Network Administrator
Ribelin Lowell & Company
Insurance Brokers, Inc.
3111 C Street, Suite 300
Anchorage, Alaska 99503
Ph: (907) 561-1250
Fax: (907) 561-4315
Cell: (907) 229-0885
Email: [EMAIL PROTECTED]
http://www.sunbelt-software.com/ntsysadmin_list_charter.htm-----Original Message-----
From: Kelly Gosh [mailto:[EMAIL PROTECTED]]
Sent: Monday, September 24, 2001 10:07 AM
To: NT System Admin Issues
Subject: RE: Nimda - Thought we were protectedWhere in Exchange 5.5 can you block certain attachments? Ideally, I would like to block all *.exe and all *.vbs from most users. I know how to block domains and email addresses, and I swear I've seen attachment blocking, but for the life of me I can't find it anywhere now!
Any help would be appreciated.
Kelly Gosh
Information Systems Manager
Brilliance Audio, Inc.
Phone: 616.846.5256 ext. 704
Fax: 616.846.0630
http://www.brillianceaudio.com
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Monday, September 24, 2001 12:47 PM
To: NT System Admin Issues
Subject: RE: Nimda - Thought we were protected
SCAN ALL FILES (asp,js,htm,html,shtm,shtml,dll), do NOT use program files only!
Replace riched20.dll and mcc.exe or you be infected again after you reboot! (ofcourse replace them with clean copys!)
Kind regards,
Pim Vessies
CS&O Backoffice
Philips Medical Systems
IM/CS&O/BO Building QAII-441
Veenpluis 4 - 6, 5684 PC Best
The Netherlands
"Steve Kelsay" <[EMAIL PROTECTED]> on 09/24/2001 05:11:25 PM
Please respond to "NT System Admin Issues" <[EMAIL PROTECTED]>
To: "NT System Admin Issues" <[EMAIL PROTECTED]>
cc: (bcc: Pim Vessies/BST/MS/PHILIPS)
Subject: RE: Nimda - Thought we were protected
Classification:
Yes, I had installed all the patches we discussed here on the site.
Steve Kelsay
Network Administration Group
South Carolina Department of Revenue
301 Gervais Street
Columbia, SC 29201(803) 898-5522
>>> [EMAIL PROTECTED] 09/24/01 10:59AM >>>
Did you have the IE patch applied? If the browsed to a infected site they
can get the virus that way as well.
Robert Muncy
Sherman Financial Group-----Original Message-----
From: Steve Kelsay [mailto:[EMAIL PROTECTED]]
Sent: Monday, September 24, 2001 10:35 AM
To: NT System Admin Issues
Subject: Nimda - Thought we were protected
First alert, Maybe nothing.
We just had our developer machines, running NT2000 Server hit with Nimda.
The strange thing is, we have Nimda protection in our email scanner, and all
the security fixes MS said should be applied. SP2 is installed.The machines boot up, a log in screen displays, and they login. The Novell
login script begins to run as normal ( we run mixed network, NT and Novell),
then the login script box clears as normal, a blue screen appears as normal,
and nothing further happens.Could this be a new strain?
Steve Kelsay
Network Administration Group
South Carolina Department of Revenue
301 Gervais Street
Columbia, SC 29201(803) 898-5522
http://www.sunbelt-software.com/ntsysadmin_list_charter.htm
http://www.sunbelt-software.com/ntsysadmin_list_charter.htm
http://www.sunbelt-software.com/ntsysadmin_list_charter.htm
http://www.sunbelt-software.com/ntsysadmin_list_charter.htm
http://www.sunbelt-software.com/ntsysadmin_list_charter.htm
DO NOT read, copy or disseminate this communication unless you are the intended addressee. This e-mail communication contains confidential and/or privileged information intended only for the addressee. If you have received this communication in error, please call us immediately at (907) 561-1250 and ask to speak to the sender of the communication. Also, please e-mail the sender and notify the sender immediately that you have received the communication in error.
