[必看] 好神奇的闪画《我知道你心里的秘密》（流行于美国校园的扑克闪画）--------其实我也很想知道为什么

[汀澜]

 

[盗版情人]

附件内zip文件（文件名 测耖.zip)含有 名为：TROJ KATHER.A 病毒，感染System32\winss.exe，请已经做过解压缩或打开了zip的桶子们，对你的机器进行清病毒处理

 

[盗版情人]

TROJ_KATHER.A
QUICK LINKS Solution

--------------------------------------------------------------------------------

Virus type: Trojan

Destructive: No

Aliases: Win32.Kather, Win32/Kather

Overall risk rating: Very Low

--------------------------------------------------------------------------------

Reported infections: Low

Damage Potential: Low

Distribution Potential: Low



--------------------------------------------------------------------------------

Description:

This non-memory resident Trojan disguises itself as a non-malicious animation file. Upon execution, it opens an Internet browser window and runs a dropped animation file, Illus_Ch.swf, which is in Chinese.

In the background, this Trojan drops another file, Winss.exe, which sets the home page to:

http://cn.yahoo.com.

This Trojan runs on Windows 95, 98, ME, NT, 2000, and XP.

Solution:

Removing Autostart Entries from the Registry

Removing autostart entries from the registry prevents the malware from executing during startup.

Open Registry Editor. To do this, click Start>Run, type REGEDIT, then press Enter.
In the left panel, double-click the following:
HKEY_LOCAL_MACHINE>Software>Microsoft>
Windows>CurrentVersion>Run
In the right panel, locate and delete the entry:
MSOleath32
Close Registry Editor.
Resetting Internet Explorer Home Page and Search Page

This procedure restores the Internet Explorer home page and search page to the default settings.

* Close all Internet Explorer windows.
* Open Control Panel. Click Start>Settings>Control Panel
* Double-click the Internet Options icon.
* In the Internet Properties window, click the Programs tab.
* Click the “Reset Web Settings…” button.
* Select “Also reset my home page.” Click Yes.
* Click OK.

 

[不明飞行鸟]

恩恩

 

[河马牛]

最初由 不明飞行鸟 发布
叫RIVEN查他IP，封死！

那也用不着赶尽杀绝吧朋友，做人留一面，日后好相见啊！！！

 

[河马牛]

我识破了！

其实我们先看到的六张牌在最后都没有出现，比如先看到的红桃K和黑桃K，在最后被换成了草花和方板，仅此而已，哈哈！

 

[河马牛]

最初由 盗版情人 发布
TROJ_KATHER.A
QUICK LINKS Solution

--------------------------------------------------------------------------------

Virus type: Trojan

Destructive: No

Aliases: Win32.Kather, Win32/Kather

Overall risk rating: Very Low

--------------------------------------------------------------------------------

Reported infections: Low

Damage Potential: Low

Distribution Potential: Low



--------------------------------------------------------------------------------

Description:

This non-memory resident Trojan disguises itself as a non-malicious animation file. Upon execution, it opens an Internet browser window and runs a dropped animation file, Illus_Ch.swf, which is in Chinese.

In the background, this Trojan drops another file, Winss.exe, which sets the home page to:

http://cn.yahoo.com.

This Trojan runs on Windows 95, 98, ME, NT, 2000, and XP.

Solution:

Removing Autostart Entries from the Registry

Removing autostart entries from the registry prevents the malware from executing during startup.

Open Registry Editor. To do this, click Start>Run, type REGEDIT, then press Enter.
In the left panel, double-click the following:
HKEY_LOCAL_MACHINE>Software>Microsoft>
Windows>CurrentVersion>Run
In the right panel, locate and delete the entry:
MSOleath32
Close Registry Editor.
Resetting Internet Explorer Home Page and Search Page

This procedure restores the Internet Explorer home page and search page to the default settings.

* Close all Internet Explorer windows.
* Open Control Panel. Click Start>Settings>Control Panel
* Double-click the Internet Options icon.
* In the Internet Properties window, click the Programs tab.
* Click the “Reset Web Settings…” button.
* Select “Also reset my home page.” Click Yes.
* Click OK.

THX！！！

 

[浪客TANXIN]

这是木马程序，害人的

 

[汀澜]

Re: Re: Re: ^-^

:blink:

 

[Bingo2]

？？？？？？？？？？？？？？？？？？？