Intraday malicious virus program: Backdoor.Win32.Undef.tdy

Behavior:
This is a malicious Backdoor virus program.
The Backdoor virus program shall be triggered during the process of releasing two-stage file of computer memory and; release dead codes to prevent scan and check of antivirus software on local computer away. Also, the Backdoor virus program does not add its executable application into Windows Startup option, but exploits method of alternation to achieve startup with Windows. After being executed, the Backdoor virus program shall harvest the computer name, IP Address and, information of antivirus and firewall software which are installed on infected device and; then send these records out to the server which is specified by hackers. So, this malicious Backdoor virus program threatens computer security seriously.

Statistics:
RISING Cloud Security reported:
June 23rd, 2011, Rising Cloud Security detected that there were 395,108 computers got attacks from malicious URL injection and, RISING has intercepted 13,405 malicious URLs successfully. Meanwhile, 52820 suspicious URLs were submitted from Rising Cloud Security members.

Top5 Infected Website:
1, web3.fimmu.com/sifa**
Injected malicious URL: ** com/sifa/img/flash.html
2, www.cxfood.cn**
Injected malicious URL: ** cn/webedit/ie.html
3, www.maestro.com.cn**
Injected malicious URL: ** cn/userfiles/media/1/2.htm
4, www.sanyamarry.com**
Injected malicious URL: ** com/bbs/flash.html
5, www.gzyoga.com.cn**
Injected malicious URL: ** co.kr/myutil/mod_test/gm/ms0700422.htm

Notice: the symbol ‘*’ means a stochastic letter or number.

Solutions:
1. Install Rising Internet Security, or Rising Antivirus plus Rising Firewall, and get update in time.
2. Install Rising PC Doctor, and choose “Leaks” function to check the leaks or vulnerabilities exist on your computer operating system, patch your computer system in a timely manner because many viruses spread by taking advantage of Windows operating system vulnerabilities.
3. Do not browse suspicious websites, and do not run suspicious plugins; turn off or delete unnecessary system services.
4. Do not receive the suspicious file from QQ, MSN, Email, etc.
5. Open RISING Active Defense and Auto-Protect function while accessing to Internet.


*You can buy RISING Security products here or free download to try.
*If you have any questions about RISING products, please visit Rising support centre for help.