-
- Home |
- Products |
- Buy & Renew |
- Information Center |
- Downloads |
- Support |
- Partners |
- Contact Us |
-
Intraday malicious virus program: Trojan.DL.Win32.Mnless.eln
Behaviour:
This is a malicious Trojan virus downloader program.
After being executed, the virus program shall shut down large amount of antivirus software progresses and create Hijack Option in Register to prevent from being checked. Then the virus program shall shut down security tools of infected computers, such as IceSword, etc. and then release “usp10.dll” file into every folder of each non-removable disk. After the DLL (Dynamic Link Library) file has been loaded, the virus program shall access information of “Medest.jpg” in Windows system folder, and download varieties of Trojan viruses and other viruses from specified URL.
Statistics:
RISING Cloud Security reported:
August 12, 2009 there were 1,648,189 devices got malicious attack via malicious Webpage Horse Hanging tech, and RISING Virus Lab has intercepted 334,543 malicious hyperlinks with webpage Horse Hanging tech. And Rising Cloud Security got 72,862 reports from end users.
Top5 Infected Website:
1, image.i18.cn/html/huanyi/snhysj/index.htm
with malicious hyperlink: *****.cn/x2/dxxz.htm, etc.
2, it.hzcnc.com/price/index5.asp?product_id=12829
with malicious hyperlink: *****.org/1/cqqmp.htm, etc.
3, jwc1.xzit.edu.cn/zbxx/20077101618551509.htm
with malicious hyperlink: *****.cn/x2/dxxz.htm, etc.
4, www.phil.pku.edu.cn/news.php?newid=30000000543
with malicious hyperlink: *****.org/1/cqqmp.htm, etc.
5, a.mofei.com.cn/play/11094/22
with malicious hyperlink: *****.org/dir.htm, etc.
Notice: the symbol ‘*’ means a stochastic letter or number.
Solutions:
1. Install Rising Internet Security or Rising Anti-virus, personal firewall, update in time, and at least 3 times per day for updating Rising.
2. Install Rising PC Doctor, and choose “Leaks” function to check the leaks or vulnerabilities exist in your computer operation system, patch your computer system in a timely manner as many viruses spread by taking advantage of the system exploits or vulnerabilities.
3. Do not browse suspicious websites, and suspicious inserter; turn off or delete unnecessary system services.
4. Do not receive the suspicious file from QQ, MSN, Email, etc.
5. Open RISING Active Defense and Auto-Protect function when accessing to the internet.
*You can buy RISING Security products here or free download to try.
*If you have any questions about RISING products, please visit Rising support centre for help.
Daily Virus Report (May 15, 2012)- Worm.Win32.Autorun.twm ()
Daily Virus Report (May 14, 2012)- Trojan.Win32.FakePic.mb ()
Daily Virus Report (May 11-13, 2012)- Trojan.PSW.Win32.QQPass.fla ()
Daily Virus Report (May 10, 2012)- Trojan.PSW.Win32.QQPass.fkz ()
Daily Virus Report (May 09, 2012)- Trojan.Win32.QQPass.agn ()
Daily Virus Report (May 08, 2012)- Trojan.Win32.KillAV.cxo ()
