Is pandatv really so powerful? I think your security awareness is too bad!

Is pandatv really so powerful? I think your security awareness is too bad!

A friend's computer was infected with a virus a few days ago and asked me to scan and kill it. I probably looked at it. This friend's computer Admin has no password, and all disks are shared by default, because I am not a security professional, I cannot see any system vulnerabilities. I only know that XP has no patches, I told him that the computer is basically completely open to viruses and hackers, and he can only smile helplessly. Alas, I said your security awareness is too bad.

At that time, I had not heard of pandatv, but I had probably read the virus symptoms. It was nothing more than shutting down the anti-virus software process, traversing the disk to infect other EXE files, and writing the startup item in the registry, it is found that the process manager automatically ends its window, so you can only enter security mode, delete the registry key, analyze the infected file, find a keyword whboy, and then perform a disk ScanProgramFind all the files with this keyword and check that their icons are changed to "pandatv". delete the files and restart the machine to find that some services are unavailable, open Computer Management to start common services, and then run the SFC to recover some corrupted files. restart the system, less than half an hour later.

A few days later, I learned that this virus is called pandatv. Its name is cute. It is also a Chinese virus, which is said to be rampant, why can a virus with no technical content cause such a storm in the security industry in China? I have not seen the pandatv in depth, but I have already analyzed and spread it online.CodeIt is a copy of a worm. As for the destructive power, most people who want to write win programs can have such destructive power.

Finally, I really don't know whether to worry about domestic network security or whether to be ashamed of Chinese hacking and virus technologies.