MyDoom.M -- DDos Attack against Microsoft by Zindos worm

Common Tasks

Community

Email Notifications

Personal Links

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

I'm guessing that this is most likely an added attack feature the author of the MyDoom.M worm has implemented as a "second wave"

MyDoom.M -- DDos Attack against Microsoft by Zindos worm
http://secunia.com/virus_information/10909/zindos/
http://www.sarc.com/avcenter/venc/data/w32.zindos.a.html
http://vil.nai.com/vil/content/v_127038.htm

W32.Zindos.A is a worm that performs a Denial of Service (DoS) attack against the domain, microsoft.com. The worm spreads through the backdoor that Backdoor.Zincite.A opens on TCP port 1034.

Due to bugs in the code, when a system that is infected with Backdoor.Zincite.A becomes infected with Backdoor.Zindos.A, an infinite infection loop is entered, with each infection of Backdoor.Zindos.A re-infecting the system. This may cause the system to become slow and unresponsive.

Note: Backdoor.Zincite.A is a backdoor Trojan horse that W32.Mydoom.M@mm drops.

Posted: Jul 27 2004, 05:34 PM by Harry Waldron | with no comments

Questions? Contact Susan at Susan-at-msmvps.com. Each post's copyright held by the original author. All rights reserved. Blog site is an independent site not sponsored by Microsoft.
Our servers would like to thank www.ownwebnow.com and www.exchangedefender.com. We wouldn't be here without the generosity of Vlad Mazek and his companies.

Powered by Community Server (Commercial Edition), by Telligent Systems

Theme based on the Paperclip Blog Theme included in Community Server.
Enhanced to a Site-Wide Theme by Interscape Technologies.