Intraday malicious virus program: Backdoor.Win32.ECode.tk

Behaviour:
This is a malicious Backdoor virus program which is written in E language.
After being executed, the virus program shall disguise as picture files to tempt computer users’ attention. So, while computer users open such “picture” file, the virus program shall be activated at the same time. Then, the virus program shall start IE Browser, and hide the window to prevent computer users’ acknowledge away. Finally, the virus program shall inject its executable malicious program into IE process of infected devices, so hackers can remote control the infected computer. So, this malicious Backdoor virus program threatens computer security seriously.

Statistics:
RISING Cloud Security reported:
June 29th, 2010 there were 2,757,791 devices got malicious attack via malicious Webpage Horse Hanging tech, and RISING Virus Lab has intercepted 111,899 malicious hyperlinks with webpage Horse Hanging tech. And Rising Cloud Security got 27,557 reports from end users.

Top5 Infected Website:
1, erm.bnu.edu.cn
with malicious hyperlink: **. info/hhh/20.html, etc.
2, www.yz.sdu.edu.cn/html/libei/3816.html
with malicious hyperlink: ** com/book/ie6.html?xxxx, etc.
3, xcb.ruc.edu.cn/xcontent.asp?id=169
with malicious hyperlink: ** info/hhh/20.html, etc.
4, www.mypethome.com/viewthread-6528799.html
with malicious hyperlink: ** info/hhh/20.html, etc.
5, www.17tech.com/news/2008041212537.shtml
with malicious hyperlink: ** org:7788/3/index.html?My, etc.

Notice: the symbol ‘*’ means a stochastic letter or number.

Solutions:
1. Install Rising Internet Security or Rising Anti-virus, personal firewall, update in time, and at least 3 times per day for updating Rising.
2. Install Rising PC Doctor, and choose “Leaks” function to check the leaks or vulnerabilities exist in your computer operation system, patch your computer system in a timely manner as many viruses spread by taking advantage of the system exploits or vulnerabilities.
3. Do not browse suspicious websites, and suspicious inserter; turn off or delete unnecessary system services.
4. Do not receive the suspicious file from QQ, MSN, Email, etc.
5. Open RISING Active Defense and Auto-Protect function when accessing to the internet.


*You can buy RISING Security products here or free download to try.
*If you have any questions about RISING products, please visit Rising support centre for help.