

127.0.0.1www.line-plus.com

127.0.0.1www.porno-links.biz

127.0.0.1www.freelivesex.org

127.0.0.1www.free3xmatures.com

127.0.0.1www.bestpics.net

127.0.0.1www.dikai.com

127.0.0.1www.world-search.biz

127.0.0.1www.1-se.com

127.0.0.1www.58q.com

127.0.0.1www.aifind.cc

127.0.0.1www.aifind.info

127.0.0.1www.allneedsearch.com

127.0.0.1www.awebfind.biz

127.0.0.1www.cracks.am

127.0.0.1www.default-homepage-network.com

127.0.0.1www.find4u.net

127.0.0.1www.freshvideogals.com

127.0.0.1www.i-lookup.com

127.0.0.1www.ie-search.com

127.0.0.1www.itseasy.us

127.0.0.1www.mysearchnow.com

127.0.0.1www.nativehardcore.com

127.0.0.1www.qwertysearch123.biz

127.0.0.1www.searchcentrix.com

127.0.0.1www.searchmyrequest.com

127.0.0.1www.super-spider.com

127.0.0.1www.teen-biz.com

127.0.0.1www.teenhqpics.com

127.0.0.1www.webcoolsearch.com

127.0.0.1www.wmmse.com

127.0.0.1www.008i.com

127.0.0.1www.2fastsearch.net

127.0.0.1www.8095.com

127.0.0.1www.alfa-search.com

127.0.0.1www.boredlife.com

127.0.0.1www.couldnotfind.com

127.0.0.1www.cracks.am

127.0.0.1www.daum.net

127.0.0.1www.dreamwiz.com

127.0.0.1www.find-itnow.com

127.0.0.1www.find4u.net

127.0.0.1www.firstbookmark.com

127.0.0.1www.gajai.com

127.0.0.1www.hand-book.com

127.0.0.1www.hao123.com

127.0.0.1www.hotsearchbox.com

127.0.0.1www.hotwebsearch.com

127.0.0.1www.hugesearch.net

127.0.0.1www.iquicksearch.com

127.0.0.1www.lookfor.cc

127.0.0.1www.naver.com

127.0.0.1www.nkvd.us

127.0.0.1www.novafuck.com

127.0.0.1www.ohcorea.com

127.0.0.1www.omega-search.com

127.0.0.1www.onet.pl

127.0.0.1www.power-search.info

127.0.0.1www.rightfinder.net

127.0.0.1www.search-1.net

127.0.0.1www.search-and-go.com

127.0.0.1www.search-dot.com

127.0.0.1www.search-space.com

127.0.0.1www.searchforge.com

127.0.0.1www.searching-the-net.com

127.0.0.1www.searchv.com

127.0.0.1www.searchxl.com

127.0.0.1www.seznam.cz

127.0.0.1www.slotch.com

127.0.0.1www.spidersearch.com

127.0.0.1www.startium.com

127.0.0.1www.ttjj.com

127.0.0.1www.viewpornkey.com

127.0.0.1www.wazzupnet.com

127.0.0.1www.websearch.com

127.0.0.1www.windowws.cc

127.0.0.1www.xgmm.com

127.0.0.1www.xwebsearch.biz

127.0.0.1www.yourbookmarks.ws

9.结束下列进程:

ATUPDATER.EXE

AUPDATE.EXE

AUTODOWN.EXE

AUTOTRACE.EXE

AUTOUPDATE.EXE

AVPUPD.EXE

AVWUPD32.EXE

AVXQUAR.EXE

CFIAUDIT.EXE

DRWEBUPW.EXE

ICSSUPPNT.EXE

ICSUPP95.EXE

LUALL.EXE

MCUPDATE.EXE

NUPGRADE.EXE

UPDATE.EXE

10.删除下面2个注册表键

HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRunControlPanel

HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRunKey2

发作现象:

非凡说明:

 
 
 
免责声明:本文为网络用户发布,其观点仅代表作者个人观点,与本站无关,本站仅提供信息存储服务。文中陈述内容未经本站证实,其真实性、完整性、及时性本站不作任何保证或承诺,请读者仅作参考,并请自行核实相关内容。
2023年上半年GDP全球前十五强
 百态   2023-10-24
美众议院议长启动对拜登的弹劾调查
 百态   2023-09-13
上海、济南、武汉等多地出现不明坠落物
 探索   2023-09-06
印度或要将国名改为“巴拉特”
 百态   2023-09-06
男子为女友送行,买票不登机被捕
 百态   2023-08-20
手机地震预警功能怎么开?
 干货   2023-08-06
女子4年卖2套房花700多万做美容:不但没变美脸,面部还出现变形
 百态   2023-08-04
住户一楼被水淹 还冲来8头猪
 百态   2023-07-31
女子体内爬出大量瓜子状活虫
 百态   2023-07-25
地球连续35年收到神秘规律性信号,网友:不要回答!
 探索   2023-07-21
全球镓价格本周大涨27%
 探索   2023-07-09
钱都流向了那些不缺钱的人,苦都留给了能吃苦的人
 探索   2023-07-02
倩女手游刀客魅者强控制(强混乱强眩晕强睡眠)和对应控制抗性的关系
 百态   2020-08-20
美国5月9日最新疫情:美国确诊人数突破131万
 百态   2020-05-09
荷兰政府宣布将集体辞职
 干货   2020-04-30
倩女幽魂手游师徒任务情义春秋猜成语答案逍遥观:鹏程万里
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案神机营:射石饮羽
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案昆仑山:拔刀相助
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案天工阁:鬼斧神工
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案丝路古道:单枪匹马
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案镇郊荒野:与虎谋皮
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案镇郊荒野:李代桃僵
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案镇郊荒野:指鹿为马
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案金陵:小鸟依人
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案金陵:千金买邻
 干货   2019-11-12
 
推荐阅读
 
 
 
>>返回首頁<<
 
靜靜地坐在廢墟上,四周的荒凉一望無際,忽然覺得,淒涼也很美
© 2005- 王朝網路 版權所有