Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

RE: W32.Nimda Infecting Executables !!!! :-(

From: "Royans Tharakan" <RTharakan () ingenuity com>
Date: Wed, 19 Sep 2001 09:26:42 -0700
http://vil.nai.com/vil/virusSummary.asp?virus_k=99209#Symptoms

I quote...
"Those using earlier versions of the DATS (< 4160), Extra.dat(< ver 4),
or SuperExtra(< ver 4) should update to the latest available as noted
below. Once you have updated to the 4160 DAT files, delete any EXTRA.DAT
files that you may be using. "

This should make CLEANING work in NAV too.

-----Original Message-----
From: Steve Halligan [mailto:agent33 () geeksquad com]
Sent: Wednesday, September 19, 2001 7:57 AM
To: 'Owen Creger'; 'incidents () securityfocus com'
Subject: RE: W32.Nimda Infecting Executables !!!! :-(




We obtained a virus update from Symantec and started scanning 
our systems.
Norton Anti-Virus has been finding numerous infected exe's including
wordpad.exe and many other executables. :-(
NAV is unable to clean the files and can only quarantine them :-(
Enjoy rebuilding your servers :-(



McAfee is CLEANING the infected executables.  Norton is deleting them.
I
suggest getting your hands on a copy of Virusscan or Netshield to do the
cleaning portain at least.

-Steve

------------------------------------------------------------------------
----
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com


----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
Previous By Date Next
Previous By Thread Next

Current thread: