Intraday malicious virus program: Backdoor.Win32.Undef.thc

Behavior:
This is a malicious Trojan virus program.
After being executed, the Backdoor virus program shall harvest the computer name, IP Address and, information of antivirus and firewall software which are installed on infected device and; then send these records out to the server which is specified by hackers. Meanwhile, hackers can remote control the infected computers to take malicious behaviors, for example, launching Internet Explorer to visit websites specified by hackers, download Trojan virus program to local device, monitoring infected computer screen and webcam, browsing files which are saved on infected computer, and so on. So, this malicious Backdoor virus program threatens computer security seriously.

Statistics:
RISING Cloud Security reported:
Nov 30, 2011, Rising Cloud Security detected that there were 117,475 computers got attacks from malicious URL injection and, RISING has intercepted 29,583 malicious URLs successfully. Meanwhile, 47263 suspicious URLs were submitted from Rising Cloud Security members.

Top5 Infected Website:
1, www.syqcw.cn**
Injected malicious URL: ** css/7h/swf.html
2, www.tcsos.com**
Injected malicious URL: ** img/index.html?ldj
3, www.u8com.com**
Injected malicious URL: ** com/2011.html
4, www.xiaoshuodown.com**
Injected malicious URL: ** 8832/xm05/4.htm
5, www.zhongyionline.com**
Injected malicious URL: ** . com/wm/index.html

Notice: the symbol ‘*’ means a stochastic letter or number.

Solutions:
1. Install Rising Internet Security, or Rising Antivirus plus Rising Firewall, and get update in time.
2. Install Rising PC Doctor, and choose “Leaks” function to check the leaks or vulnerabilities exist on your computer operating system, patch your computer system in a timely manner because many viruses spread by taking advantage of Windows operating system vulnerabilities.
3. Do not browse suspicious websites, and do not run suspicious plugins; turn off or delete unnecessary system services.
4. Do not receive the suspicious file from QQ, MSN, Email, etc.
5. Open RISING Active Defense and Auto-Protect function while accessing to Internet.


*You can buy RISING Security products here or free download to try.
*If you have any questions about RISING products, please visit Rising support centre for help.