Latest
Virus Threats |
 |
|
 |
|
|
|
|
Valentin.E
Threat Level II
Damage II
Distribution I
Common name: Valentin.E
Technical name: W32/Valentin.E.worm
Threat level: Low
Type: Worm
Effects: It ends processes belonging to security tools. It is run whenever a file with an EXE extension is run. It reaches the computer in an email message with an attached file.
Affected platforms: Windows 2003/XP/2000/NT/ME/98/95/3.X
First detected on: Jan. 20, 2008
Detection updated on: Jan. 20, 2008
In circulation? No
Brief Description
Valentin.E is a worm that reaches the computer in a file attached to an email message with a variable subject.
In order to increase its infection capacity, it uses a vulnerability through which it is automatically activated when the message is viewed through Outlook. It is a vulnerability in the MIME header which allows files attached to email messages to be run automatically.
If the message is opened with other email services, such as Hotmail or Yahoo, it will be necessary that the user runs the attached file in order to be infected.
Valentin.E is dangerous because:
It is run every time a file with an EXE extension is run.
It ends several processes, which belong to security tools and firewalls.
It gathers information about the affected computer: all the file names and their location. This data can be used to carry out more malicious actions.
Visible Symptoms
Valentin.E is easy to recognize, as it displays the following symptoms:
It reaches the computer in an email message with the following characteristics
|
| |
|
