[Full-disclosure] infected file ( can someone please report and take it down ? )
File link http://web292.webbox443.server-home.org/install.exe 77 kb - packed install.exe analysis link http://www.virustotal.com/analisis/4ebbd8e0045798cee6e505f79fe88671 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] spyware in smplayer_portable.exe found in MPUI.2008-06-16.Full-Package.exe ?
hi there lord_mulder, i wanted to report some spyware like behavior about smplayer_portable.exe i have just downloaded MPUI.2008-06-16.Full-Package.exe from http://mulder.dummwiedeutsch.de/home/?page=projects#mplayer and installed it completely - codecs + mplayer + smplayer on running smplayer_portable.exe it tries to connect to the internet in this host rautemusik.g24m.net without me opening any file like internet radio station or anything else is this behavior normal ? if yes then please tell me what data is rautemusik.g24m.net gathering from my computer ? please investigate this - perhaps the smplayer_portable.exe that you got is infected with some kind of spyware can you please tell me where did you get your version of smplayer_portable.exe that you included in MPUI.2008-06-16.Full-Package.exe ? ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Virus Infection : URL http://www.sgbau.ac.in/ hosting Virus.VBS.Redlof.k
sir, please look into the home page of the above URL http://www.sgbau.ac.in/ this webpage hosts a malware script :Virus.VBS.Redlof.k more info about this malware can be found over here : http://www.viruslist.com/en/search?VN=Virus.VBS.Redlof.k as this server / domain / ip address is either under your direct control or administration please take steps to stop the distribution of the above malware. not doing anything will make you liable to significant fines as per the indian IT act. taking this into consideration i request you to urgently remove the malware hosted on your website. here nslookup resolves to : Non-authoritative answer: Name:www.sgbau.ac.in Address: 72.232.50.186 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Virus.VBS.Redlof.k( kaspersky ) infection in http://www.sgbau.ac.in/
at the end of the homepage there is a code fragment < Script Language="VBScript" > which is a virus Virus.VBS.Redlof.k ( more info http://www.viruslist.com/en/search?VN=Virus.VBS.Redlof.k ) here are the phone numbers from the website http://www.sgbau.ac.in/PhDirectory.htm but no one seems to be picking up at this movement could someone please shut down this virus inferction source and please report to the proper people. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/