PDA

Visualizza versione completa : Win32.Klez.H - Allerta Alta


Giorgius
26-06-2003, 20.55.57
Uno "sgradito" ritorno nella rete...

Aliases: W32/Klez.h@mm, W32/Klez.G@mm, W32/Klez.gen@MM, W32/Klez.I, W32/Klez.K-mm, WORM_KLEZ.G

Effetti: Win32.Klez.h is a variant of Win32.Klez. It usually arrives as an email with a malformed executable file attachment exploiting MIME type vulnerability in Internet Explorer. It can prevent the normal operation of the operating system. It can spread itself by email and network shares. It also drops the Win32.Elkern.d vandal which in some occasions can delete files. This vandal can seem to appear to have been sent from a known party although in many cases this person is not infected at all.

http://www.esafe.com/home/csrt/analysis.asp?virus_no=10109&cf=tl
http://www3.ca.com/solutions/collateral.asp?CID=33953&ID=1705&CCT=19520

Utility per rimuoverlo:
ftp://ftp.esafe.com/pub/utils/aladdin_win32_klez_cleaner_vsdos.com
http://windows.zdnet.it/forum/showthread.php?threadid=51412