Dillinger
Guerrilla Ontologist
- Joined
- Sep 19, 2000
- Posts
- 26,152
W32.Mimail@mm is a worm that spreads by email, and that steals information from a user's machine.
This is a serious threat. I highly recommend that you make sure, whatever virus program you're using, that you download the latest definitions and scan your computer for the virus. The following is some more information - including a tool from Symantec that can remove the worm if you're infected.
The email has the following characteristics:
Subject: your account %s
Attachment: message.zip
NOTE: %s refers to a variable string.
The threat captures information from certain windows on a user's desktop and emails it to specific mail addresses. This threat takes advantage of a known vulnerability. Information about this vulnerability and a Microsoft patch is located at: http://support.microsoft.com/default.aspx?scid=kb;en-us;330994
I encourage you to apply the Microsoft patch to prevent infection by this worm.
Symantec Security Response has also created a tool to remove W32.Mimail.A@mm. Its available at http://securityresponse.symantec.com/avcenter/venc/data/w32.mimail.a@mm.removal.tool.html
Also Known As: WORM_MIMAIL.A [Trend], W32/Mimail@MM [McAfee], Win32.Mimail.A [CA], W32/Mimail-A [Sophos]
Type: Worm
Infection Length: approximately 16kb
Systems Affected: Windows 95, Windows 98, Windows NT, Windows 2000, Windows XP, Windows Me
Systems Not Affected: Macintosh, OS/2, UNIX, Linux
More detailed info, for those of you who are interested, is at http://securityresponse.symantec.com/avcenter/venc/data/w32.mimail.a@mm.html
This is a serious threat. I highly recommend that you make sure, whatever virus program you're using, that you download the latest definitions and scan your computer for the virus. The following is some more information - including a tool from Symantec that can remove the worm if you're infected.
The email has the following characteristics:
Subject: your account %s
Attachment: message.zip
NOTE: %s refers to a variable string.
The threat captures information from certain windows on a user's desktop and emails it to specific mail addresses. This threat takes advantage of a known vulnerability. Information about this vulnerability and a Microsoft patch is located at: http://support.microsoft.com/default.aspx?scid=kb;en-us;330994
I encourage you to apply the Microsoft patch to prevent infection by this worm.
Symantec Security Response has also created a tool to remove W32.Mimail.A@mm. Its available at http://securityresponse.symantec.com/avcenter/venc/data/w32.mimail.a@mm.removal.tool.html
Also Known As: WORM_MIMAIL.A [Trend], W32/Mimail@MM [McAfee], Win32.Mimail.A [CA], W32/Mimail-A [Sophos]
Type: Worm
Infection Length: approximately 16kb
Systems Affected: Windows 95, Windows 98, Windows NT, Windows 2000, Windows XP, Windows Me
Systems Not Affected: Macintosh, OS/2, UNIX, Linux
More detailed info, for those of you who are interested, is at http://securityresponse.symantec.com/avcenter/venc/data/w32.mimail.a@mm.html
