w32.welchia.worm (Symantec def.)
From: Jay Nichols (jaynichols99_at_hotmail.com)
Date: 08/31/03
- Next message: Jay Nichols: "Re: cure for W32.Welchia.Worm virus"
- Previous message: Steven L Umbach: "Re: Trouble with Internet Options"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 31 Aug 2003 07:54:34 -0700
After writing binary zeroes over my entire disk array and
reformatting the disks I loaded W2K server. Following
that I went to the MS update site and let them decide what
updates were necessary and applied them. Then I loaded
the NAV virus from my NAV server with the 8/27 virus
updates. the scan reported 5 instances of the virus.
I have reported this to MS by phone. I also sent an email
to Symantec. MS indicates that I might have had the virus
attack my server between the time I had W2K raw loaded and
the time I had completed loading the updates from
them. ??? I suppose that would be possible, but no
other computers, servers or workstations, in my site have
the infection. My conclusion is the MS download site is
infected. My consultant is setting one of his servers to
binary zeroes and trying the same method I used to see if
he comes up with the same problem.
- Next message: Jay Nichols: "Re: cure for W32.Welchia.Worm virus"
- Previous message: Steven L Umbach: "Re: Trouble with Internet Options"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
