Which DAT and Engine versions are installed on the machine? Are you able to send us infected files to be checked by the research team?
The DAT file was 5913 and the Engine is 5400.1158, but I'm unable to send you the infected files because I have reformatted the computer because I did'nt know what to do because the virus could'nt be removed/deleted by McAfee or manually.
But you can help to know how to remove and prevent it incase it comes back to our network...
My name is Francisco, We in Movicel heve a Gold Support from Mcaffee, our problem is Raila Odinga.
there is more ditalhe abaut it:
Regity Key created
• Key: software\microsoft\windows\currentversion\run\htazpohvqs
USB flash drive
Other consequence of the virus infection.
it create word file in:
It duplicate all files in director, but putting then as .exe
Egg. Test.xls à Test.exe
Opening many time the image in attachment
Movicel Mcafee Produt.
EPO – 4.5.0
Viruscan – 8.7i
DAT – 5945
Engine – 5400.1151
Client: XP, Vista, Win7
Raila odinga.rar.zip 306.0 K
I tried all the info I can get from the net and I came across the website where it helped quite a lot to remove the Raila Odingo from our systems. Here is what you need to do:
1. Delete all the files that is associated with the Raila Odinga virus from your Desktop
2. Go to "C: Wondows, System32" folder and locate all the word documents in that folder and delete them from "System32" folder and if the jpeg of Raila Odinga is in there delete it as well.
3. And lastly visit this side: www.securitystronghold.com to download some tool to make sure that Raila Odinga is no longer on your system.
Hope you will come right!!!
I tried this way but I cant use this becouse I have 600 Client computers,and more tham 30 Server.
Well I was fortunate enough that the virus did not affect all our systems, only affected one user that's why a was so lucky to get rid of it...
I guess in your case you need an intervene from the McAfee Support Team!
its ok now, mcafee added the definicions of raila oding in Monday Update and my network is clean for while.
kanks for you help.