Computer Virus Hidrag.a Rapidly Spreading Across Networks
Security researchers have found Hidrag.a, a computer virus, which spreads through browser exploits, network shares and IRC (Internet Relay Chat), as reported by Pc1news on July 10, 2009.
Researchers state that once the virus is executed, it stays inside the system's memory and attempts to infect .scr and .exe files running on the infected PC.
In addition, Hidrag.a might establish a backdoor that allows an intruder to make an unhindered entry to the infected computer, putting possible banking and financial data at risk.
After execution, Hidrag.a makes its own duplicate copy of approximately 36K in size and plants it on the Windows directory by naming it svchost.exe, according to the researchers. Following this, the virus registers the '.exe' file within the auto-run key of the PC's registry.
The researchers also state that Hidrag.a has a connection with various other files like setup.exe, malware.exe and NoDNS.exe.
In fact, other security companies also analyzed this virus. While Symantec and McAfee refer Hidrag.a as W32.Jeefo, Microsoft refers it as Jeefo.A. Other names given to Hidrag.a are Jeefo-3, Virus.Parite.B, TROJ_FLOOD.AF, and so on.
Meanwhile, the security researchers said - the malicious Hidrag.a virus has caused the maximum number of infections in the United States where an aggregate of 43,601 strains of malevolent web traffic has been reported. China, which follows the US, has as many as 42,597 strains of malevolent traffic owing to Hidrag.a. Along with these nations, Brazil, Japan and India are other countries that are infected with the malicious Hidrag, while the United Kingdom, Germany, France, Italy and Russia have also been infected
Thus, Internet users in these nations should exercise caution while transacting online, engaging in content sharing on networks, using the Net to chat and accessing file transfers and attachments, experts advise.
If any user finds his system infected with Hidrag.a, then he should turn on his computer's firewall. Additionally, users always keep their computers up-to-date by deploying the most recent software updates and the latest antivirus.
Lastly, they should adopt the measures that would thwart cyber criminals' attempts to compromise or hijack their systems.
Related article: Computer Virus Writers Adopt New Strategy
» SPAMfighter News - 7/29/2009
We are happy to see you are reading our IT Security News.
We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!