The author of the "pandatv incense" series was just captured, and another very similar Worm, "Qiu Ying (Worm. chouying. a) "was intercepted by rising's Global Anti-Virus Monitoring Network. The author claims that" the program and source code are sold and other functions can be customized according to user requirements ". In order to facilitate contact between buyers, he even left his QQ number.
According to expert analysis, the function of "Qiu Ying" virus is very similar to that of "panda.com", and it is beyond the transmission and self-protection capabilities. However, it seems that virus writers only want to promote their own "Products" and have not added many advanced features, such as stealing online game passwords, QQ passwords, and changing file display images. However, the author attaches a "product description" to the virus, saying that the above functions can be tailored to buyers.
Description of Qiu Ying poisoning
It is understood that the virus is infected with the EXE file AND htm file, insert the virus advertisement in the infected htm file (). This may cause slow system operation, blue screen, and crashes.
What are the exclusive tools of "Qiu Ying?
Previously, the "pandatv incense" virus was raging, and many domestic antivirus vendors have successively launched a special killer tool. In the face of "Qiu Ying", can Rising's first launch of the "specialized killer tool "? In this regard, the reporter asked the relevant personnel of the rising market department, rising said: We are closely following the development of the virus, if the spread speed, scope, the number of infected people has increased significantly, A free kill tool will be available.
How should a poisoned user kill Qiu Ying?
Experts recommend that you upgrade anti-virus software to the latest virus database, enable all monitoring functions, and install firewall software. Users without anti-virus software can download and install the anti-virus software version 2007, upgrade to the latest version. In addition, experts stressed that it is not recommended to manually delete viruses from common users.
Enterprises should take preventive measures
For many enterprises, to prevent large-scale network poisoning, BKJIA Security Channel recommends that enterprise users do a good job in password management, vulnerability compensation, security settings, and other aspects of the local network.