Daily Virus Report (Feb 18, 2009) - Trojan.PSW.Win32.ZhuXian.jr
-
RISING
Feb 18, 2009 one virus needs your attention. It is JR (Trojan.PSW.Win32.ZhuXian.jr). The virus spreads through Internet, and records key board operation of the logon operation of the online game: QQ Three Kingdoms. Then, the virus sends the record to hackers. It seriously threatens account information safe of QQ Three Kingdoms game players.
Name: JR (Trojan.PSW.Win32.ZhuXian.jr)
Warning level: Dangerous
Category: Trojan
Affected System: Windows NT/2000/XP/2003
Description:
This is an account stealer Trojan. Virus copies its lpsgajba.exe, apsgejba.dll, gpsgahba.sys files down to system directory after being executed, and modifies registry to achieve startup with system. And the virus shuts down QQ Doctor Process to prevent from check and clean. In additional, the virus searches the logon window of QQ Three Kingdoms game, then, records keyboard operation of this logon window. And the virus sends records to hackers appointed e-mail box or website, makes online game player suffer.
Anti-virus experts suggest that computer users take the following measures to protect against this virus:
1. Install Rising Internet Security or Rising Anti-virus, personal firewall, update in time, and at least 3 times per day for updating Rising.
2. Install Rising PC Doctor, and choose “Leaks” function to check the leaks or vulnerabilities exist in your computer operation system, patch your computer system in a timely manner as many viruses spread by taking advantage of the system exploits or vulnerabilities.
3. Do not browse suspicious websites, and suspicious inserter; turn off or delete unnecessary system services.
4. Do not receive the suspicious file from QQ, MSN, Email, etc.
5. Open RISING Active Defense and Auto-Protect function when accessing to the internet.
Daily Virus Report (Feb 07, 2012)- Rootkit.Win32.Undef.cvu ()
