Daily Virus Report (June 25, 2008) - Backdoor.Win32.Gpigeon2007. nh
-
RISING
June 25, 2008 one virus needs your attention. It is NH(Backdoor.Win32.Gpigeon2007. nh).The virus spreads through Internet, and steals computer user private information. And the virus can remote control the computer which has this virus, it is a big threat.
Name: NH(Backdoor.Win32.Gpigeon2007. nh)
Warning level: Dangerous
Category: Backdoor
Affected System: Windows NT/2000/XP/2003
Description:
When the virus run, it will copy itself down to system directory, and set as hidden, system file, read only. Then, virus will start a system service process, achieve start-up with system. In addition, the virus will start an IE process, and set it hidden, drop the virus itself into this process. The virus records computer keyboard operation at background, and steals computer user information and local system information, then send to hackers. In this way, the computer will be remote controlled by hackers. It will delete files unwillingly, upload or download files, modify registry, and other act. It is a big threat to computer user private information security.
Anti-virus experts suggest that computer users take the following measures to protect against this virus:
1. Install Rising Anti-virus, personal firewall, update in time, and at least 3 times per day for updating Rising.
2. Use Rising Vulnerability Check, patch your computer system in a timely manner as many viruses spread by taking advantage of the system exploits or vulnerabilities.
3. Do not browse suspicious websites, and suspicious inserter; turn off or delete unnecessary system services.
4. Do not receive the suspicious file from QQ, MSN, Email, etc.
5. Open auto-protect and auto-monitor function when accessing to the internet.
6. Put your account information of networks bank, networks game, MSN, QQ, Yahoo Messenger etc, into Rising Application Protection, Rising Application Protection can protect specified applications from attack by malicious programs. A user can apply rules to game software, instant messenger, etc. to customize protection.
Daily Virus Report (Feb 07, 2012)- Rootkit.Win32.Undef.cvu ()
