It makes the computer become a platform to send spam messages massively and attempts to redirect the traffic to certain Internet sites. It spreads via email messages and instant messaging programs.

Windows 2003/XP/2000/NT/ME/98/95

Mailbot.GA is worm which uses the affected computer as a platform to send spam massively to other computers.

It is also designed to download and install instant messaging programs in the computer and to redirect the traffic to certain Internet sites.

Additionally, it uses rootkit techniques in order to go unnoticed and make its detection more difficult.

Mailbot.GA spreads via email messages and instant messaging programs.

Mailbot.GA is easy to recognize, as it spreads via email in a message informing users that the airplane ticket amount has already been charged to their credit card. The invoice and airplane ticket seem to be attached to the message.

The following image belongs to the message:

The attachment is a compressed file with a ZIP extension which contains the copy of the worm. This file has the following icon: