Yes, it is making a nuisance of itself. Also known as MIMAIL.R it has caused some trouble.

As Sange says, you will get e-mails with various subjects like "Hello" and "Hi"

It is also generating messages which appear, at face value, to be mail delivery reports or delivery failures. These messages also contain the virus.

If you are unsure about your system, even if you are running and Anti-Virus product, there are places where you can run a scan on-line.

One such place is Here. People using dial-up will need to be patient, as this site needs to download a fair bit of info before you can run the scan.

Basic advice is simple though:-

If you are using an HTML-based e-mail client (one that does pretty things with colours, fonts, etc... - for the non-technical amongst us), switch it to plain text mode. Outlook & Outlook Express can be changed quite easily. It may not be so pretty, and you won't like it at first, but you'll thank yourself for doing it in the long run. Some people are embedding hidden URL links in these types of messages which will execute as soon as the message is opened (rather than you having to open an attachment).

Disable any auto-preview functionality. This will prevent you from selecting a message by mistake and then suffering the consequences (particularly if you are still running the program in HTML mode).

If you receive an e-mail and you are not 100% sure of where it has come from don't open it, just delete it.


(Edited by gobstopper 28/01/2004 15:04)

Arghhh it got me... please anyone do not open any mails sent from me from sange@orange.net

I just recieved a notification that a mail I sent was returned ... I never sent the email

---

by Sange
I just recieved a notification that a mail I sent was returned ... I never sent the email

---

That's one of the characteristics of this virus. If you don't think you sent the e-mail you probably didn't. It's spoofing (forging) e-mail addresses.

I've been receiving delivery failure notifications all afternoon, but when I look at the details it claims that the e-mails have been sent from Bob, John or Frank@mydomain.com, for example, rather than from me.

I'm actually convinced this was another way of trying to get me to open the file... I have done a full virus scan after updating my macfee and it found nothing I also run an online scan and it found nothing.

I looked at the ways it trys to get you to open it and yup as you said it trys to make you think you sent an email, probably hoping that you will open the file to see what you had sent.

A friend of mine has had 45 of them yesterday, nasty buggy, I really think I am clean so fingers crossed

---

by gobstopper
It is also generating messages which appear, at face value, to be mail delivery reports or delivery failures. These messages also contain the virus.

---

Sange, I think you may have read quickly pass this in GS's first post

We had a batch of these at work, and one at home last night Anything like that goes right in the bin.

Ah! Now the contents of my inbox makes a hundred times more sense.

I dunno 'bout the virus mentioned in this thread, but it seems Microsoft are pretty peeved about another one currently out and about, and have offered a nice little reward to encourage people to step forward with info about who wrote the little sod. Honestly, where're Boba and Jango Fett when you need them?

---

by Alan
I dunno 'bout the virus mentioned in this thread, but it seems Microsoft are pretty peeved about another one currently out and about

---

MyDoom.B is variant of the same one mentioned in this thread.

The only difference would appear to be the co-ordinated denial of service attack is going to be directed at www.microsoft.com and www.sco.com (who are the sole targets in the case of MyDoom.A).

Details & Behaviour of MyDoom.A can be found Here and MyDoom.B Here.

At present the .B variant isn't being as much of a nuisance as it's older sibling, but that could change at any time.

(Edited by gobstopper 30/01/2004 18:23)