W32/MyDoom@MM Virus Information

Members Area Customer Service and Support
1

Hi Members,

See below for information on the MyDoom.MM virus which is infecting alot of people. Hope you find this information useful.

MyDoom@MM

You may receive an Email message with an infected attachment. This virus
called W32/Mydoom@MM, disguises itself as a text file Email attachment and if opened,
can make copies of itself and send infected Email (without your knowledge) to everyone
in your address book. The virus also appears to have ‘backdoor’ capabilities that may
cause your computer to attack other computers or Websites on the Internet.

The infected e-mail is difficult to detect as the ‘FROM’ and 'SUBJECT vary.
The infected attachment attempts to disguise itself as a Text File.
As a result, we strongly recommend that you use an updated virus protection software
package and be EXTEREMELY cautious when opening text file Email attachments.

IF YOU RECEIVE THIS EMAIL MESSAGE, DO NOT OPEN THE ATTACHMENT.
DELETE THE EMAIL IMMEDIATELY.
FOLLOWING ARE DETAILS ON THE EMAIL MESSAGE CONTAINING THE VIRUS:

TO: This message has been sent to numerous Email users all over the Internet
DATE SENT: (Varies)
FROM: (Varies)
SUBJECT: (Varies)
BODY OF THE EMAIL MESSAGE: Varies - but may contain one of the following body messages:

  • Mail transaction failed. Partial message is available.
  • The message contains Unicode characters and has been sent as a binary attachment.
  • The message cannot be represented in 7-bit ASCII encoding and has been sent as a binary
    attachment

DETAILS:

  • The message will appear to come from someone you know (Or from someone who has
    you listed in their address book)
  • The virus should not infect your computer unless you have opened the attachment.
  • The virus may attempt to open NOTEPAD and display random characters

HOW DO I KNOW IF I HAVE BEEN INFECTED?

  • Contacts from your Email Address Book claim that you have sent them a strange
    Email message.
  • The Windows Notepad program opens and displays random characters

STEPS ON CLEANING THE W32/Mydoom@MM VIRUS

IF YOU HAVE OPENED THE INFECTED ATTACHMENT:

  • McAfee has released a stand-alone virus removal tool which can remove
    this virus. Their free ‘Stinger’ virus removal tool can be downloaded
    from their Website: http://vil.nai.com/vil/stinger/
  1. If you do not already own a virus protection software package, Rogers,
    in conjunction with McAfee will be launching an Internet Security Solution
    which includes virus protection at the beginning of February 2004.
    Rogers will provide details in the upcoming days.

NOTE: Even if you own a virus scanning software package, it is very
important that you download the latest virus definition file so that
your software can clean this new virus.

  1. Run your virus scanning software which will detect the virus and
    offer to clean it from your system. Select the option that cleans it
    from your system.

IF YOU HAVE RECEIVED THE EMAIL, BUT HAVE NOT OPENED THE INFECTED ATTACHMENT:

  1. Delete the Email Message.

  2. Empty your deleted Email folder.

  3. Update your existing Anti-Virus Software.

We strongly recommend that you consistently scan your Email
attachments and downloaded files to protect your personal computer, no
matter how trusted the source. This advice applies to all Email messages,
not just the one discussed in this message.

Compliments of Rogers (my cable provider)…man they are nice…