Beijing Information Security Assessment Center and Kingsoft Antivirus jointly released the popular virus on January 2, 2005.
Today, users are reminded to pay special attention to the following viruses: "Bed Bug" () and "Afcore" ().
"Bedbug" worm virus, which is transmitted through a local area network, and the file name of the virus is highly deceptive. The virus opens a designated port to communicate with the outside world, which will pose a serious threat to the security of the user's system and personal data information.
"Afcore" hacking tool. After the virus is run, the virus will carry out a series of illegal operations on the infected machine, which will approach the security of the user's system and confidential files. The virus also uses this poisoning machine as a springboard to attack other machines in the LAN.
1. "Bed Bug" () Threat Level: ★★
According to Kingsoft Antivirus Antivirus Engineer, this is a worm virus that is transmitted through a local area network. The virus will copy itself to the system directory and the shared directory in the LAN. The virus's file name is composed of 3 randomly generated lowercase English letters, which is very deceptive. The virus can also delete itself, register itself as a system service, enable TCP 445 port to communicate with the outside world, posing a threat to all user information.
Kingsoft Antivirus Antivirus experts remind users: establish good safety habits. Do not open some emails and attachments of unknown origin, do not go to some websites you don’t know much, and do not execute files that have not been processed by anti-virus software after downloading from the Internet, so that your computer is safer.
2. "Afcore" () Threat level: ★★
According to Kingsoft Antivirus Antivirus Engineer, the virus is a DLL file with a random file name, which may be released by the virus EXE file or infected by visiting a malicious website. The virus is executed by the BHO (Browser Helper Object) component registered as Internet Explorer, which runs with one IE browser opened at a time. The virus can perform the following operations:create、delete、Listcookie;Operate clipboard contents;Stealing user system information;Run the specified program;Operate the desktop window;Listen to network packets,and broadcast messages to computers in the LAN;Invade certain Internet cafe management software and make it a puppet of the virus;locking、Log out、closure、Restart the computer;Attack other computers through infected computers, etc.。
Kingsoft Anti-Virus experts remind users: With the development of the network, the problem of hacker attacks on users' computers has become more serious. Many network viruses have adopted hacker methods to attack users' computers. Therefore, users should also install personal firewall software to prevent hackers.
Kingsoft Antivirus Antivirus Engineer reminds you: Please upgrade the Antivirus to January 2, 2005 virus database to fully process the virus. If Kingsoft Antivirus is not installed, you can log in to / use Kingsoft Antivirus's online drug check or Kingsoft Antivirus download version to prevent the virus from invading.
Today, users are reminded to pay special attention to the following viruses: "Bed Bug" () and "Afcore" ().
"Bedbug" worm virus, which is transmitted through a local area network, and the file name of the virus is highly deceptive. The virus opens a designated port to communicate with the outside world, which will pose a serious threat to the security of the user's system and personal data information.
"Afcore" hacking tool. After the virus is run, the virus will carry out a series of illegal operations on the infected machine, which will approach the security of the user's system and confidential files. The virus also uses this poisoning machine as a springboard to attack other machines in the LAN.
1. "Bed Bug" () Threat Level: ★★
According to Kingsoft Antivirus Antivirus Engineer, this is a worm virus that is transmitted through a local area network. The virus will copy itself to the system directory and the shared directory in the LAN. The virus's file name is composed of 3 randomly generated lowercase English letters, which is very deceptive. The virus can also delete itself, register itself as a system service, enable TCP 445 port to communicate with the outside world, posing a threat to all user information.
Kingsoft Antivirus Antivirus experts remind users: establish good safety habits. Do not open some emails and attachments of unknown origin, do not go to some websites you don’t know much, and do not execute files that have not been processed by anti-virus software after downloading from the Internet, so that your computer is safer.
2. "Afcore" () Threat level: ★★
According to Kingsoft Antivirus Antivirus Engineer, the virus is a DLL file with a random file name, which may be released by the virus EXE file or infected by visiting a malicious website. The virus is executed by the BHO (Browser Helper Object) component registered as Internet Explorer, which runs with one IE browser opened at a time. The virus can perform the following operations:create、delete、Listcookie;Operate clipboard contents;Stealing user system information;Run the specified program;Operate the desktop window;Listen to network packets,and broadcast messages to computers in the LAN;Invade certain Internet cafe management software and make it a puppet of the virus;locking、Log out、closure、Restart the computer;Attack other computers through infected computers, etc.。
Kingsoft Anti-Virus experts remind users: With the development of the network, the problem of hacker attacks on users' computers has become more serious. Many network viruses have adopted hacker methods to attack users' computers. Therefore, users should also install personal firewall software to prevent hackers.
Kingsoft Antivirus Antivirus Engineer reminds you: Please upgrade the Antivirus to January 2, 2005 virus database to fully process the virus. If Kingsoft Antivirus is not installed, you can log in to / use Kingsoft Antivirus's online drug check or Kingsoft Antivirus download version to prevent the virus from invading.