MiMail worm free removal tool

MiMail worm free removal tool Screenshot A NEW variant of the MiMail worm family, version C, is proliferating across the world, according to security firm iDefense.

Developer:   SoftWin
      software by SoftWin →
Price:  0.00
License:   Freeware
File size:   0K
Language:   
OS:   Windows Vista (?)
Rating:   0 /5 (0 votes)

A NEW variant of the MiMail worm family, version C, is proliferating across the world, according to security firm iDefense.

MiMail.C has a DDoS component to attack DarkProfits domains and there's likely to be increased activity on Port 80, according to Ken Dunham a security officer at the firm.

He says it's dangerous for corporation, many of which allow people to transfer ZIP files to each other using email.

That means, he says, that MiMail.C "has the upper hand when infiltrating networks configured to allow ZIP attachments".

Symptoms:
Presence of the following file in Windows System directory: SMVC32.EXE

Presence of the following registry key:
HKEY_LOCAL_MACHINESoftwareMicrosoftCurrentVersionRun
with the value:
SMVC = %SYSDIR%SMVC32.EXE

Technical description:
When ran, the worm does the following:

Copies itself to Windows System directory as SMVC32.EXE.
Creates the following registry keys:
- HKLMSoftwareMicrosoftCurrentVersionRunSMVC = %SYSDIR%SMVC32.EXE, so it will be executed every time Windows starts up;
- HKCUSoftwaresocks ;
- HKCUSoftwareserv;
HKCUSoftwarechan;
Connects to an predefined IRC server and listens for commands (such as "execute", shutdown" etc.).
Harvests e-mai addresses from the infected computer, stores them in "c:cyclop.bin" file and periodically sends them to the attacker through e-mail.





MiMai

tags the following  sysdirsmvc32 exe  following registry  system directory  windows system  smvc32 exe  

MiMail worm free removal tool screenshot


Download MiMail worm free removal tool

 Download MiMail worm free removal tool


Similar software

MiMail worm free removal tool MiMail worm free removal tool
SoftWin

A NEW variant of the MiMail worm family, version C, is proliferating across the world, according to security firm iDefense.

Win32.Evaman.A@mm Removal Tool 1.0 Win32.Evaman.A@mm Removal Tool 1.0
BitDefender

Symptoms: Presence of registry key: HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionExplorerWintasks, HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionExplorerWintasks, HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRunwintasks.

Outlook Profiler 2.7.0.1 Outlook Profiler 2.7.0.1
GOFF

Outlook Profiler addresses the need to create Outlook Exchange profiles automatically.

Chameleon Clock 5.1 Chameleon Clock 5.1
Jury Gerasimov

Chameleon Clock is a desktop clock which purpose is to be useful, user-friendly, and beautiful.

Parity Plus 2.1 Parity Plus 2.1
DataBull

Parity Plus is one of the most powerful Stock Charting and Technical Analysis software application available on the market.

MSN Password Sniffer 1.0 MSN Password Sniffer 1.0
mythusoft

MSN Password sniffer is a useful and handy utility that can capture MSN passwords.

EasyMP3 2005 2.0.0.19 EasyMP3 2005 2.0.0.19
ZeuS Microsystems

EasyMP3 was created to simply encode and decode audio files.

Win32.Bagle.AL@mm free removal tool 1.0 Win32.Bagle.AL@mm free removal tool 1.0
Bitdefender

Symptoms: - Presence of file %SYSTEM%WINdirect.

Win32.MyDoom.M@mm Free Removal tool 1.0 Win32.MyDoom.M@mm Free Removal tool 1.0
SOFTWIN

Symptoms: - Presence of the following registry key: - HKLMSoftwareMicrosoftWindowsCurrentVersionRunJavaVM with the following value: - %WINDIR%java.

DivX DVD Ripper 1.5 DivX DVD Ripper 1.5
Openwares

DivX DVD Ripper is a free and useful tool for backing up your DVD movies.