Security Incidents mailing list archives
RE: W32.Nimda Infecting Executables !!!! :-(
From: "Royans Tharakan" <RTharakan () ingenuity com>
Date: Wed, 19 Sep 2001 09:26:42 -0700
http://vil.nai.com/vil/virusSummary.asp?virus_k=99209#Symptoms I quote... "Those using earlier versions of the DATS (< 4160), Extra.dat(< ver 4), or SuperExtra(< ver 4) should update to the latest available as noted below. Once you have updated to the 4160 DAT files, delete any EXTRA.DAT files that you may be using. " This should make CLEANING work in NAV too. -----Original Message----- From: Steve Halligan [mailto:agent33 () geeksquad com] Sent: Wednesday, September 19, 2001 7:57 AM To: 'Owen Creger'; 'incidents () securityfocus com' Subject: RE: W32.Nimda Infecting Executables !!!! :-(
We obtained a virus update from Symantec and started scanning our systems. Norton Anti-Virus has been finding numerous infected exe's including wordpad.exe and many other executables. :-( NAV is unable to clean the files and can only quarantine them :-( Enjoy rebuilding your servers :-(
McAfee is CLEANING the infected executables. Norton is deleting them. I suggest getting your hands on a copy of Virusscan or Netshield to do the cleaning portain at least. -Steve ------------------------------------------------------------------------ ---- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com ---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
Current thread:
- W32.Nimda Infecting Executables !!!! :-( Owen Creger (Sep 18)
- <Possible follow-ups>
- RE: W32.Nimda Infecting Executables !!!! :-( Steve Halligan (Sep 19)
- RE: W32.Nimda Infecting Executables !!!! :-( Royans Tharakan (Sep 19)