Sunday, September 25, 2005

Security : Virus Merbahaya..

Virus Merbahaya... Curi Akaun Bank & Password
Virus yang bahaya boleh curik akaun bank dan password korang dah keluar, hati2! Benda ni sebenarnya spyware, tapi aku namakan dia virus pasal aku rasa tak ramai kat sini yang tau apa bendanya spyware tu. tapi same ja. Aku pos kat sini pasal aku rasa ni amat penting, dan ni berita yang gerenti takkan kluar dalam paper punya. Sejak 2 3 minggu lepas penggiat antispyware tengah hebat mengkaji satu spyware ni yang berkemungkinan besar spyware paling bahaya dan terhebat pernah keluar. Nak tau ?
Dia buat mase ni Srv.SSA-KeyLogger, dan fix dia ada dari sunbelt software (yang juga announce software ni kat umum). Kalau nak fix, download, pastu cabut kabel internet, pastu run program ni. Tapi ada orang yang repot dapat false positive la. Sila pegi ke section bincang IT kalo nak orang tolong checkkan pc korang. Spyware ni sangat bahaya sampai FBI dah masuk campur. Kalau korang nak check, suruh sesiapa untuk pos log hijackthis diorang (download, run, pilih Do a system scan and save a logfile, pastu tengok kat bawah2) dan perhatikan kat entry ni:O4 - HKLM\..\Run: [load32] C:\WINDOWS\System32\winldra.exe
Apadia buat?
  1. dia tak install dengan sendiri, tapi daripada satu spyware coolwebsearch lain.
  2. kalau korang nak cuba clean virus ni dengan delete ke ape ke, dia akan carik mana-mana program kat list startup korang, pastu boh virus yang akan download program ni balik.
  3. dia curik password, username, emel member korang, credit card number DARI BANYAK PROGRAM. mirc ke, IE ke (dari harddisk ke, dari website yang korang pegi ke, semua password dia curik)
  4. simpan ape2 informasi dan gambar website yang ade kat clipboard
  5. SEMUA VARIASI INTERNET EXPLORER AKAN KENA. maxthon ke, IE ke, pendek kata banyak browser selain firefox kena. dan, dia akan buat so firewall korang biar je IE install spyware.
  6. dia install webserver + php yang akan upload data ke satu website, dan tunggu arahan dari satu website macam download program X ke Y ke.
  7. dia install SMTP dan POP3 mail server, pastu send spam ke semua emel address yang ade kat pc korang.
  8. dia install rootkit - macam trojan, ade backdoor, keylogger, etc
  9. Windows Security center akan disable. kalau takde SP2, dia ubah registry so takleh install SP2.
  10. ada program2 macam total uninstall takleh jalan.
  11. dia ubah HOSTS file so SEMUA website antispyware dan antivirus tak jalan.
  12. dan lain lain yang orang still tengah carik.
dan kalau korang masih ingat ni benda kecik je, ada mamat dah hack website spyware ni, dan kat website tu tersimpan data2 dan bank account (aku amat pasti ade yang dari maybank2u.com) yang memang easily berjumlah US3 juta. Pasal tu FBI masuk campur. Edit: buat masa ni step2 untuk fix spyware ni dah diedarkan kepada antispyware dan antivirus... so sila update anvirus dan antispyware hari2.

5 comments:

PABlog03 said...

Hey,
The news continuously reminds us of the horrors that occur daily. Sexual assault, kidnapping, missing children, murder, break-in, and terrors heppen frequently and when we least expect it. Having the right protection can dramatically reduce your chances of being harmed during these occurrences. Do not become a statistic.

I have a stun gun baton site. It pretty much covers stun gun baton related stuff.

Check it out :-)

Siva said...

Marketers starting to capitalize on blog wave
Elizabeth Vaeth Nearly 50 million Americans visited online Web logs in the first quarter of 2005, according to the "Behaviors of the Blogosphere" report from comScore Networks Inc., a Virginia-based consumer ...
Nice post. Really I liked it.
I have a mcse 2000 certification training site. It pretty much covers mcse 2000 certification training related stuff.
Thanks.

Azhar Hussein said...

Hey :)

You have a great blog here, keep up the great work! I'll definitely bookmark you.

Do you wanna check out The Coolest Guy On The Planet's website?

Check it out if you get some time, and I'll be sure to check back here regularly!

Willie B. said...

Get answers to your .NET questions with these Microsoft resources
During an interesting conversation with a publisher of technical books, they expressed their dismay at the lack of success for titles focused on the Microsoft .NET platform.
Took me awhile to find a good blog ...glad I came across yours. I like it a lot!

Sonny M.

I have a related site that focuses on eliminate depression you may like too. It pretty much covers eliminate depression related stuff.

Come and check it out if you get time :-)

Mary Morgan said...

AOL and HackADay?
The deal, 'expands AOL's presence in the blogging community and the company's potential to attract advertising dollars', says the Associated Press .
Find out how you can buy and sell anything, like things related to private road construction on interest free credit and pay back whenever you want! Exchange FREE ads on any topic, like private road construction!