Tuesday, June 02, 2015
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
BlackBerry 10.3.2 and BlackBerry Blend 1.2 Coming to All BlackBerry 10 Devices
Instagram To Open Up Its Advertising Platform
G.SKILL at Computex 2015
LG Display Showcases 18-inch Rollable Display At SID
MSI Highlights First Gaming Notebooks With Eye-tracking Capabilities at COMPUTEX 2015
Vimeo Launches Subscription Service
E FUN Introduces Affordable Flexx 2-in-1 Windows Tablets
Atmel Showcases System Solution for Wearables at Computex 2015
Active Discussions
Copy a protected DVD?
roxio issues with xp pro
How to burn a backup copy of The Frozen Throne
Help make DVDInfoPro better with dvdinfomantis!!!
Copied dvd's say blank in computer only
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > General Computing > New Sky...
Last 7 Days News : SU MO TU WE TH FR SA All News

Tuesday, September 11, 2007
New Skype Virus Confirmed


Symantec and F-Secure have bot confirm the existance of a new worm that is affecting users of Skype for Windows.

The worm is called "w32/Ramex.A". Users whose computers are infected with this virus will send a chat message to other Skype users asking them to click on a web link that can infect the computer of the person who receives the message.

The worm is also known as "WORM_SKIPI.A [Trend]," and "W32/Pykse.worm.b" [McAfee].

After being run the worm displays an image, usually "Soap Bubbles". This image is a part of the Windows OS (wallpaper), according to F-Secure. The worm then installs itself to the system and creates several startup keys for itself in the Registry. When active, the worm sends messages to all Skype Contacts of the infected computer's user.

Messages usually contain a short text and a URL pointing to the worm's file. The worm also modifies the Windows HOSTS file in order to block access to anti-virus vendor sites. As a part of the payload, the worm terminates processes belonging to anti-virus software. The worm also copies itself to all available removable drives with the name of "game.exe".

There are two ways to get rid of the worm: the normal way and the techhead way. Most users should not attempt to edit their computer?s registry manually. For most people, downloading and/or updating their anti-virus software, and scanning their computer to detect and remove the worm, is the way to go.

Expert users ? and only expert users ? who know what they?re doing can also remove the worm manually.

- Restart the PC in safe mode
- Run regedit
- Go to HKLM/software/microsoft/windows/currentversion/runonce find entry with mshtmldat32.exe. Delete this entry.
- Go to Windows\System32 directory and delete following files: wndrivs32.exe, mshtmldat32.exe, winlgcvers.exe, sdrivew32.exe
- Go to windows/system32/drivers/etc
- Find file hosts
- Open it with notepad, ctrl+a and delete all entries (this will resume your antivirus updates), save, close.
- Restart the PC.


Previous
Next
AMD Releases ATI Catalyst 7.9 Display Drivers        All News        SanDisk Announces the New Sansa View
Microsoft and Novell Open Interoperability Lab     General Computing News      Microsoft aims at VMware's virtualization Lead

Get RSS feed Easy Print E-Mail this Message

Related News
Skype Real-time Translation Feature Now Broadly Available
EU court Says Sky Sounds Like Skype
Cisco Identifies Virus That Kills Off PCs
Researchers Identify iOS Espionage App
Skype To Be Part Of Windows 10
Skype Gets Auto-translation Feature
Researchers Identify New iOS Vulnerability
Skype Translator Early Preview Online
Skype Qik Keeps You Engaged Between Calls
Latest Skype For Windows Phone Brings Cortana Integration
Microsoft Demos Real-time Translation For Skype
Group video Calls on Skype Now Free on Windows desktop, Xbox One and Macs

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2015 - All rights reserved -
Privacy policy - Contact Us .