Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Help Keep Boards Alive. Support us by going ad free today. See here: https://subscriptions.boards.ie/.
If we do not hit our goal we will be forced to close the site.

Current status: https://keepboardsalive.com/

Annual subs are best for most impact. If you are still undecided on going Ad Free - you can also donate using the Paypal Donate option. All contribution helps. Thank you.
https://www.boards.ie/group/1878-subscribers-forum

Private Group for paid up members of Boards.ie. Join the club.

readme.exe ( W32.Nimda.A.@mm )

  • 18-09-2001 07:40PM
    #1
    Registered Users, Registered Users 2 Posts: 16,415 ✭✭✭✭


    FYI

    Prolly gonna be another thousand of these in my mailbox tomorrow. Quite a nasty little bugger :)
    W32.Nimda.A@mm is a new mass-mailing worm that utilizes email to propagate itself. The threat arrives as a file named readme.exe in an email.

    In addition, the worm sends out probes to Microsoft IIS servers attempting to spread itself by using the Unicode Web Traversal exploit similar to W32.BlueCode.Worm. Compromised servers may display a webpage prompting a visitor to download an Outlook file which contains the worm as an attachment.

    Also, the worm will create an open network share allowing access to the system. The worm will also attempt to spread via open network shares.

    http://www.sarc.com/avcenter/venc/data/pf/w32.nimda.a@mm.html

    Al.


Advertisement