Anil Mitra - author | Resume | Horizons Enterprises™ | Toolkit | Home | Site-Map | Useful Links | Email the Author | Email for Information

New as of September 2001: A Philosophy of Mind Site

9/22/2001

NIMDA VIRUS

May start with a *.eml [readme.eml], generates *.exe files [mmc…], writes *.eml [readme] to C:\ and sub-folders, generates numerous tfpt files, writes a line of html to numerous *.htm *.html files.

DATE DETECTED

9.19.01

DELETING

Combinations of search and delete:

Files modified before a certain date

Contains text and/or named *.eml, readme.eml, *.htm *.html, tfpt, *.exe

THEN EDIT AND CHECK

All the affected *.htm/l files