Home Support Contact us Pricing Services Products we support Network consultation Network support FAQ Testimonials
NetSky Worm
The W32.Netsky.Q@mm worm:
Is a mass-mailing worm that consists of two components: a dropper and a
mass-mailing component.
Uses its own SMTP engine to send itself to the email addresses it finds when
scanning the disk drives.
Uses the Incorrect MIME Header Can Cause IE to Execute E-mail Attachment
vulnerability to cause unpatched systems to auto execute the worm when reading
or previewing an infected message.
The From line of the email is spoofed, and its Subject line and message body
vary. The attachment name also varies and has a .exe, .pif, .scr, or .zip file
extension.
Also Known As: W32/Netsky.Q@mm [McAfee], W32/Netsky-Q [Sophos], WORM NETSKY.Q
[Trend], Win32.Netsky.Q [Computer Associates], I-Worm.NetSky.r [Kaspersky]
Type: Worm
Infection Length: 28,008 bytes
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT,
Windows XP
Systems Not Affected: Linux, Macintosh, OS/2, UNIX, Windows 3.x