Beijing Information Security Evaluation Center, Jinshan Poison PA jointly released the December 18, 2004 popular virus.
Today, users are reminded to pay special attention to the following viruses: "Red ribbon Variant I" (WORM.REDESI.I) and "Lmir" (WIN32.HLLP.LMIR.A).
"Red Ribbon Variant I" worm virus, which is spread through email and MIRC chat systems, which uses seductive messages to trick users into running, causing more users to infect the virus.
"Lmir" accompanying virus, the virus specifically steals legendary game account password and other information, and the virus can also infect executable files, the virus also shuts down a large number of anti-virus software, reducing the security of the system.
According to Jinshan Poison bully anti-virus expert introduced, this is one through the email and the mIRC chat system spreads the worm virus. When the virus occurs, seven copies of the virus and a photo named "Elena" are copied to the C-packing directory, and the registry adds a startup entry to enable the virus to boot from the start. By modifying the contents of the mIRC script configuration file Script.ini, the virus can propagate through MIRC. The virus collects e-mail addresses in the Address Book of Outlook Express, sends the virus as an attachment, and the message is deceptive, and users are likely to be deceived into opening attachments to infect the virus.
Jinshan Poison Bully Anti-Virus experts remind users: the establishment of good security habits. Do not open a number of dubious messages and attachments, do not have some of the sites do not understand, do not perform the download from the Internet without anti-virus software processing files, these can ensure that your computer is more secure.
According to Jinshan Poison bully anti-virus expert analysis, this is a theft legendary game account information and infected with the executable file virus. The virus will first attempt to use a variety of processes enumerated way, shut down some common virus firewalls and some trojans, such as rising firewall, Skynet firewall, Trojan Nemesis and so on. Register yourself as a background service under Win9x and hide your own process. The virus infects an executable program of the appropriate size, writes itself to the front of the executable program, and runs the virus first when it runs the infected program. The virus records the user's mouse and keyboard messages, intercepts the user's legendary account password, and sends the account information to the malicious person.
Jinshan Poison Bully Anti-Virus experts recommend users: with the development of the network, many viruses are accompanying, some viruses specifically steal the user's personal privacy, personal data information and so on, and the user's information disclosure or to create greater harm to users, please enhance their own security awareness, more access to the Poison Tyrant website related security information, Do your own safe work, to avoid the virus to bring you trouble.
Jinshan Poison PA Anti-Virus engineer reminds you: Please upgrade the poison PA to December 18, 2004 the virus library can completely handle the virus. If you do not install Jinshan poison PA, you can login to http://online.kingsoft.com/use Jinshan poison pa online search virus or Jinshan poison PA download version to prevent the virus intrusion.
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.
