digplanet beta 1: Athena
Share digplanet:


Applied sciences






















Nimda Virus
Technical name Avast: Win32:Nimda
Avira: W32/Nimda.eml
BitDefender: Win32.Nimda.A@mm
ClamAV: W32.Nimda.eml
Eset: Win32/Nimda.A
Grisoft: I-Worm/Nimda
Kaspersky: Net-Worm.Win32.Nimda or I-Worm.Nimda
McAfee: Exploit-MIME.gen.ex
Sophos: W32/Nimda-A
Symantec: W32.Nimda.A@mm
Type Multi-vector worm
Point of Origin China (alleged)
Operating system(s) affected Windows 95XP
Written in English

Nimda is a computer worm, also a file infector. It quickly spread, surpassing the economic damage caused by previous outbreaks such as Code Red. Nimda utilized several types of propagation techniques and this caused it to become the Internet’s most widespread virus/worm within 22 minutes.

The worm was released on September 18, 2001.[1] Due to the release date, exactly one week after the attacks on the World Trade Center and Pentagon, some media quickly began speculating a link between the virus and Al Qaeda, though this theory ended up proving unfounded.

Nimda affected both user workstations (clients) running Windows 95, 98, Me, NT, 2000 or XP and servers running Windows NT and 2000.

The worm's name origin comes from the reversed spelling of it, which is "admin".

F-Secure found the text[2] "Concept Virus(CV) V.5, Copyright(C)2001 R.P.China" in the Nimda code, suggesting its country of origin.

Methods of infection[edit]

Nimda was so effective partially because it—unlike other infamous malware like the Morris worm or Code Red—uses five different infection vectors:

  • via email
  • via open network shares
  • via browsing of compromised web sites
  • exploitation of various Microsoft IIS 4.0 / 5.0 directory traversal vulnerabilities. (Both Code Red and Nimda were hugely successful exploiting well known and long solved vulnerabilities in the Microsoft IIS server.[3])
  • via back doors left behind by the "Code Red II" and "sadmind/IIS" worms.

See also[edit]


  1. ^ https://www.cert.org/historical/advisories/CA-2001-26.cfm CERT first released an advisory on the worm on September 18, 2001
  2. ^ http://www.f-secure.com/v-descs/nimda.shtml
  3. ^ http://seifried.org/lasg/introduction-to-security/

External links[edit]

Original courtesy of Wikipedia: http://en.wikipedia.org/wiki/Nimda — Please support Wikipedia.
This page uses Creative Commons Licensed content from Wikipedia. A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia.
2208 videos foundNext > 

Nimda, Lion security hole, support scam bust, .CZ.CC takedown and RIP Steve - 60 Sec Security

Don't just read the latest security news - watch it in 60 seconds!


Nimda - Remains [Free Download]

Open For Information-- SUPPORT THE ARTIST! Well here i am, i'm back! Hope you enjoy this new track to kick things off again! Also i am using anime pictures...

Nimda - Overgrowth [DUBSTEP] [FREE DOWNLOAD]

Download: https://soundcloud.com/damaged-sounds/nimda-overgrowth-ds-freebie Soundcloud: https://soundcloud.com/nimdaofficial Facebook: https://www.facebook.c...

DJ Nimda - TenMinMix 3 - Electro House - RauteMusik.FM - 10.04.2010

DJ Nimda - TenMinMix 3 - 10.04.2010 (Hildesheim, Germany) Style: Electro House Visit www.DJ-Nimda.de Equipment: - 2x Denon DN-S 1000 - Pioneer DJM 400 - Alle...

Isqa - Witch Cave (Nimda Remix) [DRUMSTEP] [FREE DOWNLOAD]

Please criticize all you want because I am still a learning producer! I'm 14 years old and I love producing. Download: https://soundcloud.com/nimdaofficial/i...

DJ Nimda@ Fastnachtsball 2012 in Gross Lafferde

Jede Menge gute Stimmung! Tanzfläche pausenlos rappelvoll. So muss das sein ;-)

DJ Nimda - TenMinMix 4 - Electro House - RauteMusik.FM - 24.07.2010

DJ Nimda - TenMinMix 4 - 24.07.2010 (Hildesheim, Germany) Style: Electro House Visit www.DJ-Nimda.de Equipment: - 2x Denon DN-S 1000 - Pioneer DJM 400 - Alle...

Nimda - VIRUSINSIDE - Virus Informáticos a la Vista - Lucas Torrón

Nimda - VIRUSINSIDE - Virus Informáticos a la Vista - Lucas Torrón López - Musica Creative Commons: Enjoy the ride - Avastar.

Обзор вируса Nimda (Умнила среди червей)

Музыка: Spongebob Schwammkopf - Hor mal, Wer da spielt.

2208 videos foundNext > 

555 news items

Sat, 17 Sep 2011 02:01:01 -0700

Nimda (admin spelled backwards) was a hybrid worm that spread via infected email attachments and across websites running vulnerable versions of Microsoft's IIS web server software. Specifically the malware exploited a folder traversal vulnerability ...
Naked Security
Thu, 15 Sep 2011 19:40:21 -0700

Boy, did Nimda show itself. It could spread every-which-way, and it did: by sending itself out to your email contacts; by breaking into web servers and infecting files all over your website; by spreading automatically across your network; and by ...
Express Étudiant
Sat, 17 Jan 2015 13:11:15 -0800

Pour commencer, il semble que le virus Nimda se transmet en s'envoyant lui-même par courrier aux gens du carnet de messagerie électronique à partir d'un ordinateur infecté par ce virus. Une fois le courrier ouvert, le ver (synonyme pour virus ...
Tue, 20 Jan 2015 07:00:05 -0800

2001年ごろまで、マイクロソフト製品はセキュリティに関して評判が悪かった。脆弱性が相次いで見つかり、品質が不十分なパッチも少なくなかった。「Code Red」や「Nimda」といった、同社製品の脆弱性を突いて感染を広げるウイルス(マルウエア)も続出し、大きな被害をもたらし ...


Mon, 08 Dec 2014 16:04:29 -0800

Jose Kuervo • on Dec 8, 2014 4:04 pm. Just remember this comment when the show turns out to be awesome. Can't wait to learn some more about Jor-El I and Nimda, Jor- El parents. nerdrage • on Dec 8, 2014 4:04 pm. I want a TV series about the second ...


Thu, 09 Oct 2014 12:23:56 -0700

The monthly patch cycle was just one output from TwC, which was formed in the ashes of Code Red, Nimda and hundreds of other network worms and email viruses that ran roughshod through vulnerabilities in Windows and other Microsoft software in the ...
Wed, 01 Oct 2014 05:04:20 -0700

The situation with the Shellshock bug is so fluid and complicated that even insiders have trouble keeping it all straight. These questions and answers may help you to understand the bug — actually "bugs" — and what you should do about them. The ...
Windows IT Pro (blog)
Tue, 25 Nov 2014 08:52:30 -0800

Cybercriminals are relentless in their efforts to cash in by compromising your network. It's a reality that's unlikely to change for the better—that's why your approach to security needs to change, Marc Thaler writes. Whenever you're searching for a ...

Oops, we seem to be having trouble contacting Twitter

Support Wikipedia

A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia. Please add your support for Wikipedia!

Searchlight Group

Digplanet also receives support from Searchlight Group. Visit Searchlight