digplanet beta 1: Athena
Share digplanet:

Agriculture

Applied sciences

Arts

Belief

Business

Chronology

Culture

Education

Environment

Geography

Health

History

Humanities

Language

Law

Life

Mathematics

Nature

People

Politics

Science

Society

Technology

Nimda Virus
Technical name Avast: Win32:Nimda
Avira: W32/Nimda.eml
BitDefender: Win32.Nimda.A@mm
ClamAV: W32.Nimda.eml
Eset: Win32/Nimda.A
Grisoft: I-Worm/Nimda
Kaspersky: Net-Worm.Win32.Nimda or I-Worm.Nimda
McAfee: Exploit-MIME.gen.ex
Sophos: W32/Nimda-A
Symantec: W32.Nimda.A@mm
Type Multi-vector worm
Point of Origin China
Operating system(s) affected Windows 95XP
Written in English

Nimda is a computer worm, also a file infector. It quickly spread, surpassing the economic damage caused by previous outbreaks such as Code Red. Nimda utilized several types of propagation techniques and this caused it to become the Internet’s most widespread virus/worm within 22 minutes.

The worm was released on September 18, 2001.[1] Due to the release date, exactly one week after the attacks on the World Trade Center and Pentagon, some media quickly began speculating a link between the virus and Al Qaeda, though this theory ended up proving unfounded.

Nimda affected both user workstations (clients) running Windows 95, 98, Me, NT, 2000 or XP and servers running Windows NT and 2000.

The worm's name origin comes from the reversed spelling of it, which is "admin".

F-Secure found the text[2] "Concept Virus(CV) V.5, Copyright(C)2001 R.P.China" in the Nimda code, suggesting its country of origin.

Methods of infection[edit]

Nimda was so effective partially because it—unlike other infamous malware like the Morris worm or Code Red—uses five different infection vectors:

  • via email
  • via open network shares
  • via browsing of compromised web sites
  • exploitation of various Microsoft IIS 4.0 / 5.0 directory traversal vulnerabilities. (Both Code Red and Nimda were hugely successful exploiting well known and long solved vulnerabilities in the Microsoft IIS server.[3])
  • via back doors left behind by the "Code Red II" and "sadmind/IIS" worms.

See also[edit]

References[edit]

  1. ^ https://www.cert.org/historical/advisories/CA-2001-26.cfm CERT first released an advisory on the worm on September 18, 2001
  2. ^ http://www.f-secure.com/v-descs/nimda.shtml
  3. ^ http://seifried.org/lasg/introduction-to-security/

External links[edit]


Original courtesy of Wikipedia: http://en.wikipedia.org/wiki/Nimda — Please support Wikipedia.
This page uses Creative Commons Licensed content from Wikipedia. A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia.
2150 videos foundNext > 

NIMDA Co

Nimda, Lion security hole, support scam bust, .CZ.CC takedown and RIP Steve - 60 Sec Security

Don't just read the latest security news - watch it in 60 seconds!

Nimda Beatz - Dreamer

www.facebook.com/nimdaj.slughorn.

CISCO VP(SECURITY) ANSWER TO NIMDA VIRUS@NCW

CISCO VP(SECURITY) ANSWER TO NIMDA VIRUS QUERY @ NCW MANIKSHAW CENTER NEW DELHI 21 APR 2011.

[Karos Crónicas de Rosh Latino] Drkngel vs. NIMDA

Una gran batalla entre dos grande personajes.

Graalonline Classic Glitch #1:Nimda Island Glitch

I found out a glitch using a baddy and with that you can go anywhere west and south and off belle. Also there is a really cool island named nimda. AND OMG TH...

DJ Nimda - TenMinMix 4 - Electro House - RauteMusik.FM - 24.07.2010

DJ Nimda - TenMinMix 4 - 24.07.2010 (Hildesheim, Germany) Style: Electro House Visit www.DJ-Nimda.de Equipment: - 2x Denon DN-S 1000 - Pioneer DJM 400 - Alle...

amanecer en nimda sailboat club

nada como amanecer en un charco virtual escuchando a Luis Camnitzer, Mariana Botey y Fran Ilich en nimda sailboat club.

HIGHSOCIETY - Nimda

Download for free here: http://thisishighsociety.com ∆∆

MMD - N.I.M.D.A (Mikunologie)

Model: N.I.M.D.A made by me Motion: Mikunologie Stage: White-grid Stage Effects: WorkingFloor "Hyper" Shader AutoLuminous Mechanic Shader Diffusion SSAO Moti...

2150 videos foundNext > 

4 news items

 
Bizcommunity.com
Wed, 09 Jul 2014 02:50:48 -0700

We are four smallish creative companies sharing prime office space opposite Multichoice in Randburg. We have room for one more company. Join an advertising agency, two eventing companies and a production house in our vibey and energetic space.
 
iThome Online
Mon, 21 Jul 2014 19:36:52 -0700

從2001到2003年之間,開始有許多惡意程式利用Windows、IE、Outlook Express、Outlook的安全性弱點發動攻擊,肆虐全球個人電腦與伺服器,像是Code Red、Nimda、Blaster、Sasser等蠕蟲,也是在那段時期,微軟強化了Windows XP更新機制與系統防護,並決定 ...
 
天极网
Mon, 21 Jul 2014 21:18:45 -0700

从2001到2003年之间,开始有许多恶意软件利用Windows、IE、Outlook Express、Outlook的安全性弱点发动攻击,肆虐全球个人计算机与服务器,像是Code Red、Nimda、Blaster、Sasser等蠕虫,也是在那段时期,微软强化了Windows ...
 
中国徐州网
Tue, 22 Jul 2014 09:53:53 -0700

防网络病毒:内置高级防火墙功能,可以对数据包进行双向过滤,同时支持状态防火墙,可以有效防止Nimda、冲击波、木马等病毒的发作。 三、高可用:全中文WEB配置,操作·双WAN轻松配置:采用通用的由表形式,只需在WEB界面中导 ...
Loading

Oops, we seem to be having trouble contacting Twitter

Talk About Nimda

You can talk about Nimda with people all over the world in our discussions.

Support Wikipedia

A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia. Please add your support for Wikipedia!