Intraday malicious virus program: Trojan.Win32.StartPage.pjb

Behaviour:
This is a malicious Trojan virus program which redirects IE Browser homepage to malicious websites.
After being executed, the virus program shall create lots of shortcuts on infected computer desktop which redirect to malicious website and, create fake IE Browser icon to tempt computer users to access malicious websites of open directory project webpage. And the virus program shall hijack search engine of IE Browser and other third party web browser software in order to increasing traffic of such website specified by hackers. Also, the virus program downloads Trojan account stealer program on background system of infected computers. So this virus threatens computer security and computer users’ privacy seriously.

Statistics:
RISING Cloud Security reported:
From April 30 to May 3, 2010 there were 3,948,827 devices got malicious attack via malicious Webpage Horse Hanging tech, and RISING Virus Lab has intercepted 459,111 malicious hyperlinks with webpage Horse Hanging tech. And Rising Cloud Security got 94,338 reports from end users.

Top5 Infected Website:
1, www.ccn.com.cn/plus/list/10559.html
with malicious hyperlink: ** cn/gana.html?xx, etc.
2, www.china-train.net/downsystem/View.asp?SoftID=5953
with malicious hyperlink: ** fr:99/03/03.htm?2, etc.
3, www.dragontv.cn/html/new/2009/0304/1757.html
with malicious hyperlink: ** 183:8081/user/inc/yh/ie.html?xx, etc.
4, www.amoi.com.cn
with malicious hyperlink: ** . org:97/0.htm, etc.
5, www.feloo.com/shop/show.php?id=3547
with malicious hyperlink: ** com//1/18.htm, etc.

Notice: the symbol ‘*’ means a stochastic letter or number.

Solutions:
1. Install Rising Internet Security or Rising Anti-virus, personal firewall, update in time, and at least 3 times per day for updating Rising.
2. Install Rising PC Doctor, and choose “Leaks” function to check the leaks or vulnerabilities exist in your computer operation system, patch your computer system in a timely manner as many viruses spread by taking advantage of the system exploits or vulnerabilities.
3. Do not browse suspicious websites, and suspicious inserter; turn off or delete unnecessary system services.
4. Do not receive the suspicious file from QQ, MSN, Email, etc.
5. Open RISING Active Defense and Auto-Protect function when accessing to the internet.


*You can buy RISING Security products here or free download to try.
*If you have any questions about RISING products, please visit Rising support centre for help.