1. Symantec/
  2. Security Response/
  3. W32.HLLW.Lovgate.G@mm


Risk Level 2: Low

March 24, 2003
February 13, 2007 11:44:49 AM
Also Known As:
WORM_LOVGATE.F [Trend], WORM_LOVGATE.G [Trend], W32/Lovgate.f@M [McAfee], W32/Lovgate.g@M [McAfee], W32/Lovgate-E [Sophos], I-Worm.LovGate.f [KAV], Win32/Lovgate.F.Worm [CA]
Systems Affected:

W32.HLLW.Lovgate.G@mm is a minor variant of W32.HLLW.Lovgate.C@mm. This worm contains mass-mailing and backdoor functionalities. This variant does not properly function under Windows 95/98/Me systems.

To spread itself, the worm attempts to reply to incoming email messages and to email addresses that it finds in HTML files. The subject and attachment of the incoming email are chosen from a predefined list. The attachment will have a .exe, .pif, or .scr file extension.

W32.HLLW.Lovgate.G@mm also attempts to copy itself to all the computers on a local network, and then attempts to infect these computers. The worm also has a backdoor Trojan capability.

NOTE: Virus definitions dated March 24, 2003 may detect this threat as W32.HLLW.Lovgate.C@mm.

Symantec Security Response has created a tool to remove W32.HLLW.Lovgate.G@mm. Click here to obtain the tool.

Antivirus Protection Dates

  • Initial Rapid Release version March 25, 2003
  • Latest Rapid Release version October 1, 2017 revision 018
  • Initial Daily Certified version March 25, 2003
  • Latest Daily Certified version October 2, 2017 revision 002
  • Initial Weekly Certified release date March 25, 2003
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Eric Chien

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube