3 Replies Latest reply on Feb 21, 2014 5:05 AM by exbrit

    Brazilian CPL malware

    Sylvin Dias

      Hello Guys,


      Customer is referring to Brazilian CPL malware Threat Advisory:https://kb.mcafee.com/resources/sites/MCAFEE/content/live/PRODUCT_DOCUMENTATION/ 25000/PD25007/en_US/McAfee_Labs_Threat_Advisory_Brazilian_CPL_Malware.pdf


      Customer wants to know if we have already added this to any daily DAT.

      If yes, Which DAT? If no, by when can we add this to the daily DATs?


      Any guidance would be much appreciated.




      Sylvin Dias
      Product Specialist

      Platinum Support

      McAfee, Inc.

        • 1. Re: Brazilian CPL malware

          We don't know such details here in the forums as it is peer-to-peer support for the main part.  As you are McAfee staff you can send an internal enquiry to the labs surely?   I would imagine as of the date of that PDF it was part of the DAT's but as many infections have new variants I would be on the lookout for it and follow the GetSusp suggestion mentioned in that publication.


          My own personal experience tells me that the second something like that hits, don't touch anything, mouse or keyboard and hard power off.  Then boot to Safe Mode and use System Restore to go back to before it hit.   If successful, temporarily disable System Restore to delete the infected restore point.


          See the last link in my signature below for hints and links.

          • 2. Re: Brazilian CPL malware

            Question was answered in a different forum.

            • 3. Re: Brazilian CPL malware

              OK I'm assuming the thread is answered then.