Daily Virus Report (Apr 1, 2009) - Trojan.Win32.BHO
-
RISING
Intraday malicious virus program: Trojan.Win32.BHO
Behaviour:
This is a malicious Trojan program. After being executed, the virus shuts down varieties of popular anti-virus software; change Internet browser’s BHO option of infected device; then access to hacker’s appointed website to download Trojan viruses to local device.
Statistics:
RISING Cloud Security reported:
April 1, 2009, there were 3,168,745 devices got malicious attack via Webpage Horse Hanging tech, and RISING Virus Lab has intercepted 743,657 malicious hyperlinks with webpage Horse Hanging tech. And Rising Cloud Security got 500,575 reports from end users.
Top5 Infected Website:
1, isp.online.sh.cn/
with malicious hyperlink: 289363.ctc-w159.dns.com.cn/css/winlo.htm, etc.
2, www.wfxy.neu.edu.cn/list.aspx?page=2&cid=84
with malicious hyperlink: g.****.cn/d3/b1/newlz.htm, etc.
3, gjswj.jc.gansu.gov.cn/
with malicious hyperlink: g.iht2.cn/d3/b1/bf.htm, etc.
4, cq.jobs.cn/
with malicious hyperlink: y****n/24/ytxxz.htm, etc.
5, www.chinawatchnet.com/shop/book_detail.asp?id=55
with malicious hyperlink: 163.****.cn/gua/02.htm, etc.
Solutions:
1. Install Rising Internet Security or Rising Anti-virus, personal firewall, update in time, and at least 3 times per day for updating Rising.
2. Install Rising PC Doctor, and choose “Leaks” function to check the leaks or vulnerabilities exist in your computer operation system, patch your computer system in a timely manner as many viruses spread by taking advantage of the system exploits or vulnerabilities.
3. Do not browse suspicious websites, and suspicious inserter; turn off or delete unnecessary system services.
4. Do not receive the suspicious file from QQ, MSN, Email, etc.
5. Open RISING Active Defense and Auto-Protect function when accessing to the internet.
Daily Virus Report (Feb 06, 2012)- Trojan.Win32.Fednu.ual ()
