One of the most damaging worms is the W32.NIMDA@mm worm and variations such as PE_NIMDA.A, I-Worm.Nimda, W32/Nimda-A, Win32.Nimda.A. 

bullet

"W32.Nimda.A@mm is a mass-mailing worm that utilizes multiple methods to spread itself. The name of the virus came from the reversed spelling of "admin". The worm sends itself out by email, searches for open network shares, attempts to copy itself to unpatched or already vulnerable Microsoft IIS web servers, and is a virus infecting both local files and files on remote network shares."

bullet

"If you visit a compromised Web server, you will be prompted to download an .eml (Outlook Express) email file, which contains the worm as an attachment. You can disable "File Download" in your Internet Explorer internet security zones to prevent this compromise."
 

bullet

"Also, the worm will create open network shares on the infected computer, allowing access to the system. During this process the worm creates the guest account with Administrator privileges."
Click here to obtain information and a detection/removal tool.
*Reprinted from SARC

Profile Backup Solution B2B Affiliates Contact Us Request Support SMM News Archive

Home ] [ Profile ] [ SMM Sites ] [ Flash Samples ] [ B2B Affiliates] [Support] [ Contact Us ] [SMM News Archive]

Member International Webmasters Asociation ± Web Site Design ± Full Service Web Hosting ± Data Network Services ±
±HP Commercial Products ± Marketing Consultation ±		 Member THe HTML Writers Guild
5079 North Dixie Highway, #359 FL 33334     954/202-8004 Fax 954/202-8014
spearheadmm.net  & spearheadmm.com
Copyright© 1996-2008 Spearhead Multimedia 
All rights reserved. Legal Notice.