have a look in the following link www.sophos.com/virusinfo/analyses/w32mydooma.html Simon ________________________________ From: Venu V [mailto:vvenu@xxxxxxxxxxxxxxx] Sent: 27 January 2004 11:34 To: [ExchangeList] Subject: [exchangelist] RE: New Virus http://www.MSExchange.org/ how to get rid of this even though i have AV in both the mail servers and the gateways?? From: Jason Merrique [mailto:j.merrique@xxxxxxxxxxxxxxx] Sent: Tuesday, January 27, 2004 4:41 PM To: [ExchangeList] Subject: [exchangelist] RE: New Virus http://www.MSExchange.org/ Viruses such as these are only of risk if they're executed by your mail client. Outlook 2003 doesn't allow this by default (you need to save the file first), am I right to feel complacent? Of course I do have AV on the mail gateway, I'm just polling to see how confident fellow admins are with Outlook 2003's. Is it taking steps in the right direction to protect the use from viruses such as this? ________________________________ From: John Tolmachoff (Lists) [mailto:johnlist@xxxxxxxxxxxxxxxxxxx] Sent: 26 January 2004 22:30 To: [ExchangeList] Subject: [exchangelist] New Virus Importance: High http://www.MSExchange.org/ There is a new virus spreading rapidly. The AV vendors are working on it. This one is going to be bad, as it is using zip attachments as well as pif, scr and exe. Be prepared. John Tolmachoff Engineer/Consultant/Owner eServices For You ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 ISA Server Resource Site: http://www.isaserver.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 ISA Server Resource Site: http://www.isaserver.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 ISA Server Resource Site: http://www.isaserver.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify admin@xxxxxxxxxxxxxxx The views expressed in this email are those of the individual and not necessarily those of UK Data IT This footnote also confirms that this email message has been swept by SOPHOS AV for the presence of computer viruses. Web site: www.ukdatait.co.uk