本贴附上“文件夹56159病毒.rar”
桌面文件夹56159是什么病毒?
危害:1、放在桌面的文件不知什么时候就全部放在56159的文件夹内,且不能删除文件夹56159,删除窗口显示为“56159是Windows系统文件夹,Windows需要它才能正常运行,因此不能删除。”
2、从网上下载的文件有时存在文件夹56159,有时存在桌面。虽然文件存在,但是搞到很浑乱,不知存在什么地方。
可以帮忙把这个该死的病毒杀了吗?
瑞星可疑文件不能上报,不知是何原因?
以下是在注册表中,56159文件夹全路径
==============
Desktop REG_SZ C:\Documents and Settings\hsl1\56159
Favorites REG_SZ C:\Documents and Settings\hsl1\Application Data\56159
Desktop REG_EXPAND_SZ %USERPROFILE%\56159
Favorites REG_EXPAND_SZ %USERPROFILE%\Application Data\56159
HRZR_EHACNGU:P:\Qbphzragf naq Frggvatf\ufy1\56159\pch-m_1.60-frghc-pa\pch-m_1.60-frghc-pa.rkr REG_BINARY 08 00 00 00 06 00 00 00 80 7c cd af 03 26 ce 01
-------------------
[HKEY_USERS\S-1-5-21-1757981266-606747145-725345543-1003\Software\Microsoft\FrontPage\Explorer\FrontPage Explorer\Recent Page List]
"File1"="C:\\Documents and Settings\\hsl1\\56159\\中兴\\中兴U930广州报价\\【中兴U930广州报价】广州中兴U930最新报价_U930最低价格-ZOL中关村在线.htm"
"File2"="C:\\Documents and Settings\\hsl1\\56159\\【中兴U930广州报价】广州中兴U930最新报价_U930最低价格-ZOL中关村在线.htm"
"File3"="C:\\Documents and Settings\\hsl1\\56159\\中兴[url=file://\\U930\\]\\U930\\[/url]中兴U930广州报价、最新报价_U930手机最低价格多少钱_太平洋产品报价.htm"
"File4"="C:\\Documents and Settings\\hsl1\\56159\\中兴U930广州报价、最新报价_U930手机最低价格多少钱_太平洋产品报价.htm"
"e"="C:\\Documents and Settings\\hsl1\\56159\\56159.reg"
[HKEY_USERS\S-1-5-21-1757981266-606747145-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\reg]
"a"="C:\\Documents and Settings\\hsl1\\56159\\56159.reg"
[HKEY_USERS\S-1-5-21-1757981266-606747145-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders]
"AppData"="C:\\Documents and Settings\\hsl1\\Application Data"
"Cookies"="C:\\Documents and Settings\\hsl1\\Cookies"
"Desktop"="C:\\Documents and Settings\\hsl1\\56159"
"Favorites"="C:\\Documents and Settings\\hsl1\\Application Data\\56159"
"HRZR_EHACNGU:P:\\Qbphzragf naq Frggvatf\\ufy1\\56159\\pch-m_1.60-frghc-pa\\pch-m_1.60-frghc-pa.rkr"=hex:08,\
00,00,00,06,00,00,00,80,7c,cd,af,03,26,ce,01
用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; QQDownload 689)