W32.Mydoom.F@mm has got at least one of our (remote) users who decided to open the email with an attachment with a zip file which then has an attachment called “joke.txt insert50spaceshere .exe”
The reason they opened the file was “because it might have been a registration email for a conference” despite these normally containing no .zip attachments
Their av was not uptodate for some reason – the definitions dated 22/2 didn’t pick the worm up (and the 23rd’s dats have not been downloaded for some reason). Now I have to go through and check every machine to make sure someone else hasn’t run it.
Aarghhhhhhhhh!
Comments
Did your mail server av pick it up?
no – the av download at 4am in the morning didn’t detect any new defs to download. As soon as I manually updated it, it started to pick them up.