[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Re: What is this

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Re: What is this
From: Feher Tamas <etomcat@xxxxxxxxxxx>
Date: Tue, 9 Aug 2005 13:34:03 +0200 (CEST)

Hello,

All these files are indeed known malicious objects and
established antivirus software will detect most of them, see
below.

I hope these places will be taken off-line via CERT inquiry
quite soon, to prevent more victims falling prey.

Regards, Tamas Feher.

****************

http://www.pokersverige.se/IMAGE0004.php (Sdbot.acw malware)

http://home.comcast.net/~soliveria/n3.exe (Kelvir.dt malware
for IM)

http://home.comcast.net/~ebaker1973/up.exe (Rbot.xm malware)

irc://204.8.34.78:12000 (bot-control and data-theft)

http://hec-ulg-entrepreneurs.com/3.exe
(Adware.180solution.installer)

http://hec-ulg-entrepreneurs.com/1.exe
(Adware.Clicker.Elitebar.am)

_______________________________________________________________________
[freemail] extra 1GB-os postafiókkal, Önnek már van? http://freemail.hu


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] Re: Port scanner for Windows CE
Next by Date: [Full-disclosure] Mozilla Firefox up to 1.0.6 and Mozilla Thunderbird up to 1.0 url string obfuscation
Previous by thread: [Full-disclosure] Re: Port scanner for Windows CE
Next by thread: [Full-disclosure] Mozilla Firefox up to 1.0.6 and Mozilla Thunderbird up to 1.0 url string obfuscation
Index(es):
- Date
- Thread