Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Virus Alert: W32.Navidad worm at Georgia Tech

1 view
Skip to first unread message

miles

unread,
Nov 14, 2000, 3:00:00 AM11/14/00
to
FYI. -Miles

Information Security has received multiple reports of W32.Navidad worm
at Georgia Tech. This virus has a significant impact on all Windows
OSes. Macintosh and Unix systems are not affected.
McAfee released both an update and an upgrade for this virus. The
update is able to remove the worm from an infected system. The
upgrade (including the update) is able to remove the worm and clean
the worm entries from the registry. _The upgrade is recommended_ and
was posted on campus at 6:00am this morning for campus use.
Upgrade Instructions
============================================================
Please note that McAfee upgrades automatically (if installed using
campus
defaults) only once a month. To force an upgrade, follow these steps:
1. Right-click on the magnifying glass with a clock in the system
tray
(where the time is)
2. Select "Restore"
3. Right-click on "Upgrade" and select "Start"
McAfee will download the upgrade for the system. By following the
above steps
and selecting "Scan My Computer" rather than "Upgrade", the user can
force an immediate system scan.
Technical details follow below:
============================================================
The version numbers are noted below:
DAT file (signatures) - 4.0.4015 dated 11/15 (yes, tomorrow)
Engine - 4.1.00
Package version - 4.5
McAfee notes technical details about the virus at
[1]http://vil.nai.com/vil/dispVirus.asp?virus_k=98881
Symantec notes technical details about the virus at
[2]http://www.symantec.com/avcenter/venc/data/w32.navidad.[3]html
************************************************************
original e-mail:
>> I just got a call noting that the Navidad.exe (e-mail attachment)
virus has
>> arrived on campus at GCAT. Please if you did not mass distribute
my warning
>> to your end users yesterday, consider doing so now.
>
>It got to EAS this morning. Hopefully they heeded my warning when I
>noticed it from here.

Greg Hale

Technical Project Director

Information Security Directorate

Office of Information Technology

The Georgia Institute of Technology

404-894-6173

0 new messages