Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
06-04-2007, 03:19 AM
|
#1
|
Member
Registered: Apr 2007
Location: Urban Jungle
Distribution: Ubuntu
Posts: 189
Rep:
|
is megago.com/l/? a virus
i was surfing the net when i had a typographical error of the site that i want to visit...instead of "babelfish.altavista.com" i accidentally typed "babelfish.alatavista.com"...it directed me to this site-> "megago.com/l/?" and a pop-up of e-mail something appeared in my desktop...i scanned my drives, no viruses where found...now the problem is, my pc here is connected to the main server of my company...if ever a virus or spyware and the likes will be detected, the server will be prompt...im just troubled...
|
|
|
06-04-2007, 03:48 AM
|
#2
|
LQ Guru
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211
Rep:
|
http://www.securityfocus.com/infocus/1869
You have hit a typo squatter... Check your cookies!
http://www.econsultant.com/spyware-d...egago-com.html
whois megago.com
Domain Name: MEGAGO.COM
Registrar: TUCOWS INC.
Whois Server: whois.tucows.com
Referral URL: http://domainhelp.opensrs.net
Name Server: DNS.ZF.NET
Name Server: NS.ZF.NET
Name Server: NS2.WEBJUMP.COM
Status: clientDeleteProhibited
Status: clientTransferProhibited
Status: clientUpdateProhibited
Updated Date: 10-oct-2006
Creation Date: 20-feb-1999
Expiration Date: 20-feb-2010
Registrant:
MegaGO.com Inc.
16192 Coastal Hwy.
Lewes, DE 19958
US
megago (Mega Go) seems to be part of Mega Web (megaweb.com)
... they seem to be some sort of directory service.
http://www.aboutus.org/Megaweb.com
http://www.aboutus.org/MeGago.com
... they seem to be pretty cagey, itself suspicious for business, is their name associated with any malware? Yes!
Windows users seem to be getting a lot of this kind of thing and there are special programs suggested for cookies... what, can IE not manage it's own cookies?
|
|
|
06-04-2007, 04:20 AM
|
#3
|
Member
Registered: Apr 2007
Location: Urban Jungle
Distribution: Ubuntu
Posts: 189
Original Poster
Rep:
|
so it means that i clicked a virus site? omg...
|
|
|
06-04-2007, 04:28 AM
|
#4
|
Member
Registered: Apr 2007
Location: Urban Jungle
Distribution: Ubuntu
Posts: 189
Original Poster
Rep:
|
i was using mozilla firefox...i had a typographical error...*sigh*...is it a spyware? is it dangerous? why the hell are they doing this? im using babelfish.altavista.com to translate japanese characters...i scanned my hard drives, but no viruses where found..T_T...
|
|
|
06-04-2007, 04:41 AM
|
#5
|
LQ Guru
Registered: Aug 2003
Distribution: CentOS, OS X
Posts: 5,131
Rep:
|
The question remains: why on earth do you surf the web with a machine not only connected to the internal network of your company, but to a main server too? hilarious. I bet if your boss knew, you had problems.
One of the top security rules in a company is to never ever never connect internal, important machines/network to the outside world, especially the internet. Violate that, especially with a Windows machine, and you're dead meat sooner or later, usually sooner.
|
|
|
06-04-2007, 05:47 AM
|
#6
|
LQ Guru
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211
Rep:
|
Quote:
so it means that i clicked a virus site? omg...
|
... calm down and read the links I gave you. The malware is a cookie that tracks you through the internet. Look at your cookies
edit > preferences - privacy
uncheck "accept cookies from sites"
click "show cookies"
look for anything you don't recognize and remove it, or just remove all.
There, your clean. Exit the preferences dialog.
Aren't you glad you use linux?
BTW: what b0uncer said!
|
|
|
06-04-2007, 07:18 PM
|
#7
|
Member
Registered: Apr 2007
Location: Urban Jungle
Distribution: Ubuntu
Posts: 189
Original Poster
Rep:
|
*sigh*...thanks dude! really appreciate the help.
|
|
|
06-05-2007, 05:59 AM
|
#8
|
LQ Guru
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211
Rep:
|
No worries... what I hope you got from this is all that stuff about how to check out a website. Note, you got the owners name and address... in fact, you got more on them than they got on you!
|
|
|
All times are GMT -5. The time now is 09:54 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|