[Towertalk] WARNING**V**

Jim Reid jimr.reid@verizon.net
Mon, 25 Mar 2002 14:42:43 -1000


> Be careful about accusing where it comes from; the latest making the
rounds
> on the reflectors is something like W32.Klez and it can launch from
Outlooks
> preview pane. It will search the infected computer for email address (
even
> in .txt files) and will send it using both a to: and from: address that it
> found. In other words it will appear it came from someone that it didn't.

Yes,  I have been dealing with this W32.Klexz thing for several days. I
Have rcvd emails from across the nation advising "I" had sent them
a V!  Nope,  my machine is V free,  plus every email going out is
scanned by Norton's 2002 V program BEFORE it is allowed to go out.
My V definitions are up to date,  and machine has been scanned
daily (that takes over an hour with a large hard drive!).  Also the
V bug makes up Subjects for it's sent mails.  I have no idea how
this thing will be stopped.  The folks who have the infected
machines evidently do not have V programs,  and have no way
at all of knowing this is going on,  it seems.

Symantec's info page about this this is here:

http://www.sarc.com/avcenter/venc/data/w32.klez.e@mm.html

Scroll down to the NOTES heading for info about how it
works!

73,  Jim  KH7M