 |
 | Worm.Kido and friends - Unable to update virus database |  |
|
sherpya
|
|
MS discovered a vulnerability in file sharing services, this can lead to remote attacks.
There is already a malware that uses this vulnerability. The vulnerability is not recent as I said before, but I got it on an updated win2008 and an updated xp sp3 last Friday. https://www.viruslist.com/en/viruses/encyclopedia?virusid=21782725 https://www.viruslist.com/en/viruses/encyclopedia?virusid=21782725 This worm blocks all access to av sites, also clamav sites for updates. You may notice that freshclam cannot update. You can check by launching command line prompt and launch:
if the reply is something like
then you may be infected. Kav already made a removal tool https://support.kaspersky.com/faq/?qid=208279973 https://support.kaspersky.com/faq/?qid=208279973 I suggest to try it This worm also may block further accesses to windows update, I've solved the problem by using a little utility called Dial-A-Fix https://wiki.lunarsoft.net/wiki/Dial-a-fix https://wiki.lunarsoft.net/wiki/Dial-a-fix Select all by clicking the green check, ignore if it says that ie version is not known, click on Go button, also ignore if it says something about dll registration with your ie version Please not it may also reset some of your network settings (I've got nothing changed anyway) Do a windows update asap. After Dial-A-Fix the first time you launch windows update it may take a while, since it flushes internal windows update db history log |
|||||||||||||||
|
|||||||||||||||||
 |
| Non Avail Update Database | |
|
linuxguy
|
|
Can not update ClamWin database.
Uninstalled Clam, and re-installed. no luck. Tried pinging Clamav.net as pointed out in previous post.. Error, can not find www.clamav.net tried Kasparsky link from earlier post that indicates there is a fix for "kido worm"... Get Error says: Can't find Server ... How fix Clam application database update ??? thanks |
|||||||||||
|
|||||||||||||
|
| |
|
GuitarBob
|
|
The database update location listed in ClamWin's Internet Updates tab is database.clamav.net on the web. You might try getting into Safe Mode with Networking enabled and then see if you can update.
If you think you have Kido/Conficker/Downadup, you can get information at https://www.confickerworkinggroup.org/wiki/ on the web. You can check for infection, and they should have removal tools. If nothing works, I would download Malwarebytes free Antimalware program and run a QuickScan with it. It is usually pretty good at detecting/removing malware. Regards, |
|||||||||||
|
|||||||||||||
|
 | Worm.Kido and friends - Unable to update virus database | |
|
||
|
|
|
Powered by phpBB © phpBB Group
Design by phpBBStyles.com | Styles Database.
Content © ClamWin Free Antivirus GNU GPL Free Software Open Source Virus Scanner. Free Windows Antivirus. Stay Virus Free with Free Software.
Design by phpBBStyles.com | Styles Database.
Content © ClamWin Free Antivirus GNU GPL Free Software Open Source Virus Scanner. Free Windows Antivirus. Stay Virus Free with Free Software.