| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 18657 | 2002-04-29 10:13:00 | Klez - it got me | Guest (0) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 46337 | 2002-04-29 10:13:00 | Well, despite doing the AVG stuff, Klez has got me. I have just got an email saying 'Nav detected a virus in a message you sent' which is strange because I thought my email was not being covered by NAV. I am utterly confused as well as infected. I feel like putting a stick of dynamite under my $4000 machine! | Guest (0) | ||
| 46338 | 2002-04-29 10:40:00 | Symantec has a write up on this virus at the following site: www.symantec.com Download the removal tool, run it, and everything should be OK. Takes about 4-5 minutes to run. Don't forget to get the latest virus file updates. |
Guest (0) | ||
| 46339 | 2002-04-29 10:45:00 | Forgot to mention, if you are not a fan of Symantec you could try Kaspersky Labs at the following site: http://www.kaspersky.com They also have a removal tool. |
Guest (0) | ||
| 46340 | 2002-04-29 11:44:00 | www.grisoft.com has news items about Klez and a couple of updates (350,351)that will protect from Klez dated 17th/19th April, plus a link to some advice about removing it. Probably a bit academic now, but a warning to the rest of us to update AV regularly. |
Guest (0) | ||
| 46341 | 2002-04-29 12:59:00 | Linda, take heart! By the sound of things, if Nav or AVG or whatever it is you've got on your system gave you a message saying that an email contained Klez, then more than likely the program also blocked Klez from making it into your system. So you're probably not infected at all :) Mike. |
Guest (0) | ||
| 46342 | 2002-04-29 20:59:00 | Oh Phew. Good job I didn't do the dynamite thing! Thanks for the reassurance. | Guest (0) | ||
| 46343 | 2002-04-29 22:44:00 | Hi Linda Don't panic and do the dynamite thing, if you happen to be a helicopter pilot it can really ruin your day according to this morning's herald, but if the message was that NAV detected the Klez virus in a message that you SENT as opposed to received, that means that your computer may well be infected. Logically, you can't send a virus that you hasn't already been received and infected your system. Is your NAV AV up to date and are you trying to run AVG and NAV simultaneously? If so, that is not a good idea as conflicts can occur and your protection may be weakened. Set one to operate in the background and use the other for manual checks. Close the background program before running the second. I would update/scan now and download the Klez remover and run that as well. Better sure than sorry, and if you find you have been infected, let the people in your email address book know. Cheers Billy 8-{) |
Guest (0) | ||
| 46344 | 2002-05-01 00:08:00 | Chances are you don't actually have the virus. I noted that some kind fellow sent me an email to let me know that I had the KLEZ virus (so nice of him), so I ran a full virus screen, ran housecall and updated all available sig files, but nothing turned up except a lovely little notepad.vio file. Anyway, the way that Klez works (and something that you have to be kinda awed at the developers for), is that it changes the 'from' address to a randomly picked address from the previous senders address book. So the infected persons email is screened from the receiver, and instead, it shows that it has been sent from an innocent party who may or may not be infected. What I think may have happened here is that someone received Klez from 'you' even though you do not have the virus, and their AV detected it. I think you can trust the full AV screen as long as your are up to date with your sig downloads. Crafty little buggers, aren't they? |
Guest (0) | ||
| 46345 | 2002-05-01 10:05:00 | Linda Did you see this post from cyabro earlier today? <It sounds the klez virus that is doing the rounds at the moment. Once a PC is infected it will stop your virus checker from running and also stop you installing one! Check out securityresponse.symantec.com This will download a small file that you can run to get rid of it.> Since Klez aborts your AV program, I'd not bet money that the Klez didn't get you so I hope you were able to run the removal utility ok just in case. Cheers Billy 8-{) |
Guest (0) | ||
| 46346 | 2002-05-01 22:04:00 | Yes, Billy, I did read cyabro's post. I have decided to get a technician in - it's all getting beyond me! Thanks for your help! | Guest (0) | ||
| 1 | |||||