Malware Exploit. Win32.IMG-ANI. x and Worm. Win32.Viking. lw Solutions

From: Network

Recently, some forums have seen a friend asking for help and asking for the following content:

Malicious HTTP object Malicious HTTP object (Http has been changed to hxxp to avoid soft alerts)

In terms of virus name, the former is one of the vekin variants, and the latter is one of the ANI variants.
In this case, the webpage may be infected with Trojans.

If you meet such a friend, follow the prompts:

1. First clear the temporary IE files: Open the IE tool --> Internet option: Temporary Internet Files. Click "delete file" to tick all offline content and click "OK" to delete the files.
Or use the ATF tool to clear temporary files: http://www.hzqedison.cn/hanhua/ATF-Cleaner-cn.exe

2. shield the following link:

This URL is blocked in the hosts file. Operation Method:
The HOSTS file is in C: WINDOWSsystem32driversetc (XP system.
After:
Select "Hosts" -- open mode -- notepad. Add:
127.0.0.1 www.puma164.com
127.0.0.1 rrr.rfhwfhw.com

Save.

3. Update all system patches. You can use windows automatic update, or the "vulnerability fix" function of 360 security guard or Jinshan cleaning expert.

4. For friends who have been infected with Weijin, refer to the following link for operations:
Sort out mainstream tools to deal with Weijin-infected exe:
Http://hi.baidu.com/wawa1719/blog/item/0db231a8bf44fdb0ca130c0b.html

Users who are not using anti-virus software can also block this malicious link to avoid virus infection.
If the above operations have not solved the problem, you can go to the "virus Rescue" section of some forums to scan the SREng log for help. For example, jiemeng and Mu ant.