MydoomDeleter
Platforms:
Os Independent
Categories:
Detection,
Email,
Hostile Code,
Policy Enforcement,
Removal
Version: v1.0
URL: http://www.puchalla-online.de/mydoomdel.html
MydoomDeleter tries to identify email messages infected with the Mydoom(.B) worm in POP3 mailboxes. It deletes any infected message that it identifies while they are still on the server. In order to perform the identification, it applies some heuristics to the headers, the size of the messages, and name of the attachment. It thus avoids downloading the actual email, making retrievals less taxing. It has both interactive and nonstop modes.
