Spyware Warrior Spyware Warrior
Help with Spyware, Hijacking & Other Internet Nuisances
 
FAQ :: Search :: Memberlist :: Usergroups :: Register
Profile :: Log in to check your private messages :: Log in

do you think i should put this picture on myspace & face

 
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Virus, Worm &Trojan Alerts
View previous topic :: View next topic  
Author Message
blender
Site Admin


Joined: 19 Jan 2004
Last Visit: 03 Mar 2011
Posts: 10886
Location: Ontario
PostPosted: Sun Aug 26, 2007 11:27 pm    Post subject: do you think i should put this picture on myspace & face Reply with quote
Ummmm NO! Likely not a good idea. Rolling Eyes


One of my less saavy buddies popped online long enough to send me this text:

hey, how are you doing Smile do you think i should put this picture on myspace & facebook (honestly)?

then sends: img310.zip (possibly can be any number)

Of course I accepted it and had a closer look.
Unzipped it is img309.jpg-www.[removed]albums.com

file name mangled by me in case the URL is bad.


AntiVir 7.4.1.63 2007.08.27 Worm/Sdbot.74752.34
AVG 7.5.0.484 2007.08.27 BackDoor.Generic8.FFS
BitDefender 7.2 2007.08.27 DeepScan:Generic.Sdbot.3FA26602
Ikarus T3.1.1.12 2007.08.27 BehavesLikeWin32.ProcessHijack
Microsoft 1.2803 2007.08.27 Backdoor:Win32/Sdbot.gen!A
Prevx1 V2 2007.08.27 Worm.Ircbot.Gen
Webwasher-Gateway 6.0.1 2007.08.27 Worm.Sdbot.74752.34

Additional information
File size: 74752 bytes
MD5: 235dc5c8f725c8a776e6b990c008104f
SHA1: d01a3c01e88d09ffe0ffe8b94bdcead0b8322da0
Prevx info: http://fileinfo.prevx.com/fileinfo.asp?PX5=81BC3B3E00EB0DBA246201A89A689000A1D3EC9D

Sunbelt Sandbox report:

http://research.sunbelt-software.com/ViewMalware.aspx?id=1460800

And when you ask the sender wether or not they sent it.... it appears they can't answer ya back so you get no "confirmation" they actually meant to send it.

yuck
_________________
Never give up!
Former Microsoft MVP Windows-Security 2005-2009

If we have helped you please consider a donation Thank You
Back to top
View user's profile Send private message Send e-mail
Nightmaretony
Warrior


Joined: 15 Mar 2005
Last Visit: 30 Jun 2011
Posts: 256
Location: Meadowbrook
PostPosted: Mon Aug 27, 2007 6:28 am    Post subject: Reply with quote
Ugh, more nasty social engineering.

Methinks eventually people will adapt.
_________________
For this is the place
where dreams
and nightmares
are birthed
and bred

Nightmare Park
Back to top
View user's profile Send private message Visit poster's website AIM Address
Chao284
Warrior


Joined: 06 Sep 2004
Last Visit: 06 Aug 2011
Posts: 220
Location: Bremerton, WA
PostPosted: Tue Aug 28, 2007 12:53 pm    Post subject: Reply with quote
Nightmaretony wrote:
Ugh, more nasty social engineering.

Methinks eventually people will adapt.


Or Shut off Active Scripting, because auto-downloading trojans are a new fad now and days, even that sometimes MUST require Active scripting, so it makes it diffcult to get around.
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Virus, Worm &Trojan Alerts All times are GMT - 8 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



smartBlue Style © 2002 Smartor
Powered by phpBB © 2001, 2002 phpBB Group