 Remove Klez Worm. Description and removal instructions
Klez Worm properties: • Sends out logs by FTP or email • Connects itself to the internet • Hides from the user • Stays resident in background Automatic Klez Worm removal:remover for Klez Worm
Other programs to remove Klez Worm:• SUPERAntiSpyware - Review - Download• CounterSpy - Review - Download • Windows Defender - Review - Download Information added: 19/03/04 Information updated: 22/04/04 Additional resources related to Klez Worm:Attention: If you know or you have a website or page about Klez Worm removal, feel free to add a link to this list: add url
more resources Post Comment:Attention: Use this form only if you have additional information about Klez Worm parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.
|
Latest spyware news:
 PDF documents on target Time for vengeance: AntiVirus XP distributors sued Email security problems remain the same Numbers of corrupt anti-viruses rise rapidly Malware creates fake malicious YouTube websites Google Chrome is not bulletproof: vulnerabilities reported by users Security issues under “Forgot your password?” link Adobe Flash employed by scammers How does your email ID influence spam you receive? Malware statistics of August 2008 by Kaspersky Security NetworkSubscribe to news 
Similar parasites:
|
FORUM:
Comments from visitors:
1. by Hacker. 2004-03-01 16:16:37
Running infected files causes the worm to reconstruct the uninfected host file using saved data. Such reconstructed files will have '~1' appended to the name (ex., infected MSOFFICE.EXE will be accompanied by an uninfected MSOFFI~1.EXE). The worm deletes them as soon as the program stops running so they exist only temporarily.
W32/Klez.e@MM sends itself out using SMTP protocol. It harvests the Windows address book for email addresses.
The virus may save a copy of itself into .RAR archives.
There is a date-activated payload associated with this threat. On the 6th day of March, May, September, or November, the virus may overwrite local and network files containing the following extensions with zeros: .txt, .htm, .html, .wab, .doc, .xls, .jpg, .cpp, .c, .pas, .mpg, .mpeg, .bak, or .mp3.
If the month is January or July, all files may be overwritten.