Intraday malicious virus program: Trojan.Win32.WorldCup.a

Behaviour:
This is a malicious Trojan virus program which pretends as predictive software for FIFA World Cup 2010 result.
After being executed, the virus program shall disguise as an icon of the picture of FIFA World Cup 2010 football, release phishing websites shortcuts and malicious open directory websites shortcuts on infected computer desktop and favorites folder of IE Browser, and even replace the IE Browser icon on infected computer desktop to redirect computer users to malicious website. While users access to these malicious websites, users’ privacy information may be exposed to hackers, and online bank account may under threat of being stolen by hackers. Meanwhile, these malicious websites can get good traffic by redirecting infected computer users to access. So, this malicious Trojan virus program threatens computer users’ privacy security and online bank account security seriously.

Statistics:
RISING Cloud Security reported:
June 24th, 2010 there were 1,387,650 devices got malicious attack via malicious Webpage Horse Hanging tech, and RISING Virus Lab has intercepted 120,678 malicious hyperlinks with webpage Horse Hanging tech. And Rising Cloud Security got 111,821 reports from end users.

Top5 Infected Website:
1, shangqing.marry.online.sh.cn/special/gold/2009/2012/1716.html
with malicious hyperlink: **. com/include/data/wap/ex7/ie.html, etc.
2, www.yangtse.com/bbs/templates/colors/13827.html
with malicious hyperlink: ** info/w/w3.htm, etc.
3, hy.tsinghua.edu.cn
with malicious hyperlink: ** cn/admin/webedit/dialog/about/n6.htm, etc.
4, fzlt.12799.com/a/feizhuliumeinv
with malicious hyperlink: ** org:7788/9/index1.html, etc.
5, ent.shangdu.com/09yule_huayu/28288/?10236.html
with malicious hyperlink: ** hk/plus/paycenter/a/ie.html?xxxx, etc.

Notice: the symbol ‘*’ means a stochastic letter or number.

Solutions:
1. Install Rising Internet Security or Rising Antivirus Plus Rising Firewall, update in time, and at least 3 times each day for update.
2. Install Rising PC Doctor, and choose “Leaks” function to check the leaks or vulnerabilities exist on your computer operation system, patch your computer system in a timely manner as many viruses spread by taking advantage of the system exploits or vulnerabilities.
3. Do not browse suspicious websites, and suspicious inserter; turn off or delete unnecessary system services.
4. Do not receive the suspicious file from QQ, MSN, Email, etc.
5. Open RISING Active Defense and Auto-Protect function while accessing to the Internet.


*You can buy RISING Security products here or free download to try.
*If you have any questions about RISING products, please visit Rising support centre for help.