We know you would never click on suspicious links in your email or download unexpected files willy-nilly, but we're willing to bet you know someone that would. Now would be a good time to remind them not to do that sort of thing. According to McAfee, there's a new worm slithering through cyberspace that likes to chew on your AV software. Like most malware, this one requires a little help from the end user.
The worm is spread by email with a link to a seemingly innocent PDF file or raunchy WMV download, though users who click will get much more than they bargained for.
"When a user chooses to manually follow the hyperlink, they will be prompted to download or execute the virus," McAfee warns. "When run, the virus installs itself to the Windows directory as CSRSS.EXE (not to be confused with the valid CSRSS.EXE file within the Windows System directory). Once infected the worm attempts to send the aforementioned message to email address book recipients."
McAfee says it can also be spread through accessible remote machines, mapped drives, and removable media through Autorun replication. Once infected, the virus attempts to cripple and delete security services, including popular AV software like AntiVir, Avast, AVG, McAfee, Panda, and a whole bunch of others.