|
Habis-habisan
dengan Klez.H
Marcel
Glenn Latupeirissa & Vaksin.com
Daftar
Kata Yang Digunakan Oleh Klez.H :
WL01:
Sircam
Nimda
WQKMM3878
GRIEF3878
Fun Loving Criminal
Norton
Mcafee
Antivir
Avconsol
F-STOPW
F-Secure
Sophos
virus
AVP Monitor
AVP Updates
InoculateIT
PC-cillin
Symantec
Trend Micro
F-PROT
NOD32
WL02:
_AVP32
_AVPCC
NPSSVC
NRESQ32
NSCHED32
NSCHEDNT
NSPLUGIN
NAV
NAVAPSVC
NAVAPW32
NAVLU32
_AVMP
ALERTSVC
AMON
AVP32
AVPCC
AVPM
N32SCANW
NAVWNT
ANTIVIR
AVPUPD
AVGCTRL
AVWIN95
SCAN32
VSHWIN32
F-STOPW
F-PROT95
ACKWIN32
VETTRAY
VET95
SWEEP95
PCCWIN98
IOMON98
AVPTC
AVE32
AVCONSOL
FP-WIN
DVP95
F-AGNT95
CLAW95
NVC95
SCAN
VIRUS
LOCKDOWN2000
Norton
Mcafee
Antivir
TASKMGR
WL03:
.txt
.htm
.html
.wab
.asp
.doc
.rtf
.xls
.jpg
.cpp
.c
.pas
.mpg
.mpeg
.bak
.mp3
.pdf
WL04:
.exe
.scr
.pif
.bat
WL05:
EXPLORER
CMMGR
msimn
icwconn
winzip
WL06:
new
funny
nice
humour
excite
good
powful
WinXP
IE 6.0
WL07:
W32.Elkern
W32.Klez.E
WL08:
how are you
let's be friends
darling
so cool a flash,enjoy it
your password
honey
some questions
please try again
welcome to my hometown
the Garden of Eden
introduction on ADSL
meeting notice
questionnaire
congratulations
sos!
japanese girl VS playboy
look,my beautiful girl friend
eager to see you
spice girls' vocal concert
japanese lass' sexy pictures
WL09:
Symantec
Mcafee
F-Secure
Sophos
Trendmicro
Kaspersky
WL10:
Christmas
New year
Saint Valentine's Day
Allhallowmas
April Fools' Day
Lady Day
Assumption
Candlemas
All Souls' Day
Epiphany
WL11:
Happy
Have a
WL12:
Undeliverable mail--
Returned mail-
WL13:
The attachment
The file
WL14:
Hi,
Hello,
Re:
Fw:
WL15:
game
tool
website
patch
WL16:
setup
install
demo
snoopy
picacu
kitty
play
rock
WL17:
ANTI-VIR.DAT
CHKLIST.DAT
CHKLIST.MS
CHKLIST.CPS
CHKLIST.TAV
IVB.NTZ
SMARTCHK.MS
SMARTCHK.CPS
AVGQT.DAT
AGUARD.DAT
WL18:
very
special
WL19:
enjoy
like
WL20:
wish
hope
expect
WL21:
spread through email.
can infect on Win98/Me/2000/XP.
WL22:
wb-japan.co.jp
verizon.net
arquired.es
difac.com
Worm
ini juga mengandung tulisan seperti berikut :
Win32 Klez
V2.01 & Win32 Foroux V1.0
Copyright 2002,made in Asia
About Klez V2.01:
Main mission is to release the new baby PE virus,Win32
Foroux
No significant change.No bug fixed.No any payload.
About Win32 Foroux (plz keep the name,thanx)
Full compatible Win32 PE virus on Win9X/2K/NT/XP
With very interesting feature.Check it!
No any payload.No any optimization
Not bug free,because of a hurry work.No more than
three weeks from
having such idea to accomplishing coding and testing
Nama worm
ini telah berubah dari Klez.G menjadi Klez.H.
Hal ini untuk
mengikuti Konsensus penamaan yang ada.
Pendeteksian
dan Pembersihan
Kami merekomendasikan
anda untuk mendownload tool khusus untuk virus
ini. Tool ini akan membersihkan Klez.E, (yang
versi sebelumnya disebut
Klez.G) dan Elkern.C dari sistem lokal yang terinfeksi.
Jika Klez telah
melumpuhkan NVC5, maka tool ini akan memperbaikinya
lagi. Download tool
ini dengan click disini http://www.norman.no/public/klezfix5.zip
dan
baca petunjuk penggunaannya.
|
