Results 1 to 11 of 11
  1. #1
    ABW Adviser Panel Dynamoo's Avatar
    Join Date
    January 18th, 2005
    Location
    Opposite the Slough of Despond
    Posts
    5,465
    The Internet Storm Center are tracking a potentially serious trojan/malware impacting fully patched Microsoft IIS servers.

    When infected, the IIS server will generated web pages infected with another trojan that will be downloaded by people visiting the site with IE.

    Patching doesn't seem to make a difference.

    The current report on the problem is here: http://isc.sans.org/diary.php?date=2004-06-25

    A good reason to use non Microsoft products for browsing and hosting.
    Innovative advertising with Slimeware Corporation and Telephore. Mail-order fuel with Petrol Direct.

  2. #2
    ABW Ambassador Andy's Avatar
    Join Date
    January 18th, 2005
    Posts
    4,178

  3. #3
    ABW Ambassador
    Join Date
    January 18th, 2005
    Location
    West Coast USA
    Posts
    3,043
    The infection does not affect Macintosh versions of Internet Explorer.

  4. #4
    I like traffic lights
    Join Date
    January 18th, 2005
    Location
    Southern hemisphere - away from Fukushima
    Posts
    2,936
    > good reason to use non Microsoft products for browsing and hosting.

    Finally the press is starting to say this, hopefully it'll sink in

  5. #5
    ABW Adviser Panel Dynamoo's Avatar
    Join Date
    January 18th, 2005
    Location
    Opposite the Slough of Despond
    Posts
    5,465
    I had a quick look at Mozilla Firefox and that's a nice fast browser and easy to move to from IE. I tend to use the full version Mozilla which isn't as quick and is much more Netscapey.

    There's also a Googlebar available, but sadly it doesn't show PageRank.
    Innovative advertising with Slimeware Corporation and Telephore. Mail-order fuel with Petrol Direct.

  6. #6
    ABW Ambassador
    Join Date
    January 18th, 2005
    Posts
    4,423
    I brought this up earlier under a poorly titled thread.
    http://abw.infopop.cc/eve/ubb.x?a=tp...89&m=402109975

    But really, the scare itself is complete BS. No major sites are affected, who in the hell is still running an unpatched win2k machine? No one. But hey, the news can be used for good. It spurred a good discussion on one my sites and got quite a few people to try firefox.

    Chet

  7. #7
    All Around Web Guy Cursal's Avatar
    Join Date
    January 18th, 2005
    Posts
    829
    <BLOCKQUOTE class="ip-ubbcode-quote"><font size="-1">quote:</font><HR>Originally posted by Dynamoo:
    I had a quick look at http://www.mozilla.org/products/firefox/ and that's a nice fast browser and easy to move to from IE. I tend to use the full version http://www.mozilla.org/products/mozilla1.x/ which isn't as quick and is much more Netscapey.

    There's also a http://googlebar.mozdev.org/ available, but sadly it doesn't show PageRank. <HR></BLOCKQUOTE>

    FireFox is the Way to go in my opinion.
    Lots of add ons and control over your browser.
    The tab feature (i.e. open in new tab) is invaluable.

    You can save many links in one folder and then open all tabs in a folder in one click. I use it for all the Aff programs I am with located here at ABW.

    What a time saver. 10 tabs open in one window with one click and all the info id right there.

    I highly recommed it for everyone. Drop IE except for site testing

    --Brian
    Oregon Publishing: Web Development, Graphic Design, Domains & Marketing
    Deluxe Banners Bartender's Guide Cooking Jobs

  8. #8
    Affiliate Marketing Consultant Linda - 5starAffiliatePrograms's Avatar
    Join Date
    January 18th, 2005
    Location
    SoCal
    Posts
    4,040
    Thanks Cursal,

    I was trying to break my IE habit and use Firefox.
    Now with this latest trojan - I am committed and put IE away.

    Didn't know about the tab thing! WHOA will that save me some time and carpal tunnel.

  9. #9
    I like traffic lights
    Join Date
    January 18th, 2005
    Location
    Southern hemisphere - away from Fukushima
    Posts
    2,936
    &gt;The tab feature (i.e. open in new tab) is invaluable.

    Tell me about it!

    Does Firefox open up a link in a tab in the background when you click the scrollwheel on your mouse?

    That's how it works in Safari. It's a great timesaver. I hit the "new posts" here (when it's working) and then scroll-wheel-click each of the topics I want to read, and then open in other tabs. Once I get to the bottom of the "new posts" page, I hit the next page link, then while that's loading, I go off to the tabs to read the posts.

    Tabbed browsing is the #1 time saver, I feel.

  10. #10
    ABW Ambassador
    Join Date
    January 18th, 2005
    Posts
    4,423
    Drewbert - yep, it has that behavoir. You can also snap in a gesture extension, so for really lazy people like me - you never need to really move your mouse from the center section of the page.

    Also check out:
    This extension is great help when designing a site.
    http://update.mozilla.org/extensions...x&id=60&vid=63
    This extension offers passwords to registration required news sites like the new york times.
    http://update.mozilla.org/extensions...d=67&category=

    My favorite skin - very sleek.
    http://update.mozilla.org/themes/mor...tegory=Popular

    Chet

  11. #11
    ABW Adviser Panel Dynamoo's Avatar
    Join Date
    January 18th, 2005
    Location
    Opposite the Slough of Despond
    Posts
    5,465
    The thing with this trojan is that it seems that webmasters are saying that they *are* fully patched, and the rumor is that some quite large sites *were* impacted (although I suspect most truly large sites don't use Microsoft).

    The two-part thing is interesting. The target web server I guess can be taken over in a number of ways. The server infection looks like it's done manually. The client-side browser infection is a bummer though. In my Real Life job I've seen a huge number of these attempted exploits being picked up by our AV scanners in the past two weeks.
    Innovative advertising with Slimeware Corporation and Telephore. Mail-order fuel with Petrol Direct.

  12. Newsletter Signup

+ Reply to Thread

Similar Threads

  1. New Virus attack on IIS servers
    By Haiko de Poel, Jr. in forum Midnight Cafe'
    Replies: 3
    Last Post: March 8th, 2008, 01:33 PM
  2. Windows XP IIS Server - HELP
    By BurgerBoy in forum Midnight Cafe'
    Replies: 2
    Last Post: October 20th, 2005, 05:08 PM
  3. Problem running on IIS 5
    By nickgust in forum Cusimano.com Scripts
    Replies: 1
    Last Post: September 26th, 2005, 07:58 PM
  4. Affiliate Tracking for IIS
    By Affiliate Ian in forum Programming / Datafeeds / Tools
    Replies: 0
    Last Post: November 24th, 2003, 11:32 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •