BetaArchive Logo
Navigation Home Screenshots Image Uploader Server Info FTP Servers Wiki Forum RSS Feed Rules Please Donate
UP: 29d, 8h, 52m | CPU: 24% | MEM: 5944MB of 11027MB used
{The community for beta collectors}

Forum rules


Any off topic discussions should go in this forum. Post count is not increased by posting here.
FTP Access status is required to post in this forum. Find out how to get it


Post new topic This topic is locked, you cannot edit posts or make further replies.  [ 10 posts ] 
Author Message
 PostPost subject: Virus laden MSN message.        Posted: Sat Jul 14, 2007 8:00 am 
Donator
User avatar
Offline

Joined
Fri Aug 18, 2006 4:30 pm

Posts
1524

Favourite OS
Mac OS 9.2.2
Today at 7:48am (Eastern Standard Time), I received a message from a reban12@hotmail.de. This message stated the following:

CLICK THIS LINK AT YOUR OWN RISK
Quote:


This seemed strange, but I clicked the link anyway. The file had a "Email-Worm.Win32.Warezov.pv" virus, detected by Kaspersky Internet Security 6, and it was deleted.

I suspect that this person is a member of the forums, and I request assistance in tracking him down.

Staff members, there is a topic like this in the staff forum, reply to that one if possible.

~Fireware

_________________
Image
Mozilla/5.0 (Macintosh; U; PPC; en-US; mimic; rv:9.3.2) Clecko/20120101 Classilla/CFM
"Stupid can opener! You killed my father, and now you've come back for me!"


Top  Profile
 PostPost subject:        Posted: Sat Jul 14, 2007 8:58 am 
Administrator
User avatar
Offline

Joined
Fri Aug 18, 2006 11:47 am

Posts
12473

Location
Merseyside, United Kingdom

Favourite OS
Microsoft Windows 7 Ultimate x64
Not beta related. Moved to Off Topic Discussions.

_________________
Image

BetaArchive Discord: https://discord.gg/epK3r6A


Top  Profile  WWW
 PostPost subject:        Posted: Sat Jul 14, 2007 9:53 am 
Donator
User avatar
Offline

Joined
Mon Sep 04, 2006 1:06 pm

Posts
1004

Location
USA
If I click on the link in the first post, does it give me the virus right away, or is it through a file download? Cause either way, you may not want to post the link in case someone accidentally clicks on it.

_________________
Old-Computer
BetaArchive VIP | Ex-OSBA Member


Top  Profile
 PostPost subject:        Posted: Sat Jul 14, 2007 10:09 am 
Donator
User avatar
Offline

Joined
Fri Aug 18, 2006 4:30 pm

Posts
1524

Favourite OS
Mac OS 9.2.2
It gave a download prompt, It leads to a executible, named archive.exe.

The file in the link contains a virus/trojan. Click at your own risk.

_________________
Image
Mozilla/5.0 (Macintosh; U; PPC; en-US; mimic; rv:9.3.2) Clecko/20120101 Classilla/CFM
"Stupid can opener! You killed my father, and now you've come back for me!"


Top  Profile
 PostPost subject:        Posted: Mon Jul 16, 2007 6:55 pm 
Donator
User avatar
Offline

Joined
Tue Jun 19, 2007 5:55 pm

Posts
549

Location
UK

Favourite OS
Windows NT 4.0
My friend's MSN is hijacked by IM-Names

Then, it tried to send me a .cmd virus.

Me Blog wrote:
...the only MSN virus I have seen, A thing that brings up a so called photo website that is actually a link to download a highly dangerous Windows Batch file, that then spreads it to other people. The day I got that virus message was the day I got my new MSN addy, and it says “Someone posted a Pic of you www.example.com/files/photo.php=compactmac (a.t) hotmail . com” It was sure to be bogus and my poor friend indeed still has that Trojan Horse.


Since that addy was new, I knew it was sure to be a trojan. It was. Avast Web SCanner got it.

_________________
My Website -
Ecclesia Semper Reformanda Est


Top  Profile  WWW
 PostPost subject:        Posted: Tue Jul 17, 2007 3:28 am 
FTP Access
Offline

Joined
Tue Jun 19, 2007 11:04 pm

Posts
124

Location
In front of a Thinkpad
The one good thing about owning a Mac.

_________________
http://ubuntu.com
^Ubuntu 8. New installer. Why the heck didn't they do this years ago?


Top  Profile  WWW
 PostPost subject:        Posted: Tue Jul 17, 2007 4:44 am 
FTP Access
Offline

Joined
Thu Oct 05, 2006 2:21 am

Posts
112
Archive.exe is 124KB (at least from Get Info on a Mac, don't know if that's the real size or cluster-thingy), FWIW. Does it just exploit IE6, or does it go after IE7/Firefox too?


Top  Profile
 PostPost subject:        Posted: Tue Jul 17, 2007 10:39 pm 
Donator
Offline

Joined
Sat Aug 19, 2006 1:25 am

Posts
590

Location
Israel
blahsucks-two wrote:
Archive.exe is 124KB (at least from Get Info on a Mac, don't know if that's the real size or cluster-thingy), FWIW. Does it just exploit IE6, or does it go after IE7/Firefox too?

It's an EXE. It doesn't matter which browser you use (unless it's uses IE's API, in which only IE will be affected), as long as you use Windows.


Last edited by ppc_digger on Wed Jul 18, 2007 10:54 pm, edited 1 time in total.

Top  Profile
 PostPost subject:        Posted: Wed Jul 18, 2007 4:40 am 
FTP Access
Offline

Joined
Thu Oct 05, 2006 2:21 am

Posts
112
I find that sites usually attack ActiveX/whatever other flaws IE has. On Firefox and other browsers, they tend to put up a halfhearted effort and attempt to install plugins/download EXEs. Of course, it's usually not too effective if you're not using IE6, but XP is still more popular than Vista :evil:


Top  Profile
 PostPost subject:        Posted: Sun Jul 22, 2007 12:36 am 
FTP Access
Offline

Joined
Sat Nov 11, 2006 5:53 pm

Posts
342

Location
Saint-Henri, Montréal, Québec

Favourite OS
Chicago (hometown pride)
/puts virus in ALZ file and adds to "I got from IM" pile.


Top  Profile
Display posts from previous:  Sort by  
Post new topic This topic is locked, you cannot edit posts or make further replies.  [ 10 posts ] 




Who is online

Users browsing this forum: No registered users and 7 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Jump to:  

All views expressed in these forums are those of the author and do not necessarily represent the views of the BetaArchive site owner.

Powered by phpBB® Forum Software © phpBB Group

Copyright © 2006-2018

 

Sitemap | XML | RSS