Daily Virus Report (Mar 30, 2009) - Trojan.PSW.Win32.GameOL.wkx
-
RISING
Intraday malicious virus program: Trojan.PSW.Win32.GameOL.wkx
Behaviour:
After being executed, this malicious Trojan virus program releases an ‘exe’ and a ‘dll’ format file which both named by 8 stochastic letters. And then, the Trojan program drops its executed file to game process; then, records user’s account information and sends to hacker’s appointed website.
Statistics:
RISING Cloud Security reported:
March 30, 2009, there were 2,167,732 devices got malicious attack via Webpage Horse Hanging tech, and RISING Virus Lab has intercepted 758,727 malicious hyperlinks with webpage Horse Hanging tech. And Rising Cloud Security got 52,012 reports from end users.
Top5 Infected Website:
1, http://idc.shangdu.com/
with malicious hyperlink: g.****.cn/d3/b1/1.htm, etc.
2, flash.any2000.com/mv/c/14151-2.htm
with malicious hyperlink: g.****.cn/d1/03/5.htm, etc.
3, qlgk.ca.hd.gov.cn/
with malicious hyperlink: g.****.cn/d3/b1/newlz.htm, etc.
4, www.21food.cn/news/spsc/showShouce.jsp?id=1052
with malicious hyperlink: ****8.cn/02/yt14.htm, etc.
5, www.sinolub.com/news/2007/9-18/14394393560.html
with malicious hyperlink: g.****.cn/d1/16/bf.htm, etc.
Solutions:
1. Install Rising Internet Security or Rising Anti-virus, personal firewall, update in time, and at least 3 times per day for updating Rising.
2. Install Rising PC Doctor, and choose “Leaks” function to check the leaks or vulnerabilities exist in your computer operation system, patch your computer system in a timely manner as many viruses spread by taking advantage of the system exploits or vulnerabilities.
3. Do not browse suspicious websites, and suspicious inserter; turn off or delete unnecessary system services.
4. Do not receive the suspicious file from QQ, MSN, Email, etc.
5. Open RISING Active Defense and Auto-Protect function when accessing to the internet.
Daily Virus Report (Feb 07, 2012)- Rootkit.Win32.Undef.cvu ()
