|
PureBytes Links
Trading Reference Links
|
The current Norton AV update scans
for 11 Nimda variants including this one.
<BLOCKQUOTE
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000080 2px solid; MARGIN-RIGHT: 0px">
----- Original Message -----
<DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black">From:
Ira Tunik
To: <A title=realtraders@xxxxxxxxxxxxxxx
href="mailto:realtraders@xxxxxxxxxxxxxxx";>realtraders
Sent: Friday, November 02, 2001 11:06
PM
Subject: [RT] virus
PE_NIMDA.E is a fast-spreading Internet worm and file
infector thatarrives via email, as an attachment called SAMPLE.EXE. It
employsseveral infection mechanisms and exploits several
knownvulnerabilities. Similarto the original variant, PE_NIMDA.A, it
has four modes of propagation:through email, through network shared
drives, through un-patched IISservers, and through file
infection.The main difference between this variant and PE_NIMDA.A are
the names ofthree of its dropped files. However, similar tothe
original variant, the name of the dropped executables are names ofvalid
system files.This virus has been classified as low risk.A free
fix tool for PE_NIMDA.E, and additional information about thevirus, are
available at:<A
href="http://www.antivirus.com/vinfo/virusencyclo/default5.asp?VName=PE_NIMDA.E.";>http://www.antivirus.com/vinfo/virusencyclo/default5.asp?VName=PE_NIMDA.E.PE_NIMDA.E
is detected by Trend Micro pattern file #161 or 961.To
unsubscribe from this group, send an email
to:realtraders-unsubscribe@xxxxxxxxxxxxxxxYour
use of Yahoo! Groups is subject to the <A
href="http://docs.yahoo.com/info/terms/";>Yahoo! Terms of Service.
Yahoo! Groups Sponsor
ADVERTISEMENT
To unsubscribe from this group, send an email to:
realtraders-unsubscribe@xxxxxxxxxxxxxxx
Your use of Yahoo! Groups is subject to the Yahoo! Terms of Service.
|