Reports are that it is a Code Red variant which was released this morning, exactly one week after the attacks. The virus is contained in a file called “readme.exe” and is attached to a blank email. It is supposedly capable of infecting home PCs.
Thanks for the warning. I’ll let my SA guys know.
Thanks for the heads up.
Is it this one?
W32.Nimda.A@mm is a new mass-mailing worm that utilizes multiple methods to spread itself. The worm sends itself out by email, searches for open network shares, and attempts to copy itself to unpatched Microsoft IIS web servers. The worm does this using the Unicode Web Traversal exploit. A patch and information regarding this exploit can be found at http://www.microsoft.com/technet/security/bulletin/ms00-078.asp.
Yep, that’s the one. Latest info is that it’s spreading faster than Code Red did.
Glad to be of service.