[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <009e01c3a3f5$f2eb5590$3200000a@alex>
From: jkuperus at planet.nl (Jelmer)
Subject: irc.trojan.fgt - new variant.
I guess It's a matter of time before someone hacks in a http server and makes it send out links like
http://victim ip/britney.jpg
Luckily microsoft patches stuff within 2 days, balmer said so so it must be true ;)
----- Original Message -----
From: Tom Russell
To: full-disclosure@...ts.netsys.com
Sent: Wednesday, November 05, 2003 9:46 PM
Subject: [Full-Disclosure] irc.trojan.fgt - new variant.
Once again, another variant of irc.trojan.fgt is about.
This one masquerades as a web page - jokes.html, and makes the unfortunate recipient say the following:
<victim> http:// home.amis .net/krsve9/Pari/jokes.html lol :D
(spaces added to URL to prevent accidental infection).
The virus files are at the following location: http://kalleth.2tone-dev.com/fd/jokes-html.zip - DO NOT RUN THE EXECUTABLE AS IT IS THE VIRUS. DO NOT OPEN THE HTML PAGE IN INTERNET EXPLORER AS IT IS A VIRUS.
</disclaimer>
End of message.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20031106/a8500af4/attachment.html
Powered by blists - more mailing lists