|
 |
|
 |
| Tuesday, September 07, 2010
|
| Register Login |
 |
|
|
|
|
Users currently online
|
 |
|
|
|
 |
Membership: |
 |
Latest:
SullyC |
 |
New Today:
0 |
 |
New Yesterday:
0 |
 |
Overall:
53 |
 |
People Online: |
 |
Visitors:
5 |
 |
Members:
0 |
 |
Total:
5 |
Online Now:
|
|
|
|
|
|
|
|
|
|
Welcome to the Viruswarning forums. All your original content has been ported to the new forums as well as new content and additional opportunities to interact with the authors of Viruswarn.com. You can always access old content at www.leedrake.com/forum . You may find some formatting was lost in the conversion and the older versions of the posts to be more readable....
But at least it's all here.
Enjoy!
|
|
|
|
|
|
Viruswarn Forums
|
|
|
|
|
| You are not authorized to post a reply.
|
|
| Author |
Messages |
|
Lee Drake
Posts:238
 |
| 07/14/2003 9:33 PM |
|
| What is it?
A new, silent trojan named MIGMAF is being spread across the Internet by hackers, having originated in Russia. Once your computer is compromised, it turns it into a "mirror" or proxy that allows a remote user to use your computer to distribute web pages, spam or other internet based material across the internet. This makes your computer look, to the end user, like the source of the spam or web page. The worm is used by porn sites and spam producers to hide the original source of the material. The material will look like it came directly from your computer.
While the trojan is currently classed as low risk (only a couple thousand machines have been infected) because it requires a previous infection allowing access to your computer, and then manual installation, it is surely a harbinger of things to come. I'd expect a similar component to be woven into a virus or worm in the near future. Porn and spam sources are always looking for new ways to hide and/or resist efforts to locate their originating IP addresses.
If you detect a significant slowdown of your machine, or you find that your network lights on your cable modem or network card are constantly on (regardless of whether you're doing web or email activity) you should double check your machine by running a scan to ensure it's not been compromised.
What should you do?
Be sure you have the latest virus definitions, and perform a scan periodically. This trojan is detected by Norton antivirus signatures dated 7/14 or later, and by McAfee version dated 7/11 or later with the 4.2.6 or later engine
Keep good, up to date virus signatures, and be sure your virus software is updating.
Run a program such as Zone-Alarm to prevent programs from running on your machine and accessing the internet without your knowledge
For more information:
http://www.sarc.com/avcenter/venc/data/backdoor.migmaf.html
http://vil.mcafee.com/dispVirus.asp?virus_k=100480
http://www.themoscowtimes.com/stories/2003/07/15/048.html
http://news.bbc.co.uk/1/hi/technology/3064125.stm
http://www.pcplus.co.uk/news/default.asp?pagetypeid=2&articleid=18051&subsectionid=360
Administrivia note:
Aztek Computer Solutions will be moving to our new digs in the Village Gate Square on July 31st. After that all snail mail should be addressed as below. Our phone numbers, web addresses and email will not change and there will be no interruption in email or web services for our main office. There will be no interruption in service for our hosting clients. We're looking forward to moving to our new offices as Aztek grows!
Lee Drake
Aztek Computer Solutions, Inc.
After July 31st - 274 N. Goodman St Suite B269
39 N. Goodman St.
Rochester, NY 14607
the human side of computing
Email: ldrake@azcomputer.net
Web: www.azcomputer.net Office Phone: 585-242-2060
Fax number: 585-242-9441
|
|
|
|
|
|
| You are not authorized to post a reply. |
|
|
|
ActiveForums 3.6
|
|
|
|
|
|
|
|
|
|
|
|