My servers started getting blitzed by Nimda today at around 9:08 am if I remember correctly. I looked at my snort logs and wondered what the hell was going on. Then I looked at the apache logs and giggled - stupid IIS exploit.
I sent my isp a list of some of the ip's that were attacking me at around 11. I found out it was called Nimda later, around 3 or 4. I read just now about it, it's a dual-pronged attack, hitting both servers and client machines. Nice huh?
amused