Spreading viruses?
Discussion
I got an email with a title to do with a virus called Klez.E (I think). The content was as follows:
________________________________
Klez.E is the most common world-wide spreading worm.It's very dangerous by corrupting your files.
Because of its very smart stealth and anti-anti-virus technic,most common AV software can't detect or clean it.
We developed this free immunity tool to defeat the malicious virus.
You only need to run this tool once,and then Klez will never come into your PC.
NOTE: Because this tool acts as a fake Klez to fool the real worm,some AV monitor maybe cry when you run it.
If so,Ignore the warning,and select 'continue'.
----------------------------------------
Out of paranoia, suspicion, and outright hostility to unsolicited emails from unknown sources, I didn't open the attachment, deleted the email, and blocked the sender.
Question: was this the right thing to do?
________________________________
Klez.E is the most common world-wide spreading worm.It's very dangerous by corrupting your files.
Because of its very smart stealth and anti-anti-virus technic,most common AV software can't detect or clean it.
We developed this free immunity tool to defeat the malicious virus.
You only need to run this tool once,and then Klez will never come into your PC.
NOTE: Because this tool acts as a fake Klez to fool the real worm,some AV monitor maybe cry when you run it.
If so,Ignore the warning,and select 'continue'.
----------------------------------------
Out of paranoia, suspicion, and outright hostility to unsolicited emails from unknown sources, I didn't open the attachment, deleted the email, and blocked the sender.
Question: was this the right thing to do?
Has anyone used this lot www.antivirus.com ?
Our IT manager recommends it but I didn't know how 'good' it really is.
MC
Our IT manager recommends it but I didn't know how 'good' it really is.
MC
Basically, don't ever do anything that mails like this suggest, as they almost invariably contain viruses. If in doubt (or curious) I generally feed a five or six word extract from the mail into Google and see what's returned. As these mails are sent out in bulk, it's very unusual to get no results for them.
In your case, I copied and pasted "of its very smart stealth and anti-anti-virus technic" and got this back:
www.snopes.com/computer/virus/immunity.htm
Dan
In your case, I copied and pasted "of its very smart stealth and anti-anti-virus technic" and got this back:
www.snopes.com/computer/virus/immunity.htm
Dan
It appears that that e:mail is a Klez.H spoof.
Click this for details:
http://securityresponse.symantec.com/avcenter/venc/data/w32.klez.h@mm.html
Matt.
Click this for details:
http://securityresponse.symantec.com/avcenter/venc/data/w32.klez.h@mm.html
Matt.
This particular mail is a hoax. And that was the real Klez virus it would have installed.
Get Anti-Virus software. (Norton is good).
Decent AV software is updated on an almost daily basis so make sure you always download updates. Mine is set up to check if there is an update every single day!
You should be paranoid about this stuff. Klez is absolutely rife at the minute. My Mrs is getting about 10 a day caught by her software. We get about 20-30 e-mail viruses sent to us a night at our office - all caught by NAV.
Get Anti-Virus software. (Norton is good).
Decent AV software is updated on an almost daily basis so make sure you always download updates. Mine is set up to check if there is an update every single day!
You should be paranoid about this stuff. Klez is absolutely rife at the minute. My Mrs is getting about 10 a day caught by her software. We get about 20-30 e-mail viruses sent to us a night at our office - all caught by NAV.
This is one of the Klez variants that spreads itself by social engineering - ie. trying to trick you into running an exe.
You did absolutely the right thing by not opening it.
Norton says this about it:
Source:
Symantec (click here)
>> Edited by JonRB on Thursday 10th October 11:44
You did absolutely the right thing by not opening it.
Norton says this about it:
quote:
The message may be disguised as an immunity tool. One version of this false message is as follows:
Klez.E is the most common world-wide spreading worm. It's very dangerous by corrupting your files. Because of its very smart stealth and anti-anti-virus technic,most common AV software can't detect or clean it.We developed this free immunity tool to defeat the malicious virus. You only need to run this tool once,and then Klez will never come into your PC.
NOTE: Because this tool acts as a fake Klez to fool the real worm,some AV monitor maybe cry when you run it. If so,Ignore the warning,and select 'continue'. If you have any question,please mail to me.
If the message is opened in an unpatched version of Microsoft Outlook or Outlook Express, the attachment may be automatically executed. Information about this vulnerability and a patch are available at
www.microsoft.com/technet/security/bulletin/MS01-020.asp
Source:
Symantec (click here)
>> Edited by JonRB on Thursday 10th October 11:44
Gassing Station | General Gassing [Archive] | Top of Page | What's New | My Stuff