|
|
 |
| AXION TECHNOLOGIES - REVIEWS |
| |
| Got Klez? Virus protection |
| |
| By Raymond Griffith |
| Wednesday,May 29,2002 |
| |
Klez Virus, and variants
After receiving some emails regarding the mailing of virus infected email, I wanted to take a moment to shed some light on Klez and its variants. We did receive some Klez infected emails, they were however detected, and the Virus was contained, then eliminated. We continue to receive some infected emails apparently from Customers. We have discovered the infected computer (the system that sent the email) is usually NOT the reported "sender" of the email, and that the senders email address has been forged to make it look as if it was sent from sender "a" when infact a completely different person/computer was responsible.
The Klez virus and the 9 variants I have encountered thus far have created much confusion. The scenario is a common one and is usually something to the effect:
You receive an email that is infected. If your Antivirus is up to date, it is caught. If you do not have the latest virus definitions or have no protection at all, your system will become infected. Nothing out of the usual as far as a compter virus goes, except the Klez and all the variants have another behavior that creates some additional confusion. The person listed as sending the email (I.e. "From:xxxx@xxxx.com") is in all likelyhood NOT the sender of the Virus, and their system may not be infected. The Klez spoofs the headers in emails, effectively forging information to appear as being sent from one person or computer, when it actually came from another. If you view the full header you can see the actual sender. Klez can also take addresses, names, and tittles from your browsers cache to use in propagation of the virus.
The bottom line is most users don't know how to find this information, and looking at the information such as names of sender etc, you can be easily duped into thinking the wrong person sent you a virus! If you have Anti-Virus software, please update your Virus definitions. Your AV software is only effective if it is up to date, and knows about the newest virii through definition updates. If you do not have anti virus protection get one! Symantec has provided a free Utility for removing the Klez and its variants.
Any system running Windows is susceptible to this virus. This means ANY version of Windows. You are best to simply protect your computer, and remember the sender listed or shown is probably not the infected system. You can read more about the Klez virus at Symantec or McAfee
.
|
|
|
|
|
|
