The "monster" virus once made the global computer user talking, even more troubled, the variant of the "monster" virus is also frequent, and the harm is increasing. In the early morning of June 6th, the Jinshan Anti-Virus Monitoring Center once intercepted the latest variants of "monster" viruses that were extremely amazing. At present, the Jinshan Anti-Virus Monitoring Center has been set to a 4-level malignant virus.
According to Chen Fei, the person in charge of the Jinshan Anti-Virus Monitoring Center, the virus English name is Worm.BugBear,
With Win32 file infection, release hacker lattice procedures, use email and share of strong communication skills. Due to viral infection, the handmade method is extremely difficult. More terrible is that the virus is extremely rapid, which can cause huge damage in a short period of time. According to reports, the variant is the first version of the "Monster" virus before the birth of 8 months, the author fully utilizes the rapid spread of new viruses, causing the virus to spread throughout the world. This variant virus will release the keyboard keys operation of the latte program record the host when activated, while listening to the 1080 port in the local system, waiting for the connection of the console, the successful resection of the host is a hacker remotely. Virus also infects some system catalogs or specific executables in Program Files, Scandskw..exe; regedit.exe; mplayer.exe; Internet Explorer / IExplore.exe, etc. Since these programs are the most commonly used tools, such viruses have obtained the most operational opportunities. The infection of the variant virus increases the difficulty of killing of anti-virus software. Repairing the procedures for viral infections are extremely difficult, usually need to repair installations to completely repair. Chen Fei is specifically introduced that the variant virus can search for shared resources in the LAN and copy themselves to the launch project record of the other system start menu. In this way, the user is triggered when the user is turned on next time. At the same time, the variant virus will try to search for the email address in the file from the suffix. Eml, .tbb, .dbx, .eml, .tbb, .dbx, .tbus file propagation. The subject of this variant virus message is English information, and it is extremely tempting the mail recipient to open the attachment. If the user does not patch vulnerabilities, a virus will also be triggered when previewing the email. The virus also checks a system process every 20 seconds while finding that there is a process of antiviral software exists.
Chen Fei Zhou solemnly reminds users, Jinshan drug tyrants have emergency upgrades new variants of "monster" viruses, users can use Jinshan drug tyrants to kill the virus, the latest Jinshan drug tyrants can also achieve the rapid killing of the variant virus . Friends of non-Kingshan drug tyrants, as long as they log in to Jinshan Taxi Security Information Network (www.duba.net) freely download the killing tools provided by Jinshan Drug Dynamics to avoid attacks of the variant virus.
