æ¯exeçæ件å
³èè¢«ç ´åäºï¼å¤åæ¯ç
æ¯æ为ï¼å¯ä»¥ç¨ä¸ä¸æ¹æ³æ¥æ¢å¤ã
1,å
å°Windowsç®å½ä¸ç注å表ç¼è¾å¨âRegedit.exeâæ¹ä¸ºâRegedit.comâï¼ç¶åè¿è¡å®ï¼ä¾æ¬¡æ¾å°HKEY_CLASSES_ROOT\exefile\shell\open\commandï¼åå»âé»è®¤âå符串ï¼å°å
¶æ°å¼æ¹ä¸º"%1" %*å°±å¯ä»¥äºã
2,æå¼âæççµèâï¼è¿å
¥èåâå·¥å
·âââæ件夹é项âââæ件类åâï¼è¿æ¶å¨ç°æçæ件类åä¸æ¾ä¸å°æ©å±å为exeçæ件类åï¼æ²¡å
³ç³»ï¼åå»âæ°å»ºâå¼¹åºâæ°å»ºæ©å±åâ对è¯æ¡ï¼å¨âæ件æ©å±åâæ¡ä¸å¡«å
¥âexeâï¼æ¥çåå»âé«çº§âï¼å¨âå
³èçæ件类åâä¸ææ¡ä¸éæ©âåºç¨ç¨åºâï¼åå»âç¡®å®âè¿åï¼æååå»âåºç¨âåå
³é对è¯æ¡ã
æè
以ä¸è¿ä¸ªæ¹æ³
éæ°å¯å¨è®¡ç®æºï¼å¨åºç°Windows欢è¿å±å¹åï¼å°±æ¯ååèªæ£å®æ以åï¼é©¬ä¸æä¸F8é®ï¼éæ©å¸¦å½ä»¤è¡çå®å
¨æ¨¡å¼ï¼æä¸å车é®ï¼ç³»ç»ä¼ä»¥å®å
¨æ¨¡å¼å¯å¨ãå¯å¨åå¨å½ä»¤å¥½æ示符ä¸è¾å
¥ï¼
1ãè¾å
¥å½ä»¤ï¼
assoc.exe=exefile
2ãæè
è¾å
¥å½ä»¤ï¼
ftypeexefile="%1"%*
以ä¸ä¸¤ä¸ªå½ä»¤ï¼ä¹å¯ä»¥åå
¶ä¸ï¼å
¶å®é½æ¯å¯ä»¥æ¢å¤exeæ件å
³èçï¼å¤æä¾ä¸ç§æ¹æ³ï¼ä»¥é²ä¸ä¸ï¼
ç¶åéå¯çµèå°±okäºã
解æ³äº:
[ç
æ¯å]ï¼I-Worm.Wukill
[ç ´åæ¹æ³]ï¼è¿ä¸ªç
æ¯éç¨æ件夹å¾æ ï¼å
·æå¾å¤§è¿·ææ§ã该ç
æ¯è¿è¡åï¼ä¼å°èªå·±å¤§éå¤å¶å°å
¶ä»ç®å½ä¸ã
ä¸ã ç
æ¯é¦æ¬¡è¿è¡æ¶å°æ¾ç¤º"This File Has Been Damage!"ï¼
äºã å°èªå·±å¤å¶å°windowsç®å½ä¸å¹¶æ¹å为Mstray.exeï¼
ä¸ã ä¿®æ¹æ³¨å表ï¼HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Currentversion\Run
以达å°å
¶èªå¯å¨çç®çï¼
åã æ举ç£çç®å½ï¼å¨æ¯ä¸ªæ ¹ç®å½ä¸éæ¾ä¸åæ件ï¼
winfile.exe ç
æ¯ä¸»ä½ç¨åº
comment.htt å©ç¨IEæ¼æ´è°ç¨åä¸ä¸ªç®å½ä¸ç"winfile.exe"ï¼å±æ§ä¸ºéèã
desktop.ini ç³»ç»ä¸ºéèãéç¨webæ¹å¼æµè§æ件夹æ¶ï¼ç³»ç»ä¼è°ç¨è¯¥æ件ï¼è¯¥æ件è°ç¨comment.htt ï¼ä»èæ¿æ´»ç
æ¯ã
äºã ç
æ¯ä¿®æ¹æ³¨å表ï¼éèç³»ç»æ件ãéèåç³»ç»ä¿æ¤çæ件ãéèå·²ç¥çæ©å±å称ã
è¿æ ·ï¼ç¨æ·çä¸å°comment.httåDesktop.iniï¼ winfile.exe被éèåç¼æï¼åæ¯æ件夹å¾æ ï¼ç¨æ·æ容æ认为æ¯æ件夹èç¹å»ã
åæ¶ç
æ¯å¨å½åè·¯å¾ä¸çæçèªèº«æ·è´ï¼å称éç¨ä¸çº§ç®å½ï¼æè
æ¯å½åçªå£çæ é¢,å¢å éè½æ§ã
å
ãç
æ¯è°ç¨Outlookåéæºå¸¦ç
æ¯ç信件ã
æå·¥æ¸
é¤:(å¨æ²¡æææ¯è½¯ä»¶çæ
åµä¸)
é¦å
:æ¾å°Mstray.exe(注æè¿ä¸ªæ¯ç³»ç»åéèçæ件,æ以大家åºè¯¥ç¥éæä¹æè½æ¾å°å®äº,å¨ç³»ç»æ件夹ä¸),å é¤æ.并修æ¹æ³¨å表,å»æ对åºçå¯å¨é¡¹ï¼æ¥ç:å©ç¨çWindowsçæç´¢åè½,æç´¢ææç:
Winfile.exe,comment.htt,desktop.ini(注æ:æ¥ç->å»æç³»ç»ä¿æ¤,å»æéè)
å é¤!注æè¿å¾æ¸
æ¥ä¸è¦å éäºå¦!
æäºdesktop.iniæ¯windowsåæçæ件)
æå:æ¥æ¾ç¡¬çå
æ以ç[*.exe]æ件,
温馨提示:答案为网友推荐,仅供参考