| Port No | 52317 |
| Service Name | Acid Battery 2000 |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | This Visual Basic Script malware deletes all the files. It sets the WinLogon message to the following: Legends of Nr-Bio-Labs Wellcome to your Brand New Window :DThis malware runs on Windows 95, 98, NT, 2000, ME, and XP. |
| Reference Link | Acid Battery 2000 Trojan |
| Attack | SOLUTION Removing Registry Entries 1.Open Registry Editor. To do this, click Start>Run, type REGEDIT, then press Enter. 2.In the left panel, double-click the following: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\ CurrentVersion\Winlogon 3.In the right panel, locate and delete the following entries: LegalNoticeCaption=”Legends of Nr-Bio-Labs” LegalNoticeText="Wellcome to your Brand New Window :D" 4.Close Registry Editor. NOTE : If you were not able to terminate the malware process from memory as described in the previous procedure, restart your system. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.