I got THREE copies of this thing in my inbox today, so it seems to be flying around rapidly although it was just discovered a few days ago. Watch out for it and take the usual precautions -- do not open the attached file, etc. Some info from Norton: Name: W32.Sircam.Worm@mm. (Also Known As: W32/SirCam@mm, Backdoor.SirCam) Subject: The subject of the email will be random, and will be the same as the file name of the attachment in the email. Message: The message body will be semi-random, but will always contain one of the following two lines (either English or Spanish) as the first and last sentences of the message. Spanish Version: First line: Hola como estas ? Last line: Nos vemos pronto, gracias. English Version: First line: Hi! How are you? Last line: See you later. Thanks Payload: Large scale e-mailing: The worm embed random documents from the infected PC to itself Deletes files: 1 in 20 chance of deleting all files and directories on C:. Only occurs on systems using D/M/Y as the date format Degrades performance: 1 in 33 chance of filling all remaining space on the hard disk by adding text to the file c:\recycled\sircam.sys at each startup Releases confidential info: It will export a random document from the hard drive by appending it to the body of the worm More details at: http:[EMAIL PROTECTED] - This message is from the Pentax-Discuss Mail List. To unsubscribe, go to http://www.pdml.net and follow the directions. Don't forget to visit the Pentax Users' Gallery at http://pug.komkon.org .
