Backdoor: Backdoor.Win32.Hupigon.c
Hazard rating: Medium
Virus symptoms:
The backdoor sample is to used the "Borland Delphi 7.0" prepared, the size of "617,824 bytes" , icon "", Virus extension" exe ", mainly through the" file bundle "," download manager ", " removable storage media "and to spread. The main purpose is to control the user's machine, steal your personal information.
After the user's computer was infected, will appear slow computer and network operations, network access a...
Worm: Worm.Win32.Bototer.cr
Acquisition time :2010-5-26
Risk level: Medium
Virus symptoms:
The sample is the Trojan downloader prepared by "VC", size, "1,489,408" bytes, the icon is "", Virus extension" exe ", mainly through the" removable storage media "," file bundle "," download manager "," page linked to race ", etc., the viruses main purpose is to download and run the virus.
After the user's computer was infected, the system will appear to run slow, the network slows down, syst...
Trojan Downloader: Trojan-Downloader.Win32.Adload.l
Acquisition time :2010-5-27
Hazard rating: Medium
Virus symptoms
The sample is a downloader program which was developed use VC, Virus size "53,248" bytes, the icon is "". Virus extension "exe", mainly through the "file bundle", "download manager", "web page linked to Trojan" and other modes, the main purpose of the virus is to download the Trojan virus, control the user machine.
After the user's computer was infected, the system wi...
Yesterday, Neowin site released three Morro screenshots of free Microsoft antivirus software, Morro learned today Neowin will be named "Microsoft Security Essentials". Morro is a development code, "Microsoft Security Essentials" is the real product name, according to sources familiar with the insider said "Microsoft Security Essentials" will be officially released in September.
Nginx notice on vulnerability, because the vulnerability exists, use nginx +php web site set up to allow uploading pictures can be as long as hackers.
Until 5.21 morning, nginx not yet released a patch to fix the flaw; already have some web site was hacked, the administrator-speed fixed!
According to Netcraft statistics, until April 2010, a total of 13 million servers running nginx process; a very conservative estimate, at least 600 million servers running nginx and php support enabled;...
Name: Trojan-Dropper.Win32.Agent
Size: 25,088 bytes
Whether packers: No
Platforms affected: WIN9X/ME/NT/2000/XP/2003/Vista/Win7
Specific performance:
Infected computer, the Trojan will be released the following documents to the system:
% Systemroot% \ TEMP \ Sermon.sys% temp% \ Random.bat
Also download the file:
http://pc1.114central.com/ooo/0.exe
http://pc2.114central.com/ooo/0.exe
http://pc3.114central.com/ooo/0.exe
http://pc4 .114central.c...
Some media reports, Apple will hold a press conference on June 7 this year to Promotes a new generation of iPhone. 27-year-old baseband software engineer of Apple iPhone Gray Powell shows the prototype of next-generation iPhone after carnival over at the bar, The next day Apple to remotely lock the phone. Subsequently, the parent company of leading technology blog Gizmodo Gawker Media founder Nick Denton to spend 5000 U.S. dollars to bought this prototype, and made public on Gizmodo, This loss o...
(C). Default home page is modified
1. Failure characteristics: the virus changes the default home page into a web site.
2. Expressions: the browser's default home page is automatically set to the URL, such as WWW .********. COM.
3. Clear Methods: Manually modify the registry law, the Start Menu -> Run -> regedit-> OK, open the registry editing tools, according to the following order of open the branch: HKEY_LOCAL_USER\Software\Microsoft\Internet Explorer\Main, Find key name “Default...
(B). Default home page is modified
1. Failure characteristics: the virus changes the default home page into a web site.
2. Expressions: the browser's default home page is automatically set to the URL, such as WWW .********. COM.
3. Clear Methods: Manually modify the registry law, the Start Menu -> Run -> regedit-> OK, open the registry editing tools, according to the following order of open the branch: HKEY_LOCAL_USER \ Software \ Microsoft \ Internet Explorer \ Main, Find key name ...
(A). Default home page is modified
1. Failure characteristics: the virus changes the default home page into a web site.
2. Expressions: the browser's default home page is automatically set to the URL, such as WWW .********. COM.
3. Clear Methods: Manually modify the registry law, the Start Menu -> Run -> regedit-> OK, open the registry editing tools, according to the following order of open the branch: HKEY_LOCAL_USER \ Software \ Microsoft \ Internet Explorer \ Main, find key name ...
In the Notepad window, type the following:
REGEDIT4
[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ System]
"DisableRegistryTools" = dword: 00000000
From the "File" menu, select "Save" command to "C: \ reg.reg" Save the name;
Open "Explorer", switch to the C drive, double-click the "reg.reg" document
Then the system pop up like "Are you sure you want to C: \ reg.reg the information added to the registry?" Dialog box, click "Yes."
The...