cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
SamuelM
SamuelM
Level 7
Report Inappropriate Content
Message 1 of 8
‎03-08-2010 05:33 AM

how to remove raila odinga virus with mcafee.

Hi,

One of my clients have experienced a virus called "Raila Odinga", the virus makes his computer windows to be mutliplying on the deskop when he tries to open any windows on his Windows XP platfrom. I tried running the Mcafee VSE 8.7i but it does not pick up or delete the virus. Please Help!!!

All my client's McAfee are managed by ePO 4.0.

Tags (1)
0 Kudos
Reply
7 Replies
SamSwift
SamSwift
Level 12
Report Inappropriate Content
Message 2 of 8
‎03-09-2010 02:35 AM

Re: how to remove raila odinga virus with mcafee.

Hi,

Which DAT and Engine versions are installed on the machine? Are you able to send us infected files to be checked by the research team?

Kind regards,

Sam

0 Kudos
Reply
SamuelM
SamuelM
Level 7
Report Inappropriate Content
Message 3 of 8
‎03-09-2010 06:11 AM

Re: how to remove raila odinga virus with mcafee.

Hi Samantha,

The DAT file was 5913 and the Engine is 5400.1158, but I'm unable to send you the infected files because I have reformatted the computer because I did'nt know what to do because the virus could'nt be removed/deleted by McAfee or manually.

But you can help to know how to remove and prevent it incase it comes back to our network...

Thanks,

Sam

0 Kudos
Reply
fnginamau
fnginamau
Level 7
Report Inappropriate Content
Message 4 of 8
‎04-09-2010 07:30 AM

Re: how to remove raila odinga virus with mcafee.

ola,

My name is Francisco, We in Movicel heve a Gold Support from Mcaffee, our problem is Raila Odinga.

there is more ditalhe abaut it:

Sevices created

  • nemesis.exe
  • nemesis.inf
  • server.inf

Regity Key created

Key: software\microsoft\windows\currentversion\run\couponsandoffers

Value: @

• Key: software\microsoft\windows\currentversion\run\htazpohvqs

Value: @

Source

USB flash drive

Other consequence of the virus infection.

it create word file in:

It duplicate all files in director, but putting then as .exe

Egg. Test.xls à Test.exe

Opening many time the image in attachment


Movicel Mcafee Produt.

EPO – 4.5.0

Viruscan – 8.7i

DAT – 5945

Engine – 5400.1151

OS

Server -2003

Client: XP, Vista, Win7

Raila odinga.rar.zip
0 Kudos
Reply
SamuelM
SamuelM
Level 7
Report Inappropriate Content
Message 5 of 8
‎04-11-2010 11:27 PM

Re: how to remove raila odinga virus with mcafee.

Hi Francisco,

I tried all the info I can get from the net and I came across the website where it helped quite a lot to remove the Raila Odingo from our systems. Here is what you need to do:

1. Delete all the files that is associated with the Raila Odinga virus from your Desktop

2. Go to "C: Wondows, System32" folder and locate all the word documents in that folder and delete them from "System32" folder and if the jpeg of Raila Odinga is in there delete it as well.

3. And lastly visit this side: www.securitystronghold.com to download some tool to make sure that Raila Odinga is no longer on your system.

Hope you will come right!!!

Chao.

SamuelM

0 Kudos
Reply
fnginamau
fnginamau
Level 7
Report Inappropriate Content
Message 6 of 8
‎04-11-2010 11:36 PM

Re: how to remove raila odinga virus with mcafee.

Hi,

.

I tried this way but I cant use this becouse I have 600 Client computers,and more tham 30 Server.

0 Kudos
Reply
SamuelM
SamuelM
Level 7
Report Inappropriate Content
Message 7 of 8
‎04-11-2010 11:45 PM

Re: how to remove raila odinga virus with mcafee.

Well I was fortunate enough that the virus did not affect all our  systems, only affected one user that's why a was so lucky to get rid of  it...

I guess in your case you need an intervene from  the McAfee Support Team!

0 Kudos
Reply
fnginamau
fnginamau
Level 7
Report Inappropriate Content
Message 8 of 8
‎04-14-2010 08:26 AM

Re: how to remove raila odinga virus with mcafee.

hi,

its ok now, mcafee added the definicions of raila oding in Monday Update and my network is clean for while.

kanks for you help.

0 Kudos
Reply

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community


Corporate Headquarters
2821 Mission College Blvd.
Santa Clara, CA 95054 USA

Consumer Support   |   Enterprise Support   |   McAfee.com

Legal   |   Privacy   |   Copyright © 2019 McAfee, LLC