Trojans: backdoor.Win32.GreyPigeon.a
Risk level: Medium
virus Description
The sample is to a backdoor, the size of “532,245 bytes”, the icon for the virus “
“, the extension “exe”, mainly through the “file bundle”, “Page trojan”, “download tool to download” etc., the viruses mainly to let the user computer a puppet of the machine, accept the hacker control.
After the user’s computer was infected, there will be computer and network operations are Slow and hide the window of iexplore.exe process and so on.
Infection of the operating system
Windows 2000/Windows XP / Windows 2003/Windows Vista / Windows 7
Transmission
Web Trojans, file bundle, download tools to download
Manual Solution:
Manually delete the following files:
% SystemRoot% \ Hacker.com.cn.exe
Manually delete the following Registry:
HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Services \ GrayPigeon_Hacker.com.cn
Variable declaration:
% SystemDriver% system where the partition, usually “C: \”
% SystemRoot% WINDODWS directory, usually “C: \ Windows”
% Documents and Settings% user documentation directory, usually “C: \ Documents and Settings”
% Temp% temp folder, usually “C: \ Documents and Settings \ current user name \ Local Settings \ Temp”
% ProgramFiles% system program default installation directory, typically: “C: \ ProgramFiles”
The virus creates a file:
% SystemRoot% \ Hacker.com.cn.exe
Virus to create the registry:
HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Services \ GrayPigeon_Hacker.com.cn
Howdy very cool website!! Man .. Excellent .. Superb .. I’ll bookmark your website and take the feeds also?I’m happy to search out so many helpful info right here within the submit, we need develop more strategies on this regard, thank you for sharing. . . . . .
It’s in reality a great and useful piece of info. I’m satisfied that you shared this helpful info with us. Please keep us up to date like this. Thank you for sharing.
Hello there, simply changed into alert to your blog via Google, and found that it is really informative. I’m going to be careful for brussels. I will be grateful if you happen to continue this in future. Many other folks might be benefited from your writing. Cheers!
Heya i’m for the first time here. I found this board and I find It really useful & it helped me out a lot. I hope to give something back and help others like you aided me.
Online Article……
[...]The information mentioned in the article are some of the best available [...]……
Links…
[...]Sites of interest we have a link to[...]……
Hostgator Blackfriday…
Hostgator is one of the best hosting I have used, would definitely recommend it to everyone….
Websites we think you should visit…
[...]although websites we backlink to below are considerably not related to ours, we feel they are actually worth a go through, so have a look[...]……
Awesome website…
[...]the time to read or visit the content or sites we have linked to below the[...]……
Medical Marijuana Dispensaries…
[...]here are some links to pages that we link to because we believe they are well done[...]…
FoxTec has the best parts online…
[...]just below, are a list of totally unrelated pages to ours, however, they are definitely worth checking out[...]…
SEO Company and Web Design…
[...]Worthwhile sites we visit[...]…
SEO Company and Web Design…
[...]Worthwhile web sites we check out[...]…
News and Reviews…
[...]sites we suggest to visit[...]…
Awesome website…
[...]the time to read or visit the content or sites we have linked to below the[...]……
Check this out…
[...] that is the end of this article. Here you’ll find some sites that we think you’ll appreciate, just click the links over[...]……
You should check this out…
[...] Wonderful story, reckoned we could combine a few unrelated data, nevertheless really worth taking a look, whoa did one learn about Mid East has got more problerms as well [...]……
Related……
[...]just beneath, are numerous totally not related sites to ours, however, they are surely worth going over[...]……
Check this out…
[...] that is the end of this article. Here you’ll find some sites that we think you’ll appreciate, just click the links over[...]……
Gems form the internet…
[...]very few websites that happen to be detailed below, from our point of view are undoubtedly well worth checking out[...]……
Blogs ou should be reading…
[...]Here is a Great Blog You Might Find Interesting that we Encourage You[...]……
Read was interesting, stay in touch……
[...]please visit the sites we follow, including this one, as it represents our picks from the web[...]……
Websites you should visit…
[...]below you’ll find the link to some sites that we think you should visit[...]……
Read was interesting, stay in touch……
[...]please visit the sites we follow, including this one, as it represents our picks from the web[...]……
Related……
[...]just beneath, are numerous totally not related sites to ours, however, they are surely worth going over[...]……
Websites you should visit…
[...]below you’ll find the link to some sites that we think you should visit[...]……
Related……
[...]just beneath, are numerous totally not related sites to ours, however, they are surely worth going over[...]……
Gems form the internet…
[...]very few websites that happen to be detailed below, from our point of view are undoubtedly well worth checking out[...]……
Sources…
[...]check below, are some totally unrelated websites to ours, however, they are most trustworthy sources that we use[...]……
Cool sites…
[...]we came across a cool site that you might enjoy. Take a look if you want[...]……
Online Article……
[...]The information mentioned in the article are some of the best available [...]……
Read was interesting, stay in touch……
[...]please visit the sites we follow, including this one, as it represents our picks from the web[...]……