VIRUS ALERT!

B

Bob/SoCal

New member
Ok folks,

I've been sent maybe 4 emails, all stating the same in the "from" field saying "Paul". Now, the virus is the W32.Klez.gen virus that's making its way through the internet. The subject field of the emails said "A nice game" and had what's called the "kitty.exe" game as an attachment. That of course wasn't the case, its a worm that'll infect your computer. My virus software, Norton and AVG both caught the virus when my system automatically scans incoming emails.

Now the kicker. It was sent to Webmaster@PredatorMasters.com by "Paul". First, the virus can cloak the address of the sender, "Paul" could have been anyone that's emailed me in the last month or so. It cloaks or masks the senders name, so it's tough to tell who it came from. That's not to say it couldn't be from a trusted friend either. It was sent to Webmaster@PredatorMasters.com, so anyone who has emailed me at that address might download the latest "DAT" files for their virus software and see if you have the virus. It's an executable program virus, so you would have had to download something that had the virus attached.

Good luck folks, now that the email feature is on you might be a little careful when dealing with email. Set your virus software to automatically scan your email before you open it.
 
Another site I frequent has been inundated with Klez viruse attacks, as well as a wide array of different variants thereof. There's some rumor that this increase in numbers may be an attack by PeTa and similar allied interests getting after us via our websites/ talk forums/ bulletin boards. If you do not have an anti-virus program up and going at all times, do everyone a favor and get one NOW. Norton is a good program. Personally, I don't have any use for McAfee, but you can go to www.grisoft.com and download AVG, a freeware program that has beaten both Norton and McAfee when run side by side. An additinal step I'm currently undertaking is a freeware program called Mailwasher available for download at www.mailwasher.net. This program allows you to peruse your incoming e-mail while it's on your ISP's server. Any spam or messages you do not want to download, delete them there. The program also bounces a message back to those who send you SPAM and tells them your addy is no longer valid. Finally, I encourage you to go to housecall.antivirus.com and do an online scan of your PC. This program has consistently discovered upwards of thirty-+ contaminated files on PC's that Norton and McAfee showed as "clean".
As stated before, configure your AV software program to scan all incoming and outgoing e-mails, perform frequent updates and scan often.
 
I belong to a Yahoo email group with NEF firearms as the topic. There was a couple of emails last week with attachments that had a virus. This was intentional - not accidental attempts to spread a virus. As a result now all attachments are automatically deleted from posts to that group. Be on the lookout. I subscribe to McAfee anti virus and can't believe the number of virus' that are out there.

Dave
 
AI got the klez.H virus on the 24th of this month.The subject field said registry confirmation and it had a copy of a webpage from a fishing site i frequent.My virus scanner didnt pick it up, but i dont update or use it very often.I knew what the email was as soon as i got it and deleted it.I figured all was well.Then a few people who got it from my comp sent me some info on this virus.Apparently it exploits a flaw in outlook express and you dont have to actually install/execute the virus to get it.After reading this i went a got several different AV's and finally found one that picked up the virus.Once the virus enters your comp it puts in a backdoor and sends an email back to the sender letting him know.An AV i got from f-secure found the virus and backdoors for me that were supposedly already deleted.You can read about it here http://www.f-secure.com/v-descs/klez_h.shtml Didnt mean to make this so long but figured someone might need to know this.You can also get everything you need to get rid of klez from that link.
 
AI got the klez.H virus on the 24th of this month.The subject field said registry confirmation and it had a copy of a webpage from a fishing site i frequent.My virus scanner didnt pick it up, but i dont update or use it very often.I knew what the email was as soon as i got it and deleted it.I figured all was well.Then a few people who got it from my comp sent me some info on this virus.Apparently it exploits a flaw in outlook express and you dont have to actually install/execute the virus to get it.After reading this i went a got several different AV's and finally found one that picked up the virus.Once the virus enters your comp it puts in a backdoor and sends an email back to the sender letting him know.An AV i got from f-secure found the virus and backdoors for me that were supposedly already deleted.You can read about it here http://www.f-secure.com/v-descs/klez_h.shtml Didnt mean to make this so long but figured someone might need to know this.You can also get everything you need to get rid of klez from that link.
 
If you have NOT been nailed by the current “Klez” virus, no need to read further, but you might want to stash this “fix.”

**** **** **** ****

Note on W32.Klez.gen@mm detections:

W32.Klez.gen@mm is a generic detection that detects variants of W32.Klez. Computers that are infected with W32.Klez.gen@mm have most likely been exposed to either W32.Klez.E@mm or W32.Klez.H@mm. If your computer is detected as infected with W32.Klez.gen@mm, download and run the tool. In most case, the tool will be able to remove the infection.

What the tool does

The W32.Klez Removal Tool does the following:

It terminates all processes that are associated with W32.Klez.E@mm,

W32.Klez.H@mm, W32.ElKern.3587, and W32.ElKern.4926.

It deletes the W32.Klez.E@mm and W32.Klez.H@mm service(s).

It removes the registry entries that were created by [url=mailto:W32.Klez.E@mm
 
Back
Top