Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: http://209.50.251.182/new-exploit5/
From: Duncan Hill <dhill+fulldisc () cricalix net>
Date: Fri, 9 Jul 2004 08:18:25 +0100

On Friday 09 July 2004 00:10, KF might have typed:
While on vacation I ran across this on a random PC that I was using. I
looks like your typical adware exploitation.

http://209.50.251.182/new-exploit5/

Scan started at Fri Jul  9 08:17:18 2004

EXPLOIT.CHM: Infected: TrojanDownloader.VBS.Psyme.y 
EXPLOIT.CHM: Infected: TrojanDownloader.VBS.Psyme.y 
EXPLOIT.CHM-ORIG: Infected: TrojanDownloader.VBS.Psyme.p 
EXPLOIT.CHM-ORIG: Infected: TrojanDownloader.VBS.Psyme.p 
exploit.exe: Infected: TrojanDropper.Win32.Small.gj
exploit.htm: Infected: HTML/Redir () exp
exploit.htm: Infected: Exploit.HTML.Mht 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]