[Towertalk] WARNING**V**
Jim Reid
jimr.reid@verizon.net
Mon, 25 Mar 2002 14:42:43 -1000
> Be careful about accusing where it comes from; the latest making the
rounds
> on the reflectors is something like W32.Klez and it can launch from
Outlooks
> preview pane. It will search the infected computer for email address (
even
> in .txt files) and will send it using both a to: and from: address that it
> found. In other words it will appear it came from someone that it didn't.
Yes, I have been dealing with this W32.Klexz thing for several days. I
Have rcvd emails from across the nation advising "I" had sent them
a V! Nope, my machine is V free, plus every email going out is
scanned by Norton's 2002 V program BEFORE it is allowed to go out.
My V definitions are up to date, and machine has been scanned
daily (that takes over an hour with a large hard drive!). Also the
V bug makes up Subjects for it's sent mails. I have no idea how
this thing will be stopped. The folks who have the infected
machines evidently do not have V programs, and have no way
at all of knowing this is going on, it seems.
Symantec's info page about this this is here:
http://www.sarc.com/avcenter/venc/data/w32.klez.e@mm.html
Scroll down to the NOTES heading for info about how it
works!
73, Jim KH7M