W32/Mydoom Virus - Unintentionally sent

  Cal 18:19 30 Jan 2004

I recieved an e-mail from somebody (a business I think)claiming I had sent this virus to them and that their Panda Antivirus Platinum had disinfected it.

The message read:

'Panda Antivirus Platinum warning
Sent by: my e-mail address>
To: Their e-mail address>
Subject: HI
Date: 30/01/2004 12:58:08
sent by you.

For information a VIRUS was detected in the last mail.

# The file text.txt
.scr inside: text.zip was infected by the virus W32/Mydoom.A.worm and has
been disinfected'.

Firstly I never knowingly sent this e-mail and neither have this company's e-mail address on my computer or have ever heard of them.
Secondly I run AVG and update every day without fail.
How has this happened, as I am assuming it is legitimate.

How does this virus work?
Is it likely to send itself to everyone in my address book as well?
The destination address of this virus went to a 'clara.co.uk' address.
I also have a 'clara.co.uk' address.
Although I have three e-mail addresses and they received it from my 'btinternet.com' one.
Is this just a coincidence?

I just ran AVG scan and discovered a trojan 'Proxy.BV' which I removed to the virus vault as the file 'could not be removed'.
Is this the offender and what do I do with it now its in the 'vault'?

Lastly should I send a reply (or apology) to the aforementioned accuser or just leave it?

Any help much appreciated


  VoG II 18:21 30 Jan 2004

The virus can spoof e-mail addresses. I had a few like yours at work. Ignore.

  Cal 18:30 30 Jan 2004

So its just a hoax?
What about the trojan I found?
What do I do with that?


  Pesala 18:59 30 Jan 2004

It collects email address and sends infected emails that pretend they came from your address. Don't worry, just keep AVG up-to-date and wait for the storm to pass.

  Tim1964 20:57 30 Jan 2004

AVG spotted the Mydoom virus on my machine yesterday and killed it YAH!!. Thanks goodness for keeping it up to date.

  Cal 21:29 30 Jan 2004

Thanks for the reasurrance guys.


  A Cat Called George 21:35 30 Jan 2004

To make sure you have got rid of it you can get a removal tool from click here

  PurplePenny 21:52 30 Jan 2004

I've had a few of those at work.

Not as bad as at the height of Sobig though. Someone in the academic community had obviously caught it and it had got hold of hundreds of ac.uk addresses. Everyone wasted a good few minutes every morning for a week or so deleting "returned" viruses that we hadn't sent.


  Cook2 00:52 31 Jan 2004

For those with problems click here

  Gaz 25 01:11 31 Jan 2004

For more information on the MyDoom virus:

click here - and see the advisory.

  Bagsey 10:31 31 Jan 2004


This thread is now locked and can not be replied to.

Elsewhere on IDG sites

Dell XPS 13 9370 (2018) review

No need to scan sketches into your computer with Moleskine's new smart pen

WWDC history: Apple's product launches since 2005

Comment importer des contacts d’un iPhone à un autre iPhone ?