I continue to get Klez infected email almost daily, but it’s not those funny little messages anymore; it’s returned mail, rejected because it’s infected and supposedly sent from me to an address I don’t recognize. Tonight I got this email which is highly suspect because it’s just text and the writer is obviously not a native English speaker. Has anyone else gotten this and did you get a virus from it?
“Klez.E is the most common world-wide spreading worm.It’s very dangerous by corrupting your files.
Because of its very smart stealth and anti-anti-virus technic,most common AV software can’t detect or clean it.
We developed this free immunity tool to defeat the malicious virus.
You only need to run this tool once,and then Klez will never come into your PC.
NOTE: Because this tool acts as a fake Klez to fool the real worm,some AV monitor maybe cry when you run it.
If so,Ignore the warning,and select ‘continue’.
If you have any question,please mail to me.”
Weird huh?
There’s a variant of the Klez worm that tries to fool you into disabling your antivirus software, and this sure looks like it. I’ve heard of it but never received one myself.
Yes my wife keeps getting the seemingly returned email. Norton says all’s ok. We even used the norton kles removal just incase kles deactivaTED
There was an earlier klez worm thread where I, and another person, both reported getting the fake “klez removal” e-mail. It really looks like there’s some sort of contest going on to come up with the best “social engineering” tactic to fool people into infecting their PCs.
I have a program from Panda that does a quick scan for the Klez but it came up negative for this message. I was almost sure it was infected, so I ran the full scan and sure enough it was. I don’t think they will ever really convince many people to fall for their game. They come up looking goofy because they obviously are from another country; the syntax and vocabulary don’t reflect American English usage. But this whole Klez thing is still a pain in the behind.:eek:
Yep.
Got an email…supposedly from Verizon.
Norton anti-virus quarrantined the file. I want to delete it, but
how do I right click this?
The key word here is seemingly.
Just because it says “returned, undeliverable,” does not mean it is returned or undeliverable! Anyone can create a message with the header or body that says “returned, undeliverable,” and that is exactly what klez.h does on occasion. It’s one of its many disguises.
If you are curious, send a test message to a really bogus address that you know will be returned, and compare the text you get back. It wil be quite different from the “returned” mail.