Black Screen is a strategy used by Microsoft to deal with Windows pirated users. However, recently, Microsoft detected a Trojan virus that would cause the computer to black out and fail to boot.
It is reported that the Trojan virus is Backdoor:Win32/Yonsole.A, which is a new malicious virus software that will destroy the Windows boot process and prevent the system from starting. The infected computer will be remotely controlled by the attacker. , execute various instructions.
Microsoft security officer Chun Feng said in a blog post that the newly discovered Trojan can accept and execute remote server commands and modify the master boot record (MBR) of the infected computer. The MBR changes are very similar. In ‘Stoned& rsquo; virus modification of DOS. However, after being infected by Yonsole, the MBR only displays a dotted line in the middle of the screen and cannot be started again. Chun Feng also released the MBR code of the Yonsole virus and the screenshot that the system black screen could not be started on the blog.
New Virus MBR Code
Start Screen Screenshot
This virus will affect multiple Windows versions, will embed itself into services.exe, and download a DLL file to, For example, f00165500k.cmd, this DLL file contains the backdoor function and may be detected as Backdoor:Win32/Yonsole.B. Backdoor:Win32/Yonsole.A installs the downloaded DLL file as a Service DLL on your computer to ensure it is loaded every time Windows starts. In Windows 2000 and Windows NT, the virus will embed the DLL file in the C:WinntSystem32 folder; on Windows XP, Windows Vista, and Windows 7, the DLL file will be embedded in the C:WindowsSystem32 folder.
For Windows XP, because it uses the NT core with high security performance, the system runs fairly s
Execute in the windows command line window: Seen, the port is occupied by the process with
Computer shop news some time ago, a friend found me, his computer has a small problem, when using th
Many friends will find a very serious problem after installing WIN, which is the task in which the f
The problem that the two-machine interconnection can not be accessed
XP system prompts c:\\windows\\system32 file corruption repair
0x8024402F error message when Windows XP appears under Win XP
The reason why computer PE systems can't enter
Computer use slows down seven reasons for full resolution
Eight Common Reasons for XP "Write Cache Failure"
Wireless network connection troubleshooting in Windows XP
XP system has been restarting how to do
Startup **.dll file missing error message resolution
20 seconds into the win XP operating system
After booting into the "Windows is starting" interface, it will not move
What should I do if the function fixed to the start screen is deleted by mistake?
Too many bugs: Win10 latest preview delayed push Slow Ring
How to set Win8.1 virtual memory Win8/8.1 set virtual memory method
Why do you need to reboot multiple times to boot?
How to open translucent lock screen and login interface in Win10
Win8.1 can't switch to Microsoft account solution
Detailed illustration Win7 installation is simple optimization tutorial
What is the process of Win7 system Ctfmon? What is the main role of Ctfmon?
Windows operating system group policy application Raiders (1)