- April 27, 2004
- February 13, 2007 12:22:09 PM
- Trojan Horse
Backdoor.Mipsiv is a Trojan horse that connects to an IRC server and allows an attacker to preform keylogging and network scanning functions.
- Symantec Security Response recommends that you block access to TCP port 443 at the firewall level, if the port is not being used. However, this will prevent applications from using this port, such as those that use SSL, TLS, and HTTPS protocols.
- The presence of this threat may indicate that the system was compromised by an exploitation of the SSL PCT Windows vulnerability. It is recommended that the MS04-011 patch be applied to protect against possible exploitation of this vulnerability. Additionally, the PCT protocol can be disabled by following the instructions found in the following Microsoft KB document.
Antivirus Protection Dates
Initial Rapid Release version April 28, 2004
Latest Rapid Release version March 10, 2011 revision 016
Initial Daily Certified version April 28, 2004
Latest Daily Certified version March 10, 2011 revision 022
Initial Weekly Certified release date April 28, 2004
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Scott Gettis