The truth about the Klez Virus

[GodSpeed]

If you are running Outlook Express like %90 of the others in the world (and me) you are vulnerable to the Klez virus/worm.

When you read it it attempts to automatically execute the payload (actual worm)which would send messages to people in your address book with random subjects based on other mail you have in your inbox or other folders... it will also attach a file from your own computer (which could be private if you are really unlucky) to probably convince the person receiving it to open it OR just as a file for the worm/virus to piggyback on.

Norton detects and stops the virus with the latest definition update. So does Mcaffee, however I am unsure if it actually prevents the file from executing.

If you have antivirus software please get the latest update and scan your drive and if you do not even have any antivirus software, shame on you!

[Metal-Slug]

dont use outlook

[_0AfTeRsHoCk0_]

Quote:

Originally posted by Metal-Slug
dont use outlook

But it's the best

[Krakken]

McAfee users will be protected from any damage from the file but the file still executes (sends out e-mails) before it is deleted.

[Krakken]

Oh and I advise any McAfee users to visit the update website and download the latest DAT files to ensure MAXIMUM protection.
http://download.mcafee.com/updates/updates.asp

Sorry about not being able to help anyone else, I only use McAfee.

[Minoc]

Netscape <3

[Admins]

Outlook must be deleted if you want to do serious stuff on your computer, it's a trojan made by MS. There are far better email programs.

[iniquitus]

Quote:

Originally posted by Stefan
Outlook must be deleted if you want to do serious stuff on your computer, it's a trojan made by MS. There are far better email programs.

I wub Stefan

Urizen

[_0AfTeRsHoCk0_]

Quote:

Originally posted by Stefan
Outlook must be deleted if you want to do serious stuff on your computer, it's a trojan made by MS. There are far better email programs.

Lots of ISP's use outlook express. I use my ISP e-mail for Graal, so if I delete outlook express, how do I access the e-mail?

[Discharge]

My cable service requires me to use it in order to get mail.

[Python523]

I only use outlook because I have a choice between that and website based mail which I think is horrible =(

[Admins]

E-mail server allow connections with pop3 or imap4, you really don't need a special email reader.

[Milkdude99]

I use Outlook and OutLook Express , yes I use both of them , I also use Norton System Works professional 2002 which scans all incomming email and stops it cold and quaintines the virus before it is hardly downloaded , I also have it set to scan all outgoing email . This combined with the Norton Internet Sercurity 2002 will not allow an email to be sent out without my knowedge and will block any attempt to.

[ZanderX]

Outlook is a lot more secure than Outlook Express.

[iniquitus]

Quote:

Originally posted by Milkdude99
I use Outlook and OutLook Express , yes I use both of them , I also use Norton System Works professional 2002 which scans all incomming email and stops it cold and quaintines the virus before it is hardly downloaded , I also have it set to scan all outgoing email . This combined with the Norton Internet Sercurity 2002 will not allow an email to be sent out without my knowedge and will block any attempt to.

Thats only if your outgoing mail is sent through Outlook, most Viruses are smarter than that nowadays and use theire own SMTP code. I belive Klez is one of them. (Not sure.) Norton offers a false sence of security.

If you use outlook, and especialy if you have an addressbook in outlook, your doomed...

Urizen

[Neonight]

Quote:

Originally posted by GodSpeed
If you are running Outlook Express like %90 of the others in the world (and me) you are vulnerable to the Klez virus/worm.

When you read it it attempts to automatically execute the payload (actual worm)which would send messages to people in your address book with random subjects based on other mail you have in your inbox or other folders... it will also attach a file from your own computer (which could be private if you are really unlucky) to probably convince the person receiving it to open it OR just as a file for the worm/virus to piggyback on.

Norton detects and stops the virus with the latest definition update. So does Mcaffee, however I am unsure if it actually prevents the file from executing.

If you have antivirus software please get the latest update and scan your drive and if you do not even have any antivirus software, shame on you!

So you're saying [email protected] has Klez? I've gotten 3 emails about "XP Patches" that were the Klez virus from that email. Actually, the return email is much different... But it's either that or someone's posing as Graal.

[Shiftk03-]

There is a program called "Fix Klez" that Symantic (the makers of Nortan Antivirus) released. I'm not sure the URL to the website to get it but I'm sure a good search would help you find it.. If you fear you may have it, well I suggest you find that file.

[Neonight]

Quote:

Originally posted by Shiftk03-
There is a program called "Fix Klez" that Symantic (the makers of Nortan Antivirus) released. I'm not sure the URL to the website to get it but I'm sure a good search would help you find it.. If you fear you may have it, well I suggest you find that file.

Look at Krakken's thread. I already attached that program in a zip file

[Falcor]

Bleh, i don't keep an address book. I write my E-mail addressed down :o

[Minoc]

Quote:

Originally posted by _0AfTeRsHoCk0_

Lots of ISP's use outlook express. I use my ISP e-mail for Graal, so if I delete outlook express, how do I access the e-mail?

Netscape is better

[nyghtGT]

Quote:

Originally posted by _0AfTeRsHoCk0_

But it's the best

There is some new one that has built in Virus Detection stuffs i'll get the link and post it here...

[Hilton]

AOL is my security blanket of sorts

[Wing]

Quote:

Originally posted by Stefan
Outlook must be deleted if you want to do serious stuff on your computer, it's a trojan made by MS. There are far better email programs.

Windows is a trojan! (psst, make a Linux version!)

[nyghtGT]

http://www.eudora.com

[Juron Pilo]

*rolls eyes* Eh calling it a trojan is going too far... maybe calling it a gateway for other trojans to with which enter would be more appropriate. I'm ashamed of you Stefan for even saying such a thing... you people are too parinoid about viruses... *shrugs*

[Shorty2Dope]

Quote:

Originally posted by Stefan
Outlook must be deleted if you want to do serious stuff on your computer, it's a trojan made by MS. There are far better email programs.

Yea that is why I do not use them. It is so easy to get a virus and have many other problems using outlook. I rather stick with hotmail who checks my mail for a virus and when I open mail it does not go sending viruses to my friends. IF i ever use a mail program to get my mail it would probably be Eudora

[Crono Illusion]

there's an even easier solution to Klez.
DON'T OPEN ATTACHMENTS YOU KNOW NOTHING ABOUT.

It's how I've managed to infect myself with a total of zero viruses in the past seven years and never run an antivirus program to actually delete a virus.

[Shorty2Dope]

Quote:

Originally posted by Crono Illusion
there's an even easier solution to Klez.
DON'T OPEN ATTACHMENTS YOU KNOW NOTHING ABOUT.

It's how I've managed to infect myself with a total of zero viruses in the past seven years and never run an antivirus program to actually delete a virus.

Same here. When i used Eudora before and even now with hotmail, the only time i open an attachment is if me and a friend discussed it in IM or on the phone. If I am expecting a file I will get the file, If I am not, then it goes in the trash.

[AlexH]

What exactly does the virus do to your com?

[iniquitus]

Quote:

Originally posted by Crono Illusion
there's an even easier solution to Klez.
DON'T OPEN ATTACHMENTS YOU KNOW NOTHING ABOUT.

It's how I've managed to infect myself with a total of zero viruses in the past seven years and never run an antivirus program to actually delete a virus.

Also make sure that Outlook is set not to display the preview plane, in other words, make sure you need to open the message in a new window to read it-- nowadays viruses can run just by you reading the message.

Urizen

[konidias]

I use Netaddress.. I never used Outlook because #1, you're susceptable to tons of viruses, and #2 because every computer doesn't have outlook, so if you're not at home and at place that has internet, how are you supposed to check your mail?

Heck if I'm going to use an email program on a computer that isn't mine.. that's like using aim or something and saving your pass to the list, you're just like an open book.

[Milkdude99]

Quote:

Originally posted by Shiftk03-
There is a program called "Fix Klez" that Symantic (the makers of Nortan Antivirus) released. I'm not sure the URL to the website to get it but I'm sure a good search would help you find it.. If you fear you may have it, well I suggest you find that file.

Here is that link:

http://[email protected]

and by the way it has removed 30 of this virus from my email in the last 5 days.... and I have run this tool for this virus and it is not present on my comp.....

[Milkdude99]

Quote:

Originally posted by iniquitus


Also make sure that Outlook is set not to display the preview plane, in other words, make sure you need to open the message in a new window to read it-- nowadays viruses can run just by you reading the message.

Urizen

That is because if you use the preview pane , it automaticly downloads the email message..

[Milkdude99]

Quote:

Originally posted by AlexH
What exactly does the virus do to your com?

go to the link I posted and it will tell you all you want to know about it and what it does