My computer is infected, a popup window shows Internet Security 2010, which blocks internet connection. Another one is called Vodnet cocket error. I run full scan with Mcaffee, but it didn't get rid of them. Can someone help? Thanks! Glen953
Please refer to http://community.mcafee.com/docs/DOC-1093 regarding the "Internet Security 2010" issue (known by McAfee as FakeAlert). If the offending file is not detected with the most current McAfee DAT files and Engine, please send us a sample for analysis, in a password-protected ZIP file (password - infected). You can find detailed instructions for how to do this at http://vil.mcafeesecurity.com/vil/submit-sample.aspx.
Is there an easier way to address this virus? Has Mcafee updated its files that would allow it to be detected and removed with a scan of my PC?
Possibly. Without a sample for analysis, we can not conclusively say whether or not the latest DATs will detect it - there are numerous variants of this threat. You should always keep your DATs up to date, and of course we recommend that you first try scanning with the latest DATs to remove this malware. If the offending file is not detected with the most current McAfee DAT files and Engine, please send us a sample for analysis, in a password-protected ZIP file (password - infected). You can find detailed instructions for how to do this at http://vil.mcafeesecurity.com/vil/submit-sample.aspx.
Here are some brief instructions for creating a password-protected zip file for WinZip. If you have different software or if you need further instructions, please consult technical support of the archiving software you have.
WinZip is available for download at http://www.winzip.com
1) Create a new zip file
2) In WinZip, choose Options, then Password, then type the password "infected"
3) Place your infected files in the Zip file
4) Close the archive and send it to Virus_Research@avertlabs.com with the description of your issue.
If you're using WinZIP you can tell if the files have been password-protected because there will be a plus-sign at the end of the filename (i.e. "filename.exe+"). You can also try to extract the file from the ZIP file again, at which time it should prompt you for a password before extracting.
You may wish to submit virus-samples to
http://www.webimmune.net. This may be the best option if you're having a problem with a gateway scanner stripping or blocking your file-sample, or you're having difficulties with WinZIP (WebImmune does not require that the file be packaged in a WinZIP archive).