McAfee

 

From WeHelpWiki

Jump to: navigation, search

Contacting McAfee

Virus Alerts

13 January 2009 - Kaspersky Lab has detected that multiple variants of Kido, a polymorphic worm, are currently spreading widely.

Net-Worm.Win32.Kido exploits a critical vulnerability (<a href="http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx">MS08-067</a>) in Microsoft Windows to spread via local networks and removable storage media.<p>The worm disables system restore, blocks access to security websites, and downloads additional malware to infected machines.<p>Users are strongly recommended to ensure their antivirus databases are up to date. A patch for the vulnerability <a href="http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx">is available</a> from Microsoft.<p>Detailed descriptions of <a href="http://www.securelist.com/en/viruses/encyclopedia?virusid=21782725">Net-Worm.Win32.Kido.bt</a>, <a href="http://www.securelist.com/en/viruses/encyclopedia?virusid=21782733">Net-Worm.Win32.Kido.dv</a> and <a href="http://www.securelist.com/en/viruses/encyclopedia?virusid=21782749">Net-Worm.Win32.Kido.fx</a> are available in the Virus Encyclopaedia. A dedicated removal tool is available <a href="http://support.kaspersky.com/faq/?qid=208279973" target="_blank">here</a>.

5 June 2008 - Kaspersky Lab has detected a new version of the ‘malicious blackmailer’ Gpcode - <a href="http://www.securelist.com/en/viruses/encyclopedia?virusid=313444">Virus.Win32.Gpcode.ak</a>.<p>The new Gpcode variant encrypts files with extensions DOC, TXT, PDF, XLS, JPG, PNG, CPP, H etc. on hard drives using an RSA algorithm with a 1024-bit key.<p>After encrypting files, the virus leaves a text file in the folder next to the encrypted files with following message:<p>
Your files are encrypted with RSA-1024 algorithm.
To recovery your files you need to buy our decryptor.
To buy decrypting tool contact us at: ********@yahoo.com
<p>Currently, we detect the new variant, but we are unable to crack the 1024-bit key. Our analysts are continuing to work on both the key and the virus to resolve this issue.<p>Kaspersky Lab recommends that all Internet users enable maximum protection from malicious code and network attacks on their computers, refrain from executing suspicious programs received from untrustworthy sources and back up any important information on their computers.<p>Detection of Virus.Win32.Gpcode.ak was added to Kaspersky Anti-Virus signature databases yesterday, on June 4th, at 15:39 GMT. Please make sure to update if you haven’t already.<p>If you have fallen victim to Gpcode.ak, try to contact us using another computer connected to the Internet. DO NOT RESTART or POWER DOWN the potentially infected machine. Contact us by email <a href="mailto:stopgpcode@kaspersky.com">stopgpcode@kaspersky.com</a> and tell us the exact date and time of infection, as well everything you did on the computer in the 5 minutes before the machine was infected: which programs you have executed, which websites you have visited, etc. We'll try and help you recover any data that has been encrypted.<p>For more information about the malicious program, please read <a href="http://www.securelist.com/en/weblog?weblogid=208187524">our weblog</a>.

18 April 2007 - Kaspersky Lab has detected mass mailings of a new variant of Warezov, Email-Worm.Win32.Warezov.nf. At 8.00 Moscow Standard Time, 19 April 2007, 70-85% of the malicious content in mail traffic consisted of various forms of a new modification of Warezov - the Warezov.nf worm.<p>A few hours before this point, there was a noticeable increase in mail traffic of an earlier modification of Warezov - Warezov.do which featured in the October 2006 Top 20.<p>If you are using Kaspersky Anti-Virus 6.0 or Kaspersky Internet Security 6.0 with Proactive Protection turned on, new variants will be detected without the need to update your antivirus databases.<p>A full description of <a href="http://www.viruslist.com/en/viruses/encyclopedia?virusid=156735" target="_blank">Email-Worm.Win32.Warezov.nf</a> is now available in the Virus Encyclopaedia.

6 April 2007 - A new version of Warezov, Email-Worm.Win32.Warezov.mx has been mass-mailed. <p>The worm spreads as an attachment to infected emails. Once launched, it may terminate antivirus and firewall programs and download other malware. <p>An urgent update to antivirus databases has been released. <p>If you are using Kaspersky Anti-Virus/ Kaspersky Internet Security 6.0, enable Proactive Protection, and new variants will be detected without the need to update antivirus databases.

3 April 2007 - Kaspersky Lab has detected mass mailings of a new variant of Warezov, Email-Worm.Win32.Warezov.ms. The mass mailing started on 3rd April 2007. <p>The worm spreads as an attachment to infected emails. Once launched, it may terminate antivirus and firewall programs and download other malware. <p>An urgent update to antivirus databases has been released. <p>If you are using Kaspersky Anti-Virus/ Kaspersky Internet Security 6.0, enable Proactive Protection, and new variants will be detected without the need to update antivirus databases.<p>A detailed description of Email-Worm.Win32.Warezov.ms will be available in the near future.



If you find this helpful please share:
Add to BlogMarksAdd to del.icio.usAdd to diggAdd to FarkAdd to FurlAdd to NewsvineAdd to redditAdd to SegnaloAdd to SimpyAdd to SlashdotAdd to smarkingAdd to SpurlAdd to Wists

Retrieved from "http://www.wehelpwiki.com/support/McAfee"