Sophos users already protected against Klez-H

Sophos Press Release

Sophos, a world leader in corporate anti-virus protection, has reassured its customers that if they have kept their anti-virus software up-to-date they are already protected against the latest variant of the destructive Klez worm.

Media reports have today warned of a new variant of Klez (known as W32/Klez-H, Klez.H, I-Worm/Klez.H or W32.Klez.H@mm) spreading across the internet, but users of Sophos Anti-Virus have been protected against the new variant since 7 February 2002.

The March 2002 (3.55) edition of Sophos Anti-Virus protects against the new Klez variant via its detection of an earlier variant, W32/Klez-G.

Sophos first issued protection against W32/Klez-G on 7 February 2002, and recommends all customers subscribe to the email notification service to be automatically informed when new in-the-wild virus threats emerge.

Computer users are advised to consider installing a patch from Microsoft which is reported to fix a vulnerability in some versions of Microsoft Outlook, Microsoft Outlook Express, and Internet Explorer. The vulnerability is exploited by W32/Klez-H and a number of other viruses.

Please read the instructions for removing W32/ElKern-C and W32/Klez-H.

Read the analysis of W32/Klez-H.


More than 100 million users in 150 countries rely on Sophos’ complete security solutions as the best protection against complex threats and data loss. Simple to deploy, manage, and use, Sophos’ award-winning encryption, endpoint security, web, email, mobile and network security solutions are backed by SophosLabs - a global network of threat intelligence centers. Sophos is headquartered in Oxford, U.K., and is publicly traded on the London Stock Exchange under the symbol “SOPH.” More information is available at www.sophos.com/company.