Home Page | Owners Registry | Discussion Forums | ProwlerMall | Event Scrapbooks | About |
Click here to return to the Prowler Online Board Main Page Topic Closed |
ProwlerOnline, Plymouth/Chrysler Prowler Discussion Forum
General Prowler Discussion IMPORTANT: Some Member's computers are infected with viruses!
|
Bottom of Page | next newest topic | next oldest topic |
Author | Topic: IMPORTANT: Some Member's computers are infected with viruses! |
Black Tie 161 POA Site Supporter Prowler Junkie From:MD, USA |
posted 08-08-2002 07:24 AM
Since I joind this board, I have gotten some crazy messages from members with the "Klez virus" attached. This is a virus that goes into your email address book, and SELF GENERATES email to others and makes it look like someone else sent it. This is a very vicious virus, and ALL of you should download an anti-virus software program, since this virus is very destructive and self-perpetuating. Home computers are much more vulnerable since there are less firewalls... Below is some info to help you....I strongly suggest you look into it if you have been getting wierd emails and God forbid if you had opened the attachments! Any of you using MS Explorer have a vulnerability that is exploited by this virus. If you EVER got any funny emails with shady attachments......even from people you know, you may have the virus. It is a vicious virus that infects your email and sends itself to people in your address book without your knowledge. I got a virus protection package from www.Mcafee.com that killed it....But I had to manually disable the virus through a series of emailed instructions because the virus actually prevents anti-virus software from being loaded! There are also free patches for Explorer at www.msn.com to close the virus loophole. If any of you got wierd emails, this may help explain.....Obviously you guys behind the NAVAIR firewall are safe, but I can't beleive what this virus did at home. It actually sends itself to people in your address book! I hope this helped awareness of this virus.....it is nasty! -Joe --- Update 4/18/2002 --- This latest W32/Klez variant is already detected as W32/Klez.gen@MM by McAfee products using the 4182 DATs (23 January 2002) or greater. W32/Klez.h@MM has a number of similarities to previous W32/Klez variants, for example: W32/Klez.h@MM makes use of Incorrect MIME Header Can Cause IE to Execute E-mail Attachment vulnerability in Microsoft Internet Explorer (ver 5.01 or 5.5 without SP2). The worm may also copy itself into RAR archives, for example: The worm mails itself to email addresses in the Windows Address Book, plus addresses extracted from files on the victim machine. It arrives in an email message whose subject and body is composed from a pool of strings carried within the virus (the virus can also add other strings obtained from the local machine). For example: Subject: A very funny website The file attachment name is again generated randomly, and ends with a .exe, .scr, .pif, or .bat extension, for example: Thanks to the use of the exploit described above, simply opening or previewing the message in a vulnerable mail client can result in infection of the victim machine. W32/Klez.h@MM masquerades as a free immunity tool in at least one of the messages used. Below is the message sent by the virus itself. Subject: Worm Klez.E Immunity NOTE: Because this tool acts as a fake Klez to fool the real worm,some AV monitor maybe cry when you run it. If so,Ignore the warning,and select 'continue'. If you have any question,please mail to me. .txt Ensure that you are using the minimum DAT specified or higher. Klez can delete anti-virus software files. It may be necessary to reinstall VirusScan after cleaning a system. Additional Windows ME/XP removal considerations |
All times are CT (US) Top of Page Previous Page | Return to General Prowler Discussion next newest topic | next oldest topic |
All material contained herein, Copyright 2000 - 2012 ProwlerOnline.com
E-Innovations, LP