“Win32.Hack.Surila.r”的意思、由来-中文百科全书

病毒标签

病毒别名：

处理时间：

威胁级别：★

中文名称：苏瑞拉

病毒类型：黑客程序

影响系统：Win9x / WinNT

病毒行为

这是一个后门病毒,该病毒会窃取用户机器上的重要信息,并且会关闭大量的进程,其中包括一些后门病毒的进程,会在下载文件对该病毒进行更新.

病毒危害

1.在开始菜单里面加入病毒:

C:\\Documents and Settings\\All Users\\「开始」菜单\\程序\\启动\\ra32helpb.exe

2.修改注册表,禁止使用注册表工具.

3.修改host:

127.0.0.1 www.avp.com

127.0.0.1 www.avp.ru

127.0.0.1 www.viruslist.com

127.0.0.1 viruslist.com

127.0.0.1 www.symantec.com

127.0.0.1 networkassociates.com

127.0.0.1 secure.nai.com

127.0.0.1 downloads1.kaspersky-labs.com

127.0.0.1 downloads2.kaspersky-labs.com

127.0.0.1 downloads3.kaspersky-labs.com

127.0.0.1 downloads4.kaspersky-labs.com

127.0.0.1 downloads-us1.kaspersky-labs.com

127.0.0.1 downloads-eu1.kaspersky-labs.com

127.0.0.1 kaspersky-labs.com

127.0.0.1 www.networkassociates.com

127.0.0.1 us.mcafee.com

127.0.0.1 f-secure.com

127.0.0.1 avp.com

127.0.0.1 www.sophos.com

127.0.0.1 sophos.com

127.0.0.1 www.ca.com

127.0.0.1 ca.com

127.0.0.1 securityresponse.symantec.com

127.0.0.1 symantec.com

127.0.0.1 mast.mcafee.com

127.0.0.1 my-etrust.com

127.0.0.1 www.kaspersky.com

127.0.0.1 www.f-secure.com

127.0.0.1 dispatch.mcafee.com

127.0.0.1 update.symantec.com

127.0.0.1 nai.com

127.0.0.1 www.nai.com

127.0.0.1 liveupdate.symantec.com

127.0.0.1 customer.symantec.com

127.0.0.1 rads.mcafee.com

127.0.0.1 trendmicro.com

127.0.0.1 liveupdate.symantecliveupdate.com

127.0.0.1 www.mcafee.com

127.0.0.1 mcafee.com

127.0.0.1 viruslist.com

127.0.0.1 www.my-etrust.com

127.0.0.1 download.mcafee.com

127.0.0.1 updates.symantec.com

127.0.0.1 kaspersky.com

127.0.0.1 www.trendmicro.com

4.结束大量的进程,其中还包括一些后门进程:

F-AGOBOT.EXE

HIJACKTHIS.EXE

_AVPM.EXE

_AVPCC.EXE

_AVP32.EXE

ZONEALARM.EXE

ZONALM2601.EXE

ZATUTOR.EXE

ZAPSETUP3001.EXE

ZAPRO.EXE

XPF202EN.EXE

WYVERNWORKSFIREWALL.EXE

WUPDT.EXE

WUPDATER.EXE

WRCTRL.EXE

WRADMIN.EXE

WNT.EXE

WNAD.EXE

WKUFIND.EXE

WINUPDATE.EXE

WINTSK32.EXE

WINSTART001.EXE

WINSTART.EXE

WINSSK32.EXE

WINRECON.EXE

WINPPR32.EXE

WINMAIN.EXE

WINLOGIN.EXE

WININITX.EXE

WININIT.EXE

WININETD.EXE

WINDOWS.EXE

WINDOW.EXE

WINACTIVE.EXE

WIN32US.EXE

WIN32.EXE

WIN-BUGSFIX.EXE

VisualGuard.exe

GfxAcc.exe

RAVMOND.exe

Systra.exe

MCUPDATE.EXE

CFIAUDIT.EXE

AVXQUAR.EXE

AUTOUPDATE.EXE

AUTOTRACE.EXE

AUTODOWN.EXE

AUPDATE.EXE

UPDATE.EXE

ICSUPP95.EXE

ICSSUPPNT.EXE

DRWEBUPW.EXE

LUALL.EXE

AVPUPD.EXE

AVWUPD32.EXE

wuamga.exe

taskmanagr.exe

wuamgrd.exe

wowpos32.exe

dailin.exe

rasmngr.exe

msssss.exe

backdoor.rbot.gen_(17).exe

backdoor.rbot.gen.exe

RB.EXE

IAOIN.EXE

OUTPOST.EXE

ra32help.exe

NUPGRADE.EXE

ATUPDATER.EXE

ra32helpa.exe

词条	Win32.Hack.Surila.r
释义	病毒标签病毒行为病毒危害病毒标签病毒别名：处理时间：威胁级别：★ 中文名称：苏瑞拉病毒类型：黑客程序影响系统：Win9x / WinNT 病毒行为这是一个后门病毒,该病毒会窃取用户机器上的重要信息,并且会关闭大量的进程,其中包括一些后门病毒的进程,会在下载文件对该病毒进行更新. 病毒危害 1.在开始菜单里面加入病毒: C:\\Documents and Settings\\All Users\\「开始」菜单\\程序\\启动\\ra32helpb.exe 2.修改注册表,禁止使用注册表工具. 3.修改host: 127.0.0.1 www.avp.com 127.0.0.1 www.avp.ru 127.0.0.1 www.viruslist.com 127.0.0.1 viruslist.com 127.0.0.1 www.symantec.com 127.0.0.1 networkassociates.com 127.0.0.1 secure.nai.com 127.0.0.1 downloads1.kaspersky-labs.com 127.0.0.1 downloads2.kaspersky-labs.com 127.0.0.1 downloads3.kaspersky-labs.com 127.0.0.1 downloads4.kaspersky-labs.com 127.0.0.1 downloads-us1.kaspersky-labs.com 127.0.0.1 downloads-eu1.kaspersky-labs.com 127.0.0.1 kaspersky-labs.com 127.0.0.1 www.networkassociates.com 127.0.0.1 us.mcafee.com 127.0.0.1 f-secure.com 127.0.0.1 avp.com 127.0.0.1 www.sophos.com 127.0.0.1 sophos.com 127.0.0.1 www.ca.com 127.0.0.1 ca.com 127.0.0.1 securityresponse.symantec.com 127.0.0.1 symantec.com 127.0.0.1 mast.mcafee.com 127.0.0.1 my-etrust.com 127.0.0.1 www.kaspersky.com 127.0.0.1 www.f-secure.com 127.0.0.1 dispatch.mcafee.com 127.0.0.1 update.symantec.com 127.0.0.1 nai.com 127.0.0.1 www.nai.com 127.0.0.1 liveupdate.symantec.com 127.0.0.1 customer.symantec.com 127.0.0.1 rads.mcafee.com 127.0.0.1 trendmicro.com 127.0.0.1 liveupdate.symantecliveupdate.com 127.0.0.1 www.mcafee.com 127.0.0.1 mcafee.com 127.0.0.1 viruslist.com 127.0.0.1 www.my-etrust.com 127.0.0.1 download.mcafee.com 127.0.0.1 updates.symantec.com 127.0.0.1 kaspersky.com 127.0.0.1 www.trendmicro.com 4.结束大量的进程,其中还包括一些后门进程: F-AGOBOT.EXE HIJACKTHIS.EXE _AVPM.EXE _AVPCC.EXE _AVP32.EXE ZONEALARM.EXE ZONALM2601.EXE ZATUTOR.EXE ZAPSETUP3001.EXE ZAPRO.EXE XPF202EN.EXE WYVERNWORKSFIREWALL.EXE WUPDT.EXE WUPDATER.EXE WRCTRL.EXE WRADMIN.EXE WNT.EXE WNAD.EXE WKUFIND.EXE WINUPDATE.EXE WINTSK32.EXE WINSTART001.EXE WINSTART.EXE WINSSK32.EXE WINRECON.EXE WINPPR32.EXE WINMAIN.EXE WINLOGIN.EXE WININITX.EXE WININIT.EXE WININETD.EXE WINDOWS.EXE WINDOW.EXE WINACTIVE.EXE WIN32US.EXE WIN32.EXE WIN-BUGSFIX.EXE VisualGuard.exe GfxAcc.exe RAVMOND.exe Systra.exe MCUPDATE.EXE CFIAUDIT.EXE AVXQUAR.EXE AUTOUPDATE.EXE AUTOTRACE.EXE AUTODOWN.EXE AUPDATE.EXE UPDATE.EXE ICSUPP95.EXE ICSSUPPNT.EXE DRWEBUPW.EXE LUALL.EXE AVPUPD.EXE AVWUPD32.EXE wuamga.exe taskmanagr.exe wuamgrd.exe wowpos32.exe dailin.exe rasmngr.exe msssss.exe backdoor.rbot.gen_(17).exe backdoor.rbot.gen.exe RB.EXE IAOIN.EXE OUTPOST.EXE ra32help.exe NUPGRADE.EXE ATUPDATER.EXE ra32helpa.exe
随便看	东孝站东肖街道东肖森林公园东肖水库东肖镇东啸冠鸫东效祖朝上书东协雕塑公园东邪东邪传人东邪黄药师东邪西毒东邪西毒OL 东邪西毒online 东邪西毒终极版东邪西毒;终极版东邪西毒:终极版东斜村东写西读东谢东谢村东谢店村东谢蛮东薪东欣高层