digplanet beta 1: Athena
Share digplanet:

Agriculture

Applied sciences

Arts

Belief

Business

Chronology

Culture

Education

Environment

Geography

Health

History

Humanities

Language

Law

Life

Mathematics

Nature

People

Politics

Science

Society

Technology

Nimda Virus
Technical name Avast: Win32:Nimda
Avira: W32/Nimda.eml
BitDefender: Win32.Nimda.A@mm
ClamAV: W32.Nimda.eml
Eset: Win32/Nimda.A
Grisoft: I-Worm/Nimda
Kaspersky: Net-Worm.Win32.Nimda or I-Worm.Nimda
McAfee: Exploit-MIME.gen.ex
Sophos: W32/Nimda-A
Symantec: W32.Nimda.A@mm
Type Multi-vector worm
Point of Origin China (alleged)
Operating system(s) affected Windows 95XP
Written in English

Nimda is a computer worm, also a file infector. It quickly spread, surpassing the economic damage caused by previous outbreaks such as Code Red. Nimda utilized several types of propagation techniques and this caused it to become the Internet’s most widespread virus/worm within 22 minutes.

The worm was released on September 18, 2001.[1] Due to the release date, exactly one week after the attacks on the World Trade Center and Pentagon, some media quickly began speculating a link between the virus and Al Qaeda, though this theory ended up proving unfounded.

Nimda affected both user workstations (clients) running Windows 95, 98, Me, NT, 2000 or XP and servers running Windows NT and 2000.

The worm's name origin comes from the reversed spelling of it, which is "admin".

F-Secure found the text[2] "Concept Virus(CV) V.5, Copyright(C)2001 R.P.China" in the Nimda code, suggesting its country of origin.

Methods of infection[edit]

Nimda was so effective partially because it—unlike other infamous malware like the Morris worm or Code Red—uses five different infection vectors:

  • via email
  • via open network shares
  • via browsing of compromised web sites
  • exploitation of various Microsoft IIS 4.0 / 5.0 directory traversal vulnerabilities. (Both Code Red and Nimda were hugely successful exploiting well known and long solved vulnerabilities in the Microsoft IIS server.[3])
  • via back doors left behind by the "Code Red II" and "sadmind/IIS" worms.

See also[edit]

References[edit]

  1. ^ https://www.cert.org/historical/advisories/CA-2001-26.cfm CERT first released an advisory on the worm on September 18, 2001
  2. ^ http://www.f-secure.com/v-descs/nimda.shtml
  3. ^ http://seifried.org/lasg/introduction-to-security/

External links[edit]


Original courtesy of Wikipedia: http://en.wikipedia.org/wiki/Nimda — Please support Wikipedia.
This page uses Creative Commons Licensed content from Wikipedia. A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia.
2097 videos foundNext > 

Nimda, Lion security hole, support scam bust, .CZ.CC takedown and RIP Steve - 60 Sec Security

Don't just read the latest security news - watch it in 60 seconds!

NIMDA Co

DJ Nimda - TenMinMix 3 - Electro House - RauteMusik.FM - 10.04.2010

DJ Nimda - TenMinMix 3 - 10.04.2010 (Hildesheim, Germany) Style: Electro House Visit www.DJ-Nimda.de Equipment: - 2x Denon DN-S 1000 - Pioneer DJM 400 - Alle...

Graalonline Classic Glitch #1:Nimda Island Glitch

I found out a glitch using a baddy and with that you can go anywhere west and south and off belle. Also there is a really cool island named nimda. AND OMG TH...

Isqa - Witch Cave (Nimda Remix) [DRUMSTEP] [FREE DOWNLOAD]

Please criticize all you want because I am still a learning producer! I'm 14 years old and I love producing. Download: https://soundcloud.com/nimdaofficial/i...

DJ Nimda@ Fastnachtsball 2012 in Gross Lafferde

Jede Menge gute Stimmung! Tanzfläche pausenlos rappelvoll. So muss das sein ;-)

DJ Nimda - TenMinMix 4 - Electro House - RauteMusik.FM - 24.07.2010

DJ Nimda - TenMinMix 4 - 24.07.2010 (Hildesheim, Germany) Style: Electro House Visit www.DJ-Nimda.de Equipment: - 2x Denon DN-S 1000 - Pioneer DJM 400 - Alle...

Nimda - VIRUSINSIDE - Virus Informáticos a la Vista - Lucas Torrón

Nimda - VIRUSINSIDE - Virus Informáticos a la Vista - Lucas Torrón López - Musica Creative Commons: Enjoy the ride - Avastar.

Nimda - Overgrowth [DUBSTEP] [FREE DOWNLOAD]

Download: https://soundcloud.com/damaged-sounds/nimda-overgrowth-ds-freebie Soundcloud: https://soundcloud.com/nimdaofficial Facebook: https://www.facebook.c...

[MMD] sailor moon et n.i.m.d.a Parkour Pranking

normalement sailor moon etait assis dans les air sur le motion mes je les fais s'assoir sur la tour 05/09/14: merci pour les plus de 200 vues :) 21/09/14:312...

2097 videos foundNext > 

682 news items

 
News On 6
Wed, 05 Nov 2014 07:45:42 -0800

WASHINGTON (AP) _ As American companies recovered from the latest Internet worm, the complex ``Nimda'' program struck companies around the world, shutting down sites in Norway, Japan and elsewhere. The virus-like program spreads rapidly through ...
 
Bizcommunity.com
Tue, 18 Nov 2014 02:18:45 -0800

Broadcast houses are in a race against time to land the signature of Eldorado Park's gorgeous, favourite daughter, model Carmen van der Merwe, to spice up Afrikaans shows for 2015. Afrikaans is dying? Not while Carmen is in town - Martin Glitz and ...
 
Bizcommunity.com
Mon, 03 Nov 2014 05:22:29 -0800

Creative agency seeks the services of a skilled and talented graphic designer. A minimum of three years experience essential. Please note this position is based in Bloemfontein. Portfolio essential - send in PDF format. The closing date of this ...
 
Register
Sat, 17 Sep 2011 02:01:01 -0700

Nimda (admin spelled backwards) was a hybrid worm that spread via infected email attachments and across websites running vulnerable versions of Microsoft's IIS web server software. Specifically the malware exploited a folder traversal vulnerability ...
 
Naked Security
Thu, 15 Sep 2011 19:40:21 -0700

Boy, did Nimda show itself. It could spread every-which-way, and it did: by sending itself out to your email contacts; by breaking into web servers and infecting files all over your website; by spreading automatically across your network; and by ...

@IT

@IT
Fri, 21 Nov 2014 01:11:15 -0800

CodeRedやNimdaといったマルウェアが猛威を振るっていた時代ならばいざ知らず、こうした現在の脅威に、オンプレミス環境に導入したウイルス対策ソフトやファイアウォールといった従来型のセキュリティ対策だけで対応するのは困難だ。セキュリティベンダー各社もこのことを ...

Дни.Ру

Дни.Ру
Mon, 17 Nov 2014 10:28:02 -0800

Nimda. Название является палиндромом слова admin. Для того чтобы заразить миллионы компьютеров, ему понадобилось всего 22 минуты. Slammer – самый быстрый вирус в истории. Уничтожил данные с 75 тысяч компьютеров за десять ...

E15.cz

E15.cz
Mon, 17 Nov 2014 21:14:44 -0800

Tuzemské společnosti Retia, Eldis či TCZ, které vyrábějí klíčové komponenty radaru, začaly jednat se zahraničními koncerny, jako je Saab, Lockheed Martin, Thales nebo Nimda. Nakolik by se na chystané zakázce české armády za 1,5 až 1,7 miliardy korun ...
Loading

Oops, we seem to be having trouble contacting Twitter

Support Wikipedia

A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia. Please add your support for Wikipedia!

Searchlight Group

Digplanet also receives support from Searchlight Group. Visit Searchlight