W32.Badtrans.B@mm mass mailing e-mail worm on the loose!

Posted By : of Data Doctors on November 29, 2001

Follow us on Facebook   Follow us on Twitter   Follow us on LinkedIn

Let Data Doctors be your personal IT department today

VIRUS ALERT! W32.Badtrans.B@mm mass mailing e-mail worm

This question was answered on November 29, 2001. Much of the information contained herein may have changed since posting.

The W32.Badtrans.B@mm mass mailing e-mail worm is infecting a large

number of computers and contines to spread very quickly.

In most cases, simply reading an e-mail message will not allow you to contract a virus since most virus/worm code is hidden in attachments that accompany e-mail messages

Generally, you must open the attachment in order to contract the virus/worm, but not in the case of the W32.Badtrans.B@mm mass mailing worm

It takes advantage of a vulnerability in Microsoft¹s Outlook and Outlook Express that instructs your e-mail program to automatically open the attachment when you open the message

This worm can appear as a music file, a picture, a document or a zip

(compressed) file The subject line and attachment names will vary, so there is no specific signature that you can look for...

It relies upon an exploit in unpatched versions of Microsoft Outlook and Outlook Express

To fix the exploit, you can download a patch at:

<a href="http://www.microsoft.com/technet/security/bulletin/MS01-020.asp" target="_blank"><font color="#003399">>http://www.microsoft.com/technet/security/bulletin/MS01-020.asp</b></font></a>

Detection, protection and removal instructions can be found at the

following sites:

Norton Anti-virus users can get more info at:

<a href="http://www.sarc.com/avcenter/venc/data/[email protected]" target="_blank"><font color="#003399">>http://www.sarc.com/avcenter/venc/data/w32.badtrans.b@mm.html</font></a>

McAfee Anti-virus users can get more info at:

<a href="http://www.mcafee.com/anti-virus/viruses/badtrans/default.asp?cid=2607" target="_blank"><font color="#003399">>http://www.mcafee.com/anti-virus/viruses/badtrans/default.asp?cid=2607</b></font></a>

Trend Micro users can get more info at:

<a href="http://www.antivirus.com/vinfo/virusencyclo/default5.asp?VName=WORM_BADTRANS.B" target="_blank"><font color="#003399">>http://www.antivirus.com/vinfo/virusencyclo/default5.asp?VName=WORM_BADTRANS.B</b></font></a>

If you receive an infected message from other, refer them to the

information listed above...

About the author

Posted by of Data Doctors on November 29, 2001

Need Help with this Issue?

We help people with technology! It's what we do.
Contact or Schedule an Appointment with a location for help!