Guest metspitzer Posted January 24, 2009 Posted January 24, 2009 On Sat, 24 Jan 2009 12:34:30 -0800 (PST), Friar Broccoli <EliasRK@gmail.com> wrote: <span style="color:blue"> >On Jan 24, 3:18 pm, sqlawbucks...@googlemail.com wrote:<span style="color:green"> >> 2009 nba all star starters >> . >> . >> . >> CLICK HERE TO CONTINUE http://pochilum.com/2009-nba-all-star-starters >> </span> > >The apparent video screen actually runs an executable. >Has anybody run it to see what kind of virus or >Trojan it puts on their computer?</span> Quote
Guest David H. Lipman Posted January 25, 2009 Posted January 25, 2009 From: "metspitzer" <kilowatt@charter.net> | On Sat, 24 Jan 2009 12:34:30 -0800 (PST), Friar Broccoli | <EliasRK@gmail.com> wrote: <span style="color:blue"><span style="color:green"> >>On Jan 24, 3:18 pm, sqlawbucks...@googlemail.com wrote:<span style="color:darkred"> >>> 2009 nba all star starters >>> . >>> . >>> . >>> CLICK HERE TO CONTINUE h p://pochilum.com/2009-nba-all-star-starters >>> </span></span></span> <span style="color:blue"><span style="color:green"> >>The apparent video screen actually runs an executable. >>Has anybody run it to see what kind of virus or >>Trojan it puts on their computer?</span></span> Please don't Multi-Post. Please learn to Cross-Post to pertinent, On Topic, News Groups instead. As I replied in your OTHER post... It doesn't "run" an executable. It is a fake video site that goads you to install a "Video Controller Object" to view a video. It is malware. http://www.virustotal.com/analisis/03a6095...0f8f12b557e6601 a-squared 4.0.0.73 2009.01.25 Trojan-Downloader.Win32.Renos!IK eSafe 7.0.17.0 2009.01.22 Suspicious File F-Secure 8.0.14470.0 2009.01.24 Suspicious:W32/Malware!Gemini Ikarus T3.1.1.45.0 2009.01.24 Trojan-Downloader.Win32.Renos Microsoft 1.4205 2009.01.24 TrojanDownloader:Win32/Renos.gen!BB Sophos 4.37.0 2009.01.24 Mal/EncPk-FM TrendMicro 8.700.0.1004 2009.01.24 PAK_Generic.001 VirusBuster 4.5.11.0 2009.01.24 Trojan.Renos.Gen.15 -- Dave http://www.claymania.com/removal-trojan-adware.html Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp Quote
Guest metspitzer Posted January 25, 2009 Posted January 25, 2009 On Sat, 24 Jan 2009 19:20:13 -0500, "David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote: <span style="color:blue"> >From: "metspitzer" <kilowatt@charter.net> > >| On Sat, 24 Jan 2009 12:34:30 -0800 (PST), Friar Broccoli >| <EliasRK@gmail.com> wrote: ><span style="color:green"><span style="color:darkred"> >>>On Jan 24, 3:18 pm, sqlawbucks...@googlemail.com wrote: >>>> 2009 nba all star starters >>>> . >>>> . >>>> . >>>> CLICK HERE TO CONTINUE h p://pochilum.com/2009-nba-all-star-starters >>>> </span></span> ><span style="color:green"><span style="color:darkred"> >>>The apparent video screen actually runs an executable. >>>Has anybody run it to see what kind of virus or >>>Trojan it puts on their computer?</span></span> > >Please don't Multi-Post. >Please learn to Cross-Post to pertinent, On Topic, News Groups instead. > >As I replied in your OTHER post... > >It doesn't "run" an executable. >It is a fake video site that goads you to install a "Video Controller Object" to view a >video. >It is malware. > >http://www.virustotal.com/analisis/03a6095...0f8f12b557e6601 > >a-squared 4.0.0.73 2009.01.25 Trojan-Downloader.Win32.Renos!IK >eSafe 7.0.17.0 2009.01.22 Suspicious File >F-Secure 8.0.14470.0 2009.01.24 Suspicious:W32/Malware!Gemini >Ikarus T3.1.1.45.0 2009.01.24 Trojan-Downloader.Win32.Renos >Microsoft 1.4205 2009.01.24 TrojanDownloader:Win32/Renos.gen!BB >Sophos 4.37.0 2009.01.24 Mal/EncPk-FM >TrendMicro 8.700.0.1004 2009.01.24 PAK_Generic.001 >VirusBuster 4.5.11.0 2009.01.24 Trojan.Renos.Gen.15</span> Thanks What can be done about malicious web sites? I did not run the link BTW Quote
Guest David H. Lipman Posted January 25, 2009 Posted January 25, 2009 From: "metspitzer" <kilowatt@charter.net> | Thanks | What can be done about malicious web sites? | I did not run the link BTW Not much. whois -h whois.crsnic.net pochilum.com ... Redirecting to BIZCN.COM, INC. whois -h whois.bizcn.com pochilum.com ... Domain name: pochilum.com Registrant Contact: Home Vitaliy Werewolf werwolf13@meta.ua +60320266060 fax: +60320266060 Las Vegas str. 1/2 Las Vegas Nevada 34343 cn DNS: ns1.beforethehost.com ns2.beforethehost.com Created: 2009-01-01 Expires: 2010-01-01 -- Dave http://www.claymania.com/removal-trojan-adware.html Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp Quote
Guest Kayman Posted January 25, 2009 Posted January 25, 2009 On Sat, 24 Jan 2009 22:21:53 -0500, metspitzer wrote: <snip for brevity> <span style="color:blue"> > What can be done about malicious web sites? > I did not run the link BTW</span> 1. What you did (not running the link) and 2. Routinely practice Safe-Hex. http://www.claymania.com/safe-hex.html Hundreds Click on 'Click Here to Get Infected' Ad http://www.eweek.com/article2/0,1895,2132447,00.asp 3. Consider using McAfee's Site Advisor but don't rely on it 'blindly'. Good luck style_emoticons/ Quote
Guest Bill Sanderson Posted January 25, 2009 Posted January 25, 2009 http://www.microsoft.com/security/portal/E...atid=2147616514 "metspitzer" <kilowatt@charter.net> wrote in message news:n79nn4tdse1em721d5kl4p2418ilk2f54t@4ax.com...<span style="color:blue"> > On Sat, 24 Jan 2009 12:34:30 -0800 (PST), Friar Broccoli > <EliasRK@gmail.com> wrote: > <span style="color:green"> >>On Jan 24, 3:18 pm, sqlawbucks...@googlemail.com wrote:<span style="color:darkred"> >>> 2009 nba all star starters >>> . >>> . >>> . >>> CLICK HERE TO CONTINUE http://pochilum.com/2009-nba-all-star-starters >>> </span> >> >>The apparent video screen actually runs an executable. >>Has anybody run it to see what kind of virus or >>Trojan it puts on their computer?</span></span> -- Quote
Guest FromTheRafters Posted January 25, 2009 Posted January 25, 2009 I, not being willing to test suspected exploit based software on this machine, decided to right-click, save target as, type 'edit' in the run box, and navigate to the html file in the resulting GUI. ....posted just in case someone would want to investigate on their own - no need for PA Bear to 'alert the media' on this one. style_emoticons/) "metspitzer" <kilowatt@charter.net> wrote in message news:1lmnn45obpafn5muutbv43pguq1jbntjls@4ax.com...<span style="color:blue"> > On Sat, 24 Jan 2009 19:20:13 -0500, "David H. Lipman" > <DLipman~nospam~@Verizon.Net> wrote: ><span style="color:green"> >>From: "metspitzer" <kilowatt@charter.net> >> >>| On Sat, 24 Jan 2009 12:34:30 -0800 (PST), Friar Broccoli >>| <EliasRK@gmail.com> wrote: >><span style="color:darkred"> >>>>On Jan 24, 3:18 pm, sqlawbucks...@googlemail.com wrote: >>>>> 2009 nba all star starters >>>>> . >>>>> . >>>>> . >>>>> CLICK HERE TO >>>>> CONTINUE h p://pochilum.com/2009-nba-all-star-starters >>>>> </span> >><span style="color:darkred"> >>>>The apparent video screen actually runs an executable. >>>>Has anybody run it to see what kind of virus or >>>>Trojan it puts on their computer?</span> >> >>Please don't Multi-Post. >>Please learn to Cross-Post to pertinent, On Topic, News Groups instead. >> >>As I replied in your OTHER post... >> >>It doesn't "run" an executable. >>It is a fake video site that goads you to install a "Video Controller >>Object" to view a >>video. >>It is malware. >> >>http://www.virustotal.com/analisis/03a6095...0f8f12b557e6601 >> >>a-squared 4.0.0.73 2009.01.25 Trojan-Downloader.Win32.Renos!IK >>eSafe 7.0.17.0 2009.01.22 Suspicious File >>F-Secure 8.0.14470.0 2009.01.24 Suspicious:W32/Malware!Gemini >>Ikarus T3.1.1.45.0 2009.01.24 Trojan-Downloader.Win32.Renos >>Microsoft 1.4205 2009.01.24 TrojanDownloader:Win32/Renos.gen!BB >>Sophos 4.37.0 2009.01.24 Mal/EncPk-FM >>TrendMicro 8.700.0.1004 2009.01.24 PAK_Generic.001 >>VirusBuster 4.5.11.0 2009.01.24 Trojan.Renos.Gen.15</span> > > Thanks > > What can be done about malicious web sites? > > I did not run the link BTW </span> Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.