drag & drop exploit

Discussion in 'malware problems & news' started by James Benson, Oct 3, 2004.

Thread Status:
Not open for further replies.
  1. James Benson

    James Benson Guest

    I've just found a site which my av told me had put files on my pc as below:

    2004/09/30 21:24:53.437 File infection: D:\TEMP\Temporary Internet Files\Content.IE5\O12RSH6V\the******.x-y[1].htm is HTML.Dragdrop.exploit trojan.

    2004/09/30 21:24:53.453 File infection: D:\TEMP\Temporary Internet Files\Content.IE5\SXEV4HQ3\settingz[1].exe is Win32.Rawbot.BE trojan.

    2004/09/30 21:24:53.750 File infection: D:\TEMP\Temporary Internet Files\Content.IE5\SXEV4HQ3\settingz[1].exe is Win32.Rawbot.BE trojan.

    2004/09/30 21:26:26.796 File infection: D:\TEMP\Temporary Internet Files\Content.IE5\O12RSH6V\the******.x-y[1].htm is HTML.Dragdrop.exploit trojan. Deleted.

    2004/09/30 21:26:28.812 File infection: D:\TEMP\Temporary Internet Files\Content.IE5\SXEV4HQ3\settingz[1].exe is Win32.Rawbot.BE trojan. Deleted.

    2004/09/30 21:26:29.171 File infection: D:\TEMP\Temporary Internet Files\Content.IE5\O12RSH6V\the******.x-y[1].htm is HTML.Dragdrop.exploit trojan.


    My question is can this be an accident by the owner or is it a delibirate attempt to steal my personal info from me as the virus descriptions say about this trojan.
    I've reported it to the host but where do I go next about bringing them to some sort of justice?
    The owner is as follows:

    softcan (***NET-DOM)
    5F building-chungjung 32-11 chungjungro-3ga
    seodaemun-lu
    seoul, 120013
    KR
    82-2-392-3096
    peteryun@softcan.com

    If anyone wants to inflict some pain or abuse of any kind then you will be well appreciated.

    Network Information:

    NetRange
    210.219.0.0 - 210.219.255.255

    Registrant
    KRNIC
    Korea Network Information Center
    Republic of Korea


    Administrative contact
    Host Master
    11F, KTF B/D, 1321-11, Seocho2-Dong, Seocho-Gu,
    Seoul, Korea, 137-857
    KR
    Phone : +82-2-2186-4500
    Fax : +82-2-2186-4496
    hostmaster@nic.or.kr

    I've Included the net range for you hackers if ya are bored one day but excluded the domain name so no one falls prey to this malicious #*:+#*/.*##*/#;\!#][*#

    Thanks in advance
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.