Over the past couple of days there have been some posts that are infected with the "KAK" virus. The Virus is a Trojan type and only gets re-transmitted if you reply to an infected e-mail but it only infects your computer if you are a Micro$oft Outlook user as soon as you open the infected email. It will then add entries to your registry at the next reboot which is clever and this makes it difficult to detect in transit. It then gets re-transmitted with new messages authored by Micro$oft Outlook, so if you are using a version other than the more secure latest version of this product there is a better than even chance you have the virus.
The tell tail signs that your computer is infected are if you get an "Active X" warning when you open an email to read. I have scanned all the Ozdat email over the past few weeks and I have contacted the people that have sent or replied to infected emails.
This virus sucks. If you have the MRU entries in your Windows Registry you can't download anything from the Web until you've cleaned the Windows Registry and it would seem that the popular Anti-Virus software at this stage can't protect us fully from getting infected. NAV only tells you when you've been infected if you scan after a reboot.
There are 7 manual steps recommended to repair your system.
Disclaimer.
I accept no responsibility if you get this wrong and damage of any
kind is subsequently caused to your Windows 95/98 Operating System. If
you aren't confident that you know how to backup and then edit your "Windows
Registry" then seek expert assistance from an IT Professional to clean
this virus of your system.
To get rid of it if you use Win9x (95/98) and your Windows Folder is on Drive C:
1. Make a copy of the Windows Registry [C:\WINDOWS\SYSTEM.DAT] to another
folder other than C:\WINDOWS
2. Run the Program C:\WINDOWS\REGEDIT.EXE (or your favourite Registry
Editor)
3. Search for the string "kak" (not case sensitive) in Keys, Values
& Data.
4. Delete the data entries if any are found (they should be in the
MRU Section).
5. Press F3 for next search and repeat Steps 4 & 5 until you get
to end of the Registry.
5. Start the Windows Explorer.
6. Search your drives for "kak" and delete files like kak.htm etc.
- The common locations are in the Root of C:\ drive and the C:\WINDOWS
folder.
7. Update your version of Micro$oft Outlook Express from http://www.microsoft.com
as if you continue to use this product then you will become re-infected
every time you read an infected email and the Active X warning pops up.
regards
Terry
jamesf wrote:
Hahaha...got to love Netscape ... I laugh every time another
one of these MS specific virus's are found.
Must be a Netscape employee writing them all or just another
one of the many Micro$oft knockers out there :)I checked the message source of xxxxxxxxxxx emails and
yep he does have some sort of script attached.Yep Probably should warn xxxx and the list.
I will do a couple of messages soon...just got to start to reload
a copy of Windows98 on a PC that has crapped out after only a
couple of weeks of the customers use....Bl#%dy MS again :)
(actually to be fair, I think the blame lays in the VIA service
pack with this one)Thanks
cya
JamesFTerry & Heather wrote:
> James,
> It would seem that the KAK virus might be getting around on the
> Ozdat List. It only attacks M$ Outlook clients and only the very
> latest virus definitions will catch it. I was wondering should the
> list at large be notified that it is around and they should check
> their definitions are up to date, especially if they use Outlook.
--membersozdat-------------------------------------------------------
OZDAT Mailing List Please Note:-
Send (un)subscribe requests to [EMAIL PROTECTED]
Send submissions to [EMAIL PROTECTED]
No unauthorised redistribution of this email
http://www.datascribe.com.au/ozdatonline/index.htm
http://www.datascribe.com.au/ozdatonline/listindex.html
http://www.mail-archive.com/[email protected]/
---------------------------------------------------------------------
