Remove Klez Worm. Removal instructions

Severity scale:

(77 / 100)

This worm can spread by email and network shares. It can also infect files.

Klez Worm properties:
• Sends out logs by FTP or email
• Connects itself to the internet
• Hides from the user
• Stays resident in background

Automatic Klez Worm removal:

remover for Klez Worm

SpyHunter is recommended remover to uninstall Klez Worm. You should confirm using free trial that it detects current version of parasite.

Note: Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manul removal instructions below.

If you failed to remove Klez Worm using SpyHunter please report this to us.

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use.

STOPzilla

download | review

We are testing STOPzilla's efficiency at removing Klez Worm (2004-04-22 14:00:06)

Malwarebytes Anti Malware

download | review

We are testing Malwarebytes Anti Malware's efficiency at removing Klez Worm (2004-04-22 14:00:06)

Spyware Doctor

download | review | tutorial

We are testing Spyware Doctor's efficiency at removing Klez Worm (2004-04-22 14:00:06)

XoftSpySE Anti Spyware

download | review

Information added: 2004-03-19 10:00:00
Information updated: 2004-04-22 11:22:51

Additional resources related to Klez Worm:

Attention: If you know or you have a website or page about Klez Worm removal, feel free to add a link to this list: add url

more resources

Hacker

Very dangerous!

Running infected files causes the worm to reconstruct the uninfected host file using saved data. Such reconstructed files will have '~1' appended to the name (ex., infected MSOFFICE.EXE will be accompanied by an uninfected MSOFFI~1.EXE). The worm deletes them as soon as the program stops running so they exist only temporarily.

W32/Klez.e@MM sends itself out using SMTP protocol. It harvests the Windows address book for email addresses.

The virus may save a copy of itself into .RAR archives.

There is a date-activated payload associated with this threat. On the 6th day of March, May, September, or November, the virus may overwrite local and network files containing the following extensions with zeros: .txt, .htm, .html, .wab, .doc, .xls, .jpg, .cpp, .c, .pas, .mpg, .mpeg, .bak, or .mp3.

If the month is January or July, all files may be overwritten.

Reply »

2004 03 01

Post Comment:

Attention: Use this form only if you have additional information about Klez Worm parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.

Latest spyware news:

Subscribe to news

Similar parasites:

Compare spyware removers
Compare free products

HijackThis Log Analyzer Beta 2

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.