Skip Over Navigation Links
Center for Information TechnologyAntivirus
Antivirus Home Page
Contact Us
Questions or Comments
Disclaimers

Software
Current client downloads:
VScan Engine/Dat (SuperDat) -5300/2777.5511
VirusScan Enterprise 8.5i (with Patch 6) - Windows NT/2000/XP/2003
VirusScan Enterprise 7.1 - Windows NT/2000/XP/2003
Virex (OS X) Engine/Def - 7.2(v1.1)/081029
Virex (OS 9.x) Engine/Def - 6.2/071001
Linux & Solaris Engine/Dat - 5.2.00/4.0.5196
Symantec Antivirus - 10.1.7.7000
Symantec Antivirus - 10.2
Clean Boot 1.0
Stinger v3.8.0 virus removal tool (Updated 09/10/07)
Current server downloads:
VirusScan Enterprise 8.5
VirusScan Enterprise 7.1
NetShield NetWare - 4.6.2
NetShield NetWare - 4.6.3
NetShield NetWare Engine Update - 4.4.00
ePO agent for NetWare
ScanMail eManager - 3.0

Information
ePO 3.0/VirusScan 7.0 Presentation
Virex 7.x Installation Instructions
VirusScan FAQs
VirusScan Instructions
Additional Resources

Archives
List of Viruses

Virus Alerts

w32/mimail.i@mm Last Updated 11/14/03 10:45AM

CIT has been notified there is a new email virus in the wild called w32/mimail.i@mm.

In email form, w32/mimail.i@mm appears as follows:

The From"PayPal.com" donotreply@paypal.com

The Subject is:
YOUR PAYPAL.COM ACCOUNT EXPIRES

The Message body is:

Dear PayPal member,

PayPal would like to inform you about some important information regarding your PayPal account. This account, which is associated with the email address will be expiring within five business days. We apologize for any inconvenience that this may cause, but this is occurring because all of our customers are required to update their account settings with their personal information. We are taking these actions because we are implementing a new security policy on our website to insure everyone's absolute privacy. To avoid any interruption in PayPal services then you will need to run the application that we have sent with this email (see attachment) and follow the instructions. Please do not send your personal information through email, as it will not be as secure. IMPORTANT! If you do not update your information with our secure application within the next five business days then we will be forced to deactivate your account and you will not be able to use your PayPal account any longer. It is strongly recommended that you take a few minutes out of your busy day and complete this now. DO NOT REPLY TO THIS MESSAGE VIA EMAIL! This mail is sent by an automated message system and the reply will not be received. Thank you for using PayPal

The attachment is:
www.paypal.com.scr
paypal.asp.scr

NAI has released Dat/SuperDat 4304 to detect and remove w32/mimail.i@mm. The 4304 DAT/SuperDat is now available.

Symantec released new definitions, dated 11/13/03, to detect and remove w32/mimail.i@mm. The definitions are available through the LiveUpdate feature of Symantec Antivirus.

For more information see:

http://vil.nai.com/vil/content/v_100822.htm from NAI.
http://securityresponse.symantec.com/avcenter/venc/data/w32.mimail.i@mm.html from Symantec. Note: Symantec is calling this variant Mimail.H

This archive is not intended to be comprehensive. For a more complete virus library, please visit NAI's Virus Information Library at http://vil.nai.com.

Contact NIH Help Desk for assistance:
866-319-4357 (toll free), 301-496-4357 (6-HELP) (local), 301-496-8294 (TDD)
http://ithelpdesk.nih.gov/support
Register for iForgotMyPassWord

National Institutes of HealthCenter for Information Technology
National Institutes of Health
Bethesda, Maryland 20892

Questions or Comments | Disclaimers | Privacy Policy

 Department of Health and Human ServicesHealth and Human Services
Washington, D.C. 20201
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -