|
View Full Version : ATTN EVERYONE: nimda worm hits the web! Manu 09-19-2001, 05:18 PM nimda has hit the web! This is an insidious virus that can transmit itself via an infected WEBSITE. EVERYONE needs to update their virus scans and be very careful of where you go. I've seen nimda destroy system files...not a pretty site. ------------------ Manu Narayan Kraw 09-19-2001, 11:34 PM dood, I fuking had it!!!! i ran a scan of readme.exe and found it embedded in eudora! I updated my virus detection (as I do every thursday) and it found the file and deleted it I am doing a full scan now. I read the info on symantecs site, but it says something like replace riched20.dll and some other file as needed. replace with what? any other posts or sites with more info? email me if you prefer.. thx! ------------------ www.krawdaddy.net (http://www.krawdaddy.net) http://www.themelee.com/smilies/s/contrib/sarge/happyNeo.gif geoffrey@krawdaddy.net etc..... Manu 09-19-2001, 11:40 PM What VirusScan do you use? At work we use McAfee VirsuScan, if you have SDAT 159 or 160, just run a scan and clean/delete all infected files. Hopefully all infected files are either in the Attach folder of eudora or in temporary internet files. If there are other infected files, and they look to be 'important' try cleaning them. If they do not clean, delete them, and you will need to either extract files from your windwos CD or find them from another source... Let me know. If your computer was not infected...then deleted readme.exe is all ya need to do. You dont' get the virus until you RUN readme.exe So if ya dind't do that, you should be fine. ------------------ Manu Narayan u8nxprt 09-20-2001, 12:00 AM A new virus, W32/NIMDA.MM or W32/MINDA.MM, is currently spreading very fast via email and the Internet. The following contains all pertinent information. Name: W32/NIMDA.MM or W32/MINDA.MM Email SUBJECT: blank Email BODY TEXT: blank Email ATTACHMENTS: README.EXE or README.EML Note: Please do not confuse these infecting attachments with "readme.txt", which is a commonly used filename within Windows and Windows-related applications. IMPORTANT: DO NOT EXECUTE ANY OF THESE ATTACHMENTS! If you receive such an email, delete it immediately. Should you accidentally execute this file, shut down your machine ASAP. ------------------ We aren't discussing anything. Kraw 09-21-2001, 12:58 AM Originally posted by Manu: What VirusScan do you use? At work we use McAfee VirsuScan, if you have SDAT 159 or 160, just run a scan and clean/delete all infected files. Hopefully all infected files are either in the Attach folder of eudora or in temporary internet files. If there are other infected files, and they look to be 'important' try cleaning them. If they do not clean, delete them, and you will need to either extract files from your windwos CD or find them from another source... Let me know. If your computer was not infected...then deleted readme.exe is all ya need to do. You dont' get the virus until you RUN readme.exe So if ya dind't do that, you should be fine. thx! I didn't run it, I don't think eudora autoruns. my NAV 2k said It found that one file and that was it. I deleted it and I guess nothing was massed emailed out from me. had me worried!! whew ------------------ www.krawdaddy.net (http://www.krawdaddy.net) http://www.themelee.com/smilies/s/contrib/sarge/happyNeo.gif geoffrey@krawdaddy.net etc..... |