-
- Home |
- Products |
- Buy & Renew |
- Information Center |
- Downloads |
- Support |
- Partners |
- Contact Us |
-
Intraday malicious virus program: Rootkit.Win32.SSDT.s
Behavior:
This is a malicious Rootkit virus program which spreads combined with Account Stealer Trojan viruses.
After being executed, the virus program shall work out Windows service function address and index according to Windows user layer and, recover System Service Description Table (SSDT) on driver layer; so, the virus program can disable antivirus self-protection and real-time monitor function. And then, viruses and Trojan combined with this Rootkit virus shall destroy infected computer operating system, and makes computer users suffer loss. So, this malicious Rootkit virus program threatens computer security seriously.
Statistics:
RISING Cloud Security reported:
October 13th, 2010, Rising Cloud Security detected that there were 1,845,992 computers got attacks from malicious URL injection and, RISING has intercepted 44,853 malicious URLs successfully. Meanwhile, 22,265 suspicious URLs were submitted from Rising Cloud Security members.
Top5 Infected Website:
1, www.eic.org.cn/eWebEditor/css/coolblue/_vti_cnf/com5**
Injected malicious URL: **. org:224/yy2/index.htm
2, www.ise.neu.edu.cn/css/wenda**
Injected malicious URL: **org:224/yy2/index.htm
3, www1.swfc.edu.cn/zyxy/gamelist/rkqt**
Injected malicious URL: **com/Files/help/news/1/qqq/index.html
4, zsb.gdufs.edu.cn**
Injected malicious URL: **. com/upload/product/index.htm
5, hx.qust.edu.cn/2010/wd**
Injected malicious URL: **com.:7115/mmwd/ie.html.htm
Notice: the symbol ‘*’ means a stochastic letter or number.
Solutions:
1. Install Rising Internet Security, or Rising Antivirus plus Rising Firewall, and get update in time.
2. Install Rising PC Doctor, and choose “Leaks” function to check the leaks or vulnerabilities exist on your computer operating system, patch your computer system in a timely manner because many viruses spread by taking advantage of Windows operating system vulnerabilities.
3. Do not browse suspicious websites, and do not run suspicious plugins; turn off or delete unnecessary system services.
4. Do not receive the suspicious file from QQ, MSN, Email, etc.
5. Open RISING Active Defense and Auto-Protect function while accessing to Internet.
*You can buy RISING Security products here or free download to try.
*If you have any questions about RISING products, please visit Rising support centre for help.
Daily Virus Report (May 18-20, 2012)- Trojan.PSW.Win32.QQPass.fle ()
Daily Virus Report (May 16, 2012)- Trojan.PSW.Win32.QQPass.flc ()
Daily Virus Report (May 15, 2012)- Worm.Win32.Autorun.twm ()
Daily Virus Report (May 14, 2012)- Trojan.Win32.FakePic.mb ()
Daily Virus Report (May 11-13, 2012)- Trojan.PSW.Win32.QQPass.fla ()
Daily Virus Report (May 10, 2012)- Trojan.PSW.Win32.QQPass.fkz ()
