1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Whew - I been busy

Discussion in 'Security and Privacy' started by Newt, 2004/07/19.

Thread Status:
Not open for further replies.
  1. 2004/07/19
    Newt

    Newt Inactive Thread Starter

    Joined:
    2002/01/07
    Messages:
    10,974
    Likes Received:
    2
    Don't know how many are aware of it but this morning saw the release of some new versions of some old enemies. Took the AV folks a bit of time to catch up.

    When I came to work at 3:30 pm today, we were clean and the firewall + exchange servers had been hardened a bit to try and deal with infected attachments our pattern file version couldn't see.

    We are clean once again now at 7:30 pm but here is a picture that gives an idea how things were a little over an hour ago.
     
    Newt,
    #1
  2. 2004/07/19
    LDTate

    LDTate Inactive

    Joined:
    2004/06/29
    Messages:
    284
    Likes Received:
    0
    Newt
    That was UGLY :eek:
     
    LDTate,
    #2


  3. to hide this advert.

  4. 2004/07/19
    Welshjim

    Welshjim Inactive

    Joined:
    2002/01/07
    Messages:
    5,643
    Likes Received:
    0
    Newt--This is your PC? Your employer's system? The VDr server?
    If the last, what can we, visiting VDr, do to avoid?
     
    Welshjim,
    #3
  5. 2004/07/19
    Newt

    Newt Inactive Thread Starter

    Joined:
    2002/01/07
    Messages:
    10,974
    Likes Received:
    2
    PCs here at work. Not mine, luckily. Probably around 700-800 running at this time. Only about 45 got infected. The picture was part of a recap page by one of our 3 dedicated Trend servers (one does only other servers, one does production-related systems, the one with the pic does business-related PCs. About 99% of the business PCs are XP-pro and most are used all three shifts.

    Trend got us an updated pattern file that could see today's crop of new stuff and after we pushed out the updates, I forced a scan on all the machines that showed up as infected and were running so the majority of systems are now clean and the PC support folks have a list of systems they need to visit in the AM. Day crew has Data Center staff (where I am) of 3 and a dedicated PC break/fix team of 6. Evenings there is just me.

    Dang - I ought to get a raise.

    I was a little surprised not to see any mentions of problems in this section of the bbs. I called home to warn my wife and she found at least a half-dozen new posts on her PC with the 'snake' attachment that one of new viri uses and AVG with heuristics turned on hadn't noticed a thing.
     
    Newt,
    #4
  6. 2004/07/19
    Daizy

    Daizy Inactive

    Joined:
    2002/02/19
    Messages:
    2,965
    Likes Received:
    0
    Wow Newtness
    You HAVE been busy. :eek: No, things have been quiet around here today. Not a peep. Very odd.
    :eek:
     
    Daizy,
    #5
  7. 2004/07/20
    Arie

    Arie Administrator Administrator Staff

    Joined:
    2001/12/27
    Messages:
    15,174
    Likes Received:
    412
    His is what our Web server dealth with since 7/19/04 00:00:

    Total Messages: 16201
    Total Virii: 9596 (59%)
    Worm.Bagle.AC: 11 (0%)
    Worm.Bagle.AF: 284 (2%)
    Worm.Bagle.AF.2: 244 (2%)
    Worm.Bagle.AG: 118 (1%)
    Worm.Bagle.Gen-vbs: 35 (0%)
    Worm.Bagle.Gen-zippwd: 163 (1%)
    Worm.Bagle.N: 3 (0%)
    Worm.Bagle.Y: 7 (0%)
    Worm.Bagle.Z: 41 (0%)
    Worm.Dumaru.A: 6 (0%)
    Worm.Dumaru.Y: 2 (0%)
    Worm.Klez.H: 12 (0%)
    Worm.Lovgate.AH: 12 (0%)
    Worm.Lovgate.T: 130 (1%)
    Worm.Lovgate.X: 143 (1%)
    Worm.Mimail.R: 11 (0%)
    Worm.Mydoom.Gen-1: 1 (0%)
    Worm.Mydoom.I: 18 (0%)
    Worm.Nyxem: 7 (0%)
    Worm.Plexus.B: 7 (0%)
    Worm.SCO.A: 4 (0%)
    Worm.SomeFool.AB: 9 (0%)
    Worm.SomeFool.Gen-1: 451 (4%)
    Worm.SomeFool.Gen-2: 162 (1%)
    Worm.SomeFool.I: 16 (0%)
    Worm.SomeFool.P: 1005 (10%)
    Worm.SomeFool.Q: 139 (1%)
    Worm.SomeFool.X: 39 (0%)
    Worm.SomeFool.Y: 9 (0%)
    Worm.SomeFool.Z: 416 (4%)
    Worm.Zafi.B: 6335 (66%)
     
    Arie,
    #6
  8. 2004/07/20
    Newt

    Newt Inactive Thread Starter

    Joined:
    2002/01/07
    Messages:
    10,974
    Likes Received:
    2
    Total Messages: 16201
    Total Virii: 9596 (59%)

    Ouch. Over half infected? Ouch.
     
    Newt,
    #7
  9. 2004/07/20
    Admin.

    Admin. Administrator Administrator Staff

    Joined:
    2001/12/30
    Messages:
    6,687
    Likes Received:
    107
    Yep, although not as high as I've seen in the past :)
     
    Admin.,
    #8
  10. 2004/07/20
    Rockster2U

    Rockster2U Geek Member

    Joined:
    2002/04/01
    Messages:
    3,181
    Likes Received:
    9
    Its getting pretty nasty out there - average Joe doesn't have a clue and its a shame what's going on these days. Fortunately, guys like you are on top of this and I can't say enough about noahdfear and a few others.

    ;)
     
    Rockster2U,
    #9
  11. 2004/07/20
    noahdfear

    noahdfear Inactive

    Joined:
    2003/04/06
    Messages:
    12,178
    Likes Received:
    15
    Newt,

    You do deserve a raise!

    Rockster,

    You said it all already. Thanks! :D
     
    noahdfear,
    #10
Thread Status:
Not open for further replies.

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...