Thread: Nimda

Esss, to your entire post i say

www.freeBSD.org

Linux is not looking too bad after all. At least people can afford to use it. I have a few books on RedHat 7.0. Should I install this OS? Is RH 7.0 any good? Anyone use it?

> www.freeBSD.org

An operating system used by sufficiently few people that it isn't worth someone's effort to attempt to find a security hole.

> I had all the latest updates and all the latest service packs and I still got Nimda.

Have you worked out by which vector, then?

It's one of:
* MS00-078, a patch for which is included in Win2k SP2.
* MS01-020, which only affects IE 5.0 and 5.01 pre-SP2.
* IIS attacks, caused by you having previously contracted Code Red II.
* Opening an attachment sent to you masquerading as an audio file.
* Opening an already-infected .eml or .nws file.
* Someone else's infected machine having mapped a drive to a share on yours.

You still haven't told me how many problems MPSA told you about.

I downloaded and ran the cure from www.centralcommand.com

I don't know how to use this operating system. All I know about computers is C and some C++. Operating systems unfortunately is about 6 months away.

Also, I have a pirated version of Win2k and I don't have the admin privilages because I think I only have a user account. I log in as dean, not as administrator. So this truely limits me. It also makes it impossible for me to eradicate the virus, since as the virus cure executes it is not allowed to delete certain files because I'm not logged in as the administrator. Therefore I conclude that my operating system is toast.

I think I'm going to have to install a new operating system although I hesitate to get WinXP. That would seem the logical operating system to buy because I'm going to have to pay full price. My fear is that WinXP will not accept all my hardware. Sure my 1.4 Ghz processor and 327 MB Ram is fine, so is my 20 GB 7200 RPM HD, but I don't think my 5X DVD will work with WinXP. I'm deathly afraid to purchase WinXP on Oct 25 because I think the safest bet would be to get it on an OEM setup. That way you know everything works. Maybe I'll have to turn this powerful computer into a Linux experiment. I only payed $550 USD for it, but that is still a waste. Too bad MS operating systems are soo expensive. I would have purchased Win2k if it wasn't $250 USD.

> Operating systems unfortunately is about 6 months away.

A little initiative works wonders, I've found.

You need a course to use Win2k, and you're considering Linux?

> Also, I have a pirated version of Win2k and I don't have the admin privilages because I think I only have a user account

Presumably you installed it, though, in which case you should know the Administrator password. You have installed SP2, which needs to be done under an administrative account, in any event, so what's the problem?

> because I'm going to have to pay full price.

You are a student. You do not need to pay full price. You can pay significantly less by getting the academic version, which is exactly the same product for a lower price. What is the problem with that?

> My fear is that WinXP will not accept all my hardware.

I think you'll find that any hardware that operates in your machine will work in XP. From Microsoft's perspective, it has to - they want this to replace the 9x codebase, so they need a similar level of hardware support.

Actually, no, I didn't install Win2k pro. Some con man did that for me.

I can't get this acedemic version that you are talking about. I have to pay the same price as the world. It's around $250 USD, I looked this up. This is for the full version of Win2k Pro.

How can I tell if I have admin priviliges? I messed with Nimda.dll on my C drive. I accidently changed some of the permissions and now it says that I don't have the permission to change them back. This leads me to believe that I'm not the administrator. When I got the OS I loged in as dean, not as administrator or anything like that. As I run the virus scanner it says that there are files that it can not open.

I don't think it's effort so much as needing the time to learn a professional operating system. I've been spending this term studying everything but my OS. I have some books on Linux 7.0. Yes I know that would be hell, but I dont' want to pay $250 USD. I can get Linux 7.1 for like $10 USD.

I don't trust WinXP because it sounds as though if you try to install it more than one you are shut down. I will never buy anything that does that to people. That is sick.

At this moment I'm not sure if my OS is attacking the internet. Maybe it's okay but some of those files are still on my HD. There are about 33 right now. It used to be as high as 98 but after I ran the cure it got rid of many of them. I wonder if it is okay to try to delete some of these files.

It almost worked, but after I chose full control and pressed apply, is said:

unable to save permission changes to Admin.dll
Access is denied

Why would it do that?

When I right click the file and press the security tab it says:

You do not have permission to view the current permission setting for Admin.dll, but you can make permission changes.

There must be a way to make pemission changes! But something must have been missed. Some step.