Skype caught the virus again
According to a message from several antivirus companies, as well as an official statement by Villu Arak, spokesman for Skype Inc., yesterday, September 10, users once again faced a virus attack organized by unknown attackers.
The virus is spread in one of the simplest (and, alas, most effective) ways: a message comes to the Skype user in a text chat with a link to the jpeg image and a call to look at it as soon as possible. As soon as the user clicks the link, a malicious program penetrates the PC (Worm.Win32.Skipi.a), blocks the operation of the antivirus software, switches Skype to Do Not Disturb, and starts sending a message with the link to the contact list. Thus, the user can receive a malicious message even from friends. It is important to note that the worm does not cause any serious damage to the system.
Antiviruses produced by F-Secure, Symantec and Kaspersky Lab, according to representatives of these companies, are already able to detect this virus and neutralize it. However, Skype Inc. cites an official document with instructions for getting rid of the worm.
')
So, solving the problem consists of the following steps:
- restart your PC in Safe Mode
- run the registry editor (regedit)
- find the HKLM / software / microsoft / windows / currentversion / runonce branch
- find an entry in it containing mshtmldat32.exe and delete this entry
- go to the Windows \ System32 directory and delete the files wndrivs32.exe, mshtmldat32.exe, winlgcvers.exe and sdrivew32.exe
- go to the Windows \ System32 \ drivers \ etc directory
- find the hosts file, open it with Notepad and delete all the contents, then save the file and close.
- restart the PC.
via Skype
The virus is spread in one of the simplest (and, alas, most effective) ways: a message comes to the Skype user in a text chat with a link to the jpeg image and a call to look at it as soon as possible. As soon as the user clicks the link, a malicious program penetrates the PC (Worm.Win32.Skipi.a), blocks the operation of the antivirus software, switches Skype to Do Not Disturb, and starts sending a message with the link to the contact list. Thus, the user can receive a malicious message even from friends. It is important to note that the worm does not cause any serious damage to the system.
Antiviruses produced by F-Secure, Symantec and Kaspersky Lab, according to representatives of these companies, are already able to detect this virus and neutralize it. However, Skype Inc. cites an official document with instructions for getting rid of the worm.
')
So, solving the problem consists of the following steps:
- restart your PC in Safe Mode
- run the registry editor (regedit)
- find the HKLM / software / microsoft / windows / currentversion / runonce branch
- find an entry in it containing mshtmldat32.exe and delete this entry
- go to the Windows \ System32 directory and delete the files wndrivs32.exe, mshtmldat32.exe, winlgcvers.exe and sdrivew32.exe
- go to the Windows \ System32 \ drivers \ etc directory
- find the hosts file, open it with Notepad and delete all the contents, then save the file and close.
- restart the PC.
via Skype
Source: https://habr.com/ru/post/13982/
All Articles