How to Remove MiMail.D worm
the MiMail.D Worm?
From: john@<current domain> (The from
address may be spoofed to appear that it is coming from the current
How Does MiMail.D Worm Infect My System?
Once unzipped, it creates a file named cnfrm.exe in the Windows directory and adds the following registry key to the system.
"CNFRM32" = C:\Windows\cnfrm.exe
What Does the MiMail.D Worm Do?
Once a computer is infected, the virus checks to see if the system is connected to the Internet by trying to contact google.com. If it can contact google, then the worm attempts to gather email addresses from the infected computer. It grabs addresses from all files on the system, EXCEPT files that have the following extensions:
These addresses are then stored in a file named eml.tmp in the Windows directory. The worm has its own SMTP engine. For each email address the worms sends, it will
It will also try to perform a denial of service attack on the following domains:
How Can I Remove the MiMail.D worm?
Follow these steps in removing the MiMail.D worm.
1) Terminate the running program
2) Remove the Registry entries
3) Delete the infected files (for Windows ME and XP remember to turn off System Restore before searching for and deleting these files to remove infected backed up files as well)
4) Reboot the computer and run a thorough virus scan using your favorite antivirus program.
For Automatic Removal of MiMail.D, download the Symantec removal tool
Other Variations of this virus
Mimail.A Worm Removal
Tools for Removing Spyware, Adware, and Malware
Welchia (Dllhost.exe and SVCHost.exe) Worm Removal
Uninstall Antivir Instructions
How to Manually Run the Microsoft Malicious Software Removal Tool
Bloodhound.Exploit.6 Virus Removal
Backdoor SDBot.H Trojan Removal
iPadastic - News, Tutorials, Help, Tips, and Hints for the iPad
Download Hoyle Games
|Recommended Software for PC Hell Visitors|
iolo System Mechanic®
Emsisoft Anti Malware