“Here you have” Virus Threatens Cyber-security!

By Turjo, Gaea News Network
Friday, September 10, 2010


On Thursday, a malicious worm infiltrated several high profile US companies and thousands of other local users. This new virus is called “Here you have” and is masquerading as a benign PDF inside a spam e-mail.

The e-mail which contains the subject line “Just for you” or “here you have” contains a link to what appears to be a downloadable PDF document, but is actually an executable (.exe) file in disguise. If the link is clicked it takes you to an executable file with extension .scr. When the virus runs in a computer, it installs itself as a CSRSS.EXE in the windows directory and then e-mails the contents of your address book. It also spreads through mapped drives, remote machines, and removable media. The virus then attempts to download files and delete security software, including any anti-virus software installed in your machine.

While the domain linked to in these infected e-mails is no longer live, infected computers can still be spreading virus messages. On Thursday, “here you have virus email” was the second most-searched topic on Google. Several cybersecurity companies are working hard to eradicate this virus as soon as possible.

In the mean time, here are few points to save yourself from the virus “Here you have” .

  • Do not click on any suspicious link , even if you know the sender.
  • Do update your anti-virus software now. All the companies have updates their definitions file to handle “Here you have” worm.
  • If you think you have been infected, please disconnect your machine from the internet and install the latest version of an anti-virus software on a removable drive. Use it to disinfect your machine.
will not be displayed