Free defence against the Internet worm Klez. (Security).In connection with the numerous instances of infection caused by the latest modification of the Internet worn Klez (Klez.o), Kaspersky Labs Kaspersky Lab is a computer security company, co-founded by Natalia Kaspersky and Eugene Kaspersky in 1997, offering antivirus, anti-spyware, anti-spam, and anti-intrusion products. has developed a free utility for detecting and deleting this program which can be downloaded at KL corporate site. The first Klez version appeared this last October. Today, Kaspersky Labs knows of five Klez modifications, with the latest version, Klez.c, posing the most serious threat to computer safety. Klez.e sends itself via e-mail utilizing SMTP (Simple Mail Transfer Protocol) The standard e-mail protocol on the Internet and part of the TCP/IP protocol suite, as defined by IETF RFC 2821. SMTP defines the message format and the message transfer agent (MTA), which stores and forwards the mail. for sending messages. The subject of the e-mail is randomly chosen from the following variants: Hi, Hello, Re: Fw: how are you let's be friends darling don't drink too much your password honey some questions please try again welcome to my hometown the Garden of Eden Garden of Eden n. See Eden. Noun 1. Garden of Eden - a beautiful garden where Adam and Eve were placed at the Creation; when they disobeyed and ate the forbidden fruit from the tree of knowledge of good and evil they were introduction on ADSL See DSL. ADSL - Asymmetric Digital Subscriber Line meeting notice questionnaire congratulations sosl japanese girl VS playboy look,My beautiful girl friend eager to see you spice girls' vocal concert Japanese lass' sexy pictures. The body of an infected message is empty or contains a random text. The malicious program is launched automatically when an e-mail is viewed. In order to accomplish this, the worm uses a security breach in Internet Explorer Microsoft's Web browser, which comes with Windows starting with Windows 98. Commonly called "IE," versions for Mac and Unix are also available. Internet Explorer is the most widely used Web browser on the market. It has also been the browser engine in AOL's Internet access software. safety features that was discovered nearly a year ago in March 2001. Following start-up, Klez.e installs itself into a Windows system file with a random name beginning with 'Wink,' for example, 'Winkad.exe.' The worm searches for links to EXE flies in the following registry key Software\Microsoft\Windows\ CurrcntVersion\App Paths, and attempts to infect any found applications. Klez.e also infects RAR RAR Retinoic Acid Receptor RAR Resource Adapter Archive (J2EE) RAR Royal Australian Regiment RAR Risk Assessment Report RAR Roshal Archive (WinRAR compressed file format; file extension) archives by writing its copies here with a random name, and on the 6th of odd months (January, March etc.), it searches for all flls on an infected computer and fills them with random contents. These files cannot be recovered and must be restored from a back-up copy. In addition to this the worm.attempts to halt the operation of well-known anti-virus programs by forcibly forc·i·ble adj. 1. Effected against resistance through the use of force: The police used forcible restraint in order to subdue the assailant. 2. Characterized by force; powerful. closing their executable files within a computer's active processes. www.kaspersky.com |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion