Welcome to the Virus Encyclopedia of Panda Security.
|Alias:||W32/Klez.gen@MM,, W32/Klez.G@mm, W32/Klez.K-mm, WORM_KLEZ.G, W32/Klez.H|
|First detected on:||April 17, 2002|
|Detection updated on:||Oct. 31, 2007|
|Yes, using TruPrevent Technologies|
It is very easy to become infected by this worm, as it is automatically activated when the message is viewed through Outlook's Preview Pane. It does this by exploiting a vulnerability in Internet Explorer (versions 5.01 and 5.5), which allows e-mail attachments to be automatically run.
Klez.I is very dangerous because:
Klez.I is characterized by its ability to modify the subjects of the messages it sends out. This makes it particularly difficult to identify the worm as it reaches the computer via e-mail. In order to generate the subjects, it uses the following:
For more information, consult the section Means of transmission.