Use SSM to prevent malicious web page downloads

I. Introduction

As the saying goes: I often walk by the river. How can I avoid wet shoes? A common annoyance is that when you browse a webpage normally, the browser has been installed with more than N plug-ins for two days, the machine also has many Trojans or other malicious programs. Anti-virus software is also installed many times, such as Kabbah, Norton, Kingsoft, and rising ...... So at that time, you would be wondering, why did these anti-virus software go? Taking up so many resources ...... Especially those who often like to wander around the Internet, they should feel more deeply. This is mainly because there are too many vulnerabilities in the IE browser. Today is a jpgimage vulnerability, tomorrow is an XML parsing vulnerability, and the day after tomorrow is a script Parsing Vulnerability. You need to constantly upgrade the vulnerability and keep up with it, anti-virus software can only prevent some of them. What should we do at this time? The answer is SSM.

Ii. Test Procedure

Today, I sent a group of two addresses to the QQ Group. At first glance, I registered the Forum and it was unfriendly. Of course, the arts are brave and never afraid of such things. After a glance, the SSM went on, so I was relieved to open a link ...... When I opened it, it was an adult website. After loading the webpage, I immediately jumped out of SSM and reported an alarm. I was lucky to say that I had a program to execute. I thought I 'd drive SSM and click BLOCK right away, then open. tmp file, analyzed, is a Win32 Trojan program. It may be a relatively new version, and anti-virus software will not report it at all. If you do not have SSM, you must have done it, and you may not know it for a long time. Next, a bunch of messy plug-ins and Trojans may be installed. This webpage uses an Internet Explorer vulnerability to automatically download and execute a program, which is sometimes difficult to prevent. If it's a bank password, QQ password or something, it's terrible.

Iii. Conclusion

Therefore, we strongly recommend that you enable SSM when accessing the Internet, especially when you go to a website that is not formal. The system suddenly jumps out to execute a program and blocks the program in the TEMP or system32 directory. Of course, you can also use the Windows File integrity tool I mentioned earlier to check.