Virus senders try a new approach - Cunning.....not!

[BladeRunner 0]

Well after getting home from work this evening I logged on to collect all my e-mail for the day.

Below is a cut & paste of the message I received:

 

From: brentford43 [brentford43@hotmail.com]

 

Subject: Worm Klez.E immunity

 

"Klez.E is the most common world-wide spreading worm.It's very dangerous by corrupting your files.

Because of its very smart stealth and anti-anti-virus technic,most common AV software can't detect or clean it.

We developed this free immunity tool to defeat the malicious virus.

You only need to run this tool once,and then Klez will never come into your PC.

NOTE: Because this tool acts as a fake Klez to fool the real worm,some AV monitor maybe cry when you run it.

If so,Ignore the warning,and select 'continue'.

If you have any question,please mail to me."

 

Attached to the mail was the file "The.scr" which of course Norton 2002 immediately picked up as being the W32.Klez.H@mm virus.

 

As you can probably expect a few minutes work on the e-mail headers and the real sender (or rather their ISP and the modem they were connected to when they sent the message) was revealed.

Let us hope that their abuse department sort this one out, although I'm tempted to take it further as it was a deliberate attempt to infect my system.

[clutch 1]

Annoying. Seems people just have too much time on their hands.