Search the archives!
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Full-Disclosure] browser hijack by apache sites
- From: etomcat at freemail.hu (Feher Tamas)
- Subject: [Full-Disclosure] browser hijack by apache sites
- Date: Thu Mar 24 03:38:42 2005
Hello, >http://www.b00gle.com/fa/?d=get Starting from here, the usual combination of unpatched IE and plain user will quickly receive a nice set of malware automatically: Small.gl, Istbar.dw, Java_Classloader, Java_OpenStream, etc. The end station is probably Gator, CoolWeb, a spam proxy or something even nastier. >http://www.pizdato.biz/acc1/exploit.exe "This file works "normally", installs itself and creates a startup key in the Registry. It can download files from Internet. Could be classified as a new TrojanDownloader malware" Sincerely: Tamas Feher.
- Follow-Ups:
- [Full-Disclosure] browser hijack by apache sites
- From: Filbert
- [Full-Disclosure] browser hijack by apache sites
- From: Matthijs Dalhuijsen
- [Full-Disclosure] browser hijack by apache sites
- Prev by Date: [Full-Disclosure] irc over ssl
- Next by Date: [Full-Disclosure] irc over ssl
- Previous by thread: [Full-Disclosure] browser hijack by apache sites
- Next by thread: [Full-Disclosure] browser hijack by apache sites
- Index(es):