W32.Nimda.E@mm Removal Tool 1.0.0
Updated on 18 Jul 2011
By Anthony Buckner
By Anthony Buckner
449 KB Safe To Install
Advertising
Specifications
License:
Freeware (Free)
Updated:
Downloads:
566
Platform:
Windows All
Publisher:
Symantec(more)
Website:
Unknown
User Reviews:
Other versions:
Do you like
W32.Nimda.E@mm Removal Tool?
W32.Nimda.E@mm Removal Tool?
Publisher's Descriptions
Symantec has provided a tool to remove infections of W32.Nimda.E@mm
This tool is designed to remove infections of W32.Nimda.E@mm. It will not remove infections of W32.Nimda.A@mm. If you need to remove a W32.Nimda.A@mm infection, obtain the W32.Nimda.A@mm Removal Tool.
The W32.Nimda.E@mm Removal tool does the following:
· Terminates all processes associated with the virus.
· Terminates the Explorer.exe process and relaunches it. The virus injects itself into Explorer.exe, which makes this step necessary. Because of this, you may see the desktop flash (this is expected behavior).
· Detects all types of W32.Nimda.E@mm infections. Repairs those files that can be repaired. Deletes .eml, .nws, .doc, and .txt files that have been detected as infected.
NOTE: The tool will not delete .eml files in cases where the extension is not one of the four mentioned above. For example, a file with the double extension .eml.bad will not be deleted. You must manually delete such files.
· Repairs the System.ini file by removing the modifications made to the shell= line.
· Removes the guest account from the Administrator group and disables the guest account in the Guests group.
· Repairs multiple HTML infections.
· Returns shared drives and folders to default security settings.
Command-line switches available in this tool:
· /NOFIXSHARE - Disables share repair (use of this switch is not recommended).
· /NOFIXREG - Disables registry repair (use of this switch is not recommended).
· /SILENT, /S - Enables silent mode.
· /LOG=[PATH NAME] - Creates a log file where [PATH NAME] is the location in which to store the output of the tool.
· /RWPWD=[PASSWORD] - Applies this password to Windows 9x Read/Write Shares
· /ROPWD=[PASSWORD] - Apply this password to Windows 9x Read-Only Shares
· /MAPPED - Scans mapped network drives.
Once a system has been attacked by W32.Nimda.E@mm, it is possible that the computer has been accessed remotely by an unauthorized user.For this reason it is impossible to guarantee the integrity of a system that has had such an infection. The remote user could have made changes to the system, including but not limited to the following:
· Stealing or changing passwords or password files
· Installing remote-connectivity host software, also known as backdoors
· Installing keystroke-logging software
· Configuring of firewall rules
· Stealing of credit card numbers, banking information, personal data, and so on
· Deletion or modification of files
· Sending of inappropriate or even incriminating material from a customer's email account
· Modifying access rights on user accounts or files
· Deleting information from log files to hide such activities
If you need to be certain that your organization is secure, you must reinstall the operating system, and restore files from a backup that was made before the infection took place, and change all passwords that may have been on the infected computers or that were accessible from it. This is the only way to ensure that your systems are safe. For more information regarding security in your organization, contact your system administrator.
· You must have administrative rights to run this tool on Windows NT, Windows 2000, or Windows XP.
This tool is designed to remove infections of W32.Nimda.E@mm. It will not remove infections of W32.Nimda.A@mm. If you need to remove a W32.Nimda.A@mm infection, obtain the W32.Nimda.A@mm Removal Tool.
The W32.Nimda.E@mm Removal tool does the following:
· Terminates all processes associated with the virus.
· Terminates the Explorer.exe process and relaunches it. The virus injects itself into Explorer.exe, which makes this step necessary. Because of this, you may see the desktop flash (this is expected behavior).
· Detects all types of W32.Nimda.E@mm infections. Repairs those files that can be repaired. Deletes .eml, .nws, .doc, and .txt files that have been detected as infected.
NOTE: The tool will not delete .eml files in cases where the extension is not one of the four mentioned above. For example, a file with the double extension .eml.bad will not be deleted. You must manually delete such files.
· Repairs the System.ini file by removing the modifications made to the shell= line.
· Removes the guest account from the Administrator group and disables the guest account in the Guests group.
· Repairs multiple HTML infections.
· Returns shared drives and folders to default security settings.
Command-line switches available in this tool:
· /NOFIXSHARE - Disables share repair (use of this switch is not recommended).
· /NOFIXREG - Disables registry repair (use of this switch is not recommended).
· /SILENT, /S - Enables silent mode.
· /LOG=[PATH NAME] - Creates a log file where [PATH NAME] is the location in which to store the output of the tool.
· /RWPWD=[PASSWORD] - Applies this password to Windows 9x Read/Write Shares
· /ROPWD=[PASSWORD] - Apply this password to Windows 9x Read-Only Shares
· /MAPPED - Scans mapped network drives.
Once a system has been attacked by W32.Nimda.E@mm, it is possible that the computer has been accessed remotely by an unauthorized user.For this reason it is impossible to guarantee the integrity of a system that has had such an infection. The remote user could have made changes to the system, including but not limited to the following:
· Stealing or changing passwords or password files
· Installing remote-connectivity host software, also known as backdoors
· Installing keystroke-logging software
· Configuring of firewall rules
· Stealing of credit card numbers, banking information, personal data, and so on
· Deletion or modification of files
· Sending of inappropriate or even incriminating material from a customer's email account
· Modifying access rights on user accounts or files
· Deleting information from log files to hide such activities
If you need to be certain that your organization is secure, you must reinstall the operating system, and restore files from a backup that was made before the infection took place, and change all passwords that may have been on the infected computers or that were accessible from it. This is the only way to ensure that your systems are safe. For more information regarding security in your organization, contact your system administrator.
System Requirements
· You must have administrative rights to run this tool on Windows NT, Windows 2000, or Windows XP.
Do you like W32.Nimda.E@mm Removal Tool
W32.Nimda.E@mm Removal Tool Disclamer
Please be aware FindMySoft.com accepts no responsibility for the file you are downloading. The same applies to the information provided about the software products listed.
We do not allow the inclusion of any W32.Nimda.E@mm Removal Tool serial, keygen or crack and we disclaim any liability for the inappropriate use of W32.Nimda.E@mm Removal Tool.
FindMySoft advises that W32.Nimda.E@mm Removal Tool should be only used in accordance with the rules of intellectual property and the existing Criminal Code.
For your own protection ALWAYS check downloaded files for viruses.
We do not allow the inclusion of any W32.Nimda.E@mm Removal Tool serial, keygen or crack and we disclaim any liability for the inappropriate use of W32.Nimda.E@mm Removal Tool.
FindMySoft advises that W32.Nimda.E@mm Removal Tool should be only used in accordance with the rules of intellectual property and the existing Criminal Code.
For your own protection ALWAYS check downloaded files for viruses.
Advertising
Popular News
The soon to be released Samsung Galaxy S3 is shaping up to be an event bigger commercial success than its predecessor, the Samsung Galaxy S2
Linux fans once again have the chance to take part in the annual Linux Foundation T-Shirt Design Contest, now in its 3rd edition
Your Rating
1.0
out
of
5
of
5
Rated By
2 Users
2 Users
Top Downloads
2.
Opera5.
Trillian8.
AIM9.
Skype10.
Ad-Aware12.
Nero13.
Google Earth14.
Picasa15.
Winamp16.
iTunes17.
RealPlayer18.
uTorrent19.
eMule20.
WinRAR21.
BitComet22.
WinZip23.
Shareaza24.
CCleaner25.
Recuva26.
Tweak UI27.
CuteFTP Home29.
Adobe Reader30.
NewsPiperBecome A Fan!
Link To Us!
W32.Nimda.E@mm Removal Tool
HTML Linking Code
HTML Linking Code
Latest Reviews