lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
From: toddtowles at brookshires.com (Todd Towles)
Subject: [SPAM] RE: interesting trojan found

But if it is a rootkit, does it not hide from normal AV scanning?  

> -----Original Message-----
> From: full-disclosure-admin@...ts.netsys.com 
> [mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of 
> Hugo van der Kooij
> Sent: Wednesday, October 20, 2004 11:58 PM
> To: full-disclosure@...ts.netsys.com
> Subject: Re: [SPAM] RE: [Full-Disclosure] interesting trojan found
> 
> On Wed, 20 Oct 2004, Richard Stevens wrote:
> 
> > http://81.101.19.177/logon.zip
> 
> F-PROT ANTIVIRUS
> Program version: 4.4.7
> Engine version: 3.14.13
> LOGON.EXE  is a security risk named W32/Spybot.BCM
> 
> ClamAV does not recognize it yet. (But it is is the queue as 
> Submission number 6278.)
> 
> Hugo.
> 
> -- 
> 	I hate duplicates. Just reply to the relevant mailinglist.
> 	hvdkooij@...derkooij.org		
> http://hvdkooij.xs4all.nl/
> 		Don't meddle in the affairs of magicians,
> 		for they are subtle and quick to anger.
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ