Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Virus
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: New Virus/Worm

from [Travis Alexander] Network Security [Permanent Link]
Subject: RE: New Virus/Worm
Date: Mon, 22 Aug 2005 07:28:15 -0700 
I've been receiving emails directly to me from this IP,
62.90.51.58, from Israel I think. My firewall, a Fortinet
FortiGate-200, is blocking this virus as BDoor.CEB-bdr. However,
I have yet to find anymore info about it from Fortinet's website.
Their virus encyclopedia is under maintenance. It's possible that
this is the same virus that you have been hit with.

Travis Alexander
Network Administrator
LCCU

-----Original Message-----
From: Jack Vizelter [mailto:jack@mail.rockefeller.edu] 
Sent: Sunday, August 21, 2005 6:04 AM
To: focus-virus@securityfocus.com
Subject: New Virus/Worm

Since about 5pm last night, we've been hit hard, so far about 60
computers,
mostly running Windows 2000 got infected.

All infected computers show a backdoor on a random TCP port such
as:

xxx.xx.xxx.xxx   5794/tcp  dhcp-xxx-xxx.xxxxxxxxx.xxx
   220 Reptile welcomes you....

Has anyone seen or expierenced similar?

We don't know what processes are running on the PC's until
tomorrow when we
can get to them.

Any and all info is greatly appreciated.

Thanks,
-jack
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  New Virus/Worm, Jack Vizelter
Next by Date:  Re: New Virus/Worm, reb93720
Previous by Thread:  Re: New Virus/Worm, jayjwa
Next by Thread:  Re: New Virus/Worm, reb93720
Indexes:  [Date] [Thread] [Top] [All Lists]