-
- Home |
- Products |
- Buy & Renew |
- Information Center |
- Downloads |
- Support |
- Partners |
- Contact Us |
-
Intraday malicious virus program: Worm.Win32.Autorun.slk
Behaviour:
This is a malicious Worm program.
After being executed, the virus program shall scan all processes of infected devices, then release driver files to recover SSDT list, create Hijack option in Register, and take other malicious behaviors to shuts down antivirus software in infected computers. And the virus program accesses to websites which specified by hackers to download varieties of Trojan viruses to infected computers; and creates “autorun.inf” file to each disk, so the virus program can achieve startup while infected computers’ users double-clicking any disk.
Statistics:
RISING Cloud Security reported:
July 22, 2009 there were 1,503,775 devices got malicious attack via malicious Webpage Horse Hanging tech, and RISING Virus Lab has intercepted 352,948 malicious hyperlinks with webpage Horse Hanging tech. And Rising Cloud Security got 27,069 reports from end users.
Top5 Infected Website:
1, ajbtv.zjol.com.cn/smalltvmen.asp?asd=7
with malicious hyperlink: *****.cn/aa/of.htm, etc.
2, download.itpub.net/html/2009/0210/275200902101129492996.shtml
with malicious hyperlink: ****.cn/aa/02.htm, etc.
3, dy.tfol.com/besttone/u/?i=10067
with malicious hyperlink: ****.cn/aa/02.htm, etc.
4, henan.bbvod.net/game/index.html
with malicious hyperlink: ****.cn/123.htm, etc.
5, pdf.sznews.com/hkcd/zhengquan/file.asp?id=14386
with malicious hyperlink: ****.cn/aa/test.htm, etc.
Notice: the symbol ‘*’ means a stochastic letter or number.
Solutions:
1. Install Rising Internet Security or Rising Anti-virus, personal firewall, update in time, and at least 3 times per day for updating Rising.
2. Install Rising PC Doctor, and choose “Leaks” function to check the leaks or vulnerabilities exist in your computer operation system, patch your computer system in a timely manner as many viruses spread by taking advantage of the system exploits or vulnerabilities.
3. Do not browse suspicious websites, and suspicious inserter; turn off or delete unnecessary system services.
4. Do not receive the suspicious file from QQ, MSN, Email, etc.
5. Open RISING Active Defense and Auto-Protect function when accessing to the internet.
*You can buy RISING Security products here or free download to try.
*If you have any questions about RISING products, please visit Rising support centre for help.
Daily Virus Report (Feb 07, 2012)- Rootkit.Win32.Undef.cvu ()
Daily Virus Report (Feb 06, 2012)- Trojan.Win32.Fednu.ual ()
Daily Virus Report (Feb 03-05, 2012)- Trojan.PSW.Win32.QQPass.fjz ()
Daily Virus Report (Jan 17, 2012)- Trojan.Win32.Fednu.uaf ()
Daily Virus Report (Jan 16, 2012)- Win32.Loader.ll ()
Daily Virus Report (Jan 13-15, 2012)- Dropper.Win32.Undef.cey ()
