Heads Up, Hotmail Users

Discussion in 'malware problems & news' started by JimIT, Jul 8, 2005.

Thread Status:
Not open for further replies.
  1. JimIT

    JimIT Registered Member

    Joined:
    Jan 22, 2003
    Posts:
    1,035
    Location:
    Denton, Texas
    Hotmail (Trend) is not detecting a new zip file purportedly from Microsoft. Zipped file is named KB67982.zip.

    Text of the e-mail follows:

    Currently detected by Kaspersky, AntiVir, F-PROT, NOD32 (AH).

    UPDATE: 7/13/05

    Now detected by Clam, AntiVir, F-PROT, NOD32, McAfee, Kaspersky, Panda, Sybari, VBA32, ArcaVir, AVG.


    Beware! :doubt:



    *******************************************
    Security Update for Windows XP (KB67982)


    A security issue has been identified that could allow an attacker to remotely compromise your Windows-based system and gain control over it.

    Quick Info
    File Name:
    svcpack.exe

    Download Size:
    44 KB

    Date Published:
    08/07/2005

    Version:
    67982

    Overview

    A security issue has been identified that could allow an attacker to remotely compromise your Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer.


    © 2005 Microsoft Corporation. All rights reserved. Terms of Use | Trademarks | Privacy Statement

    *************************************************************
     
    Last edited: Jul 13, 2005
  2. jlo

    jlo Registered Member

    Joined:
    Nov 29, 2004
    Posts:
    475
    Location:
    UK
    Hi,

    If you still have the file could you zip and password protect it and send to virus_doctor@trendmicro.co.uk so they can check it.

    What was the file identified as? You can also submit to http://virusscan.jotti.org/ and the file will be shared with those AV that do not currently detect!

    Best Wishes

    Jlo
     
  3. JimIT

    JimIT Registered Member

    Joined:
    Jan 22, 2003
    Posts:
    1,035
    Location:
    Denton, Texas
    Hi J-lo. Files have already been submitted. It's a trojan downloader, probably a variant of an existing nuisance.

    ;)
     
  4. jlo

    jlo Registered Member

    Joined:
    Nov 29, 2004
    Posts:
    475
    Location:
    UK
    Thanks for the heads up!

    Cheers

    Jlo
     
  5. skillzz

    skillzz Guest

    how do you get rid of it?? kaspersky says it cant delete it on mine
     
  6. Infinity

    Infinity Registered Member

    Joined:
    May 31, 2004
    Posts:
    2,651
    Thanx JimIT, I'll try to watch out!

    Thanx for da heads up.
     
  7. Blackspear

    Blackspear Global Moderator

    Joined:
    Dec 2, 2002
    Posts:
    15,115
    Location:
    Gold Coast, Queensland, Australia
    Have you tried rebooting into "Safe Mode" and running a scan that way?

    Cheers :D
     
Loading...
Thread Status:
Not open for further replies.