Tweet
Yahoo server is pumping one virus with different email address be careful do not open any attachment you don't know the extension these mails are in form of pics which are not displayed plus an attachment. Be careful folks.
VIRUS SPOOFS MAIL ADDRESSES OF SENDERS AND IT MAY SPOOF ANYBODY's ADDRESS INCLUDING THOSE OF FREQUENT
CONTRIBUTORS.SO BEWARE.
W32.Galil.F@mm is a mass-mailing worm that uses its own SMTP engine or Microsoft Outlook to spread. It harvests email addresses from the
files in the current user's Temporary Internet Files folder, Yahoo Messenger, Microsoft Outlook address book, as well as the files
whose extensions are .asf, .avi, .doc, .jpg, .mdb, .mpe, .mpeg, .mpg, .pps, .ram, .rar, or .xls.
The worm may spoof the "From" field. The email message has a randomly selected subject line, which may also be the attachment name. The attachment has a .bhx, .exe, .hqx, .mim, .uu , .uue, or .xxe extension. It is written in the Microsoft Visual Basic (VB) programming
Language and is compressed with UPX.
Also Known As: W32/Holar.gen@MM [McAfee], I-Worm.Holar.f [Kaspersky]
Type: Worm
Infection Length! : 67,934 bytes
Systems Affected: Windows 2000, Windows 3.x, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
Systems Not Affected: DOS, Linux, Macintosh, OS/2, UNIX
==================================================
VIRUS SPOOFS MAIL ADDRESSES OF SENDERS AND IT MAY SPOOF ANYBODY's ADDRESS INCLUDING THOSE OF FREQUENT
CONTRIBUTORS.SO BEWARE.
W32.Galil.F@mm is a mass-mailing worm that uses its own SMTP engine or Microsoft Outlook to spread. It harvests email addresses from the
files in the current user's Temporary Internet Files folder, Yahoo Messenger, Microsoft Outlook address book, as well as the files
whose extensions are .asf, .avi, .doc, .jpg, .mdb, .mpe, .mpeg, .mpg, .pps, .ram, .rar, or .xls.
The worm may spoof the "From" field. The email message has a randomly selected subject line, which may also be the attachment name. The attachment has a .bhx, .exe, .hqx, .mim, .uu , .uue, or .xxe extension. It is written in the Microsoft Visual Basic (VB) programming
Language and is compressed with UPX.
Also Known As: W32/Holar.gen@MM [McAfee], I-Worm.Holar.f [Kaspersky]
Type: Worm
Infection Length! : 67,934 bytes
Systems Affected: Windows 2000, Windows 3.x, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
Systems Not Affected: DOS, Linux, Macintosh, OS/2, UNIX
==================================================
Comment