drag & drop exploit

Discussion in 'malware problems & news' started by James Benson, Oct 3, 2004.

Thread Status:
Not open for further replies.
  1. James Benson

    James Benson Guest

    I've just found a site which my av told me had put files on my pc as below:

    2004/09/30 21:24:53.437 File infection: D:\TEMP\Temporary Internet Files\Content.IE5\O12RSH6V\the******.x-y[1].htm is HTML.Dragdrop.exploit trojan.

    2004/09/30 21:24:53.453 File infection: D:\TEMP\Temporary Internet Files\Content.IE5\SXEV4HQ3\settingz[1].exe is Win32.Rawbot.BE trojan.

    2004/09/30 21:24:53.750 File infection: D:\TEMP\Temporary Internet Files\Content.IE5\SXEV4HQ3\settingz[1].exe is Win32.Rawbot.BE trojan.

    2004/09/30 21:26:26.796 File infection: D:\TEMP\Temporary Internet Files\Content.IE5\O12RSH6V\the******.x-y[1].htm is HTML.Dragdrop.exploit trojan. Deleted.

    2004/09/30 21:26:28.812 File infection: D:\TEMP\Temporary Internet Files\Content.IE5\SXEV4HQ3\settingz[1].exe is Win32.Rawbot.BE trojan. Deleted.

    2004/09/30 21:26:29.171 File infection: D:\TEMP\Temporary Internet Files\Content.IE5\O12RSH6V\the******.x-y[1].htm is HTML.Dragdrop.exploit trojan.


    My question is can this be an accident by the owner or is it a delibirate attempt to steal my personal info from me as the virus descriptions say about this trojan.
    I've reported it to the host but where do I go next about bringing them to some sort of justice?
    The owner is as follows:

    softcan (***NET-DOM)
    5F building-chungjung 32-11 chungjungro-3ga
    seodaemun-lu
    seoul, 120013
    KR
    82-2-392-3096
    peteryun@softcan.com

    If anyone wants to inflict some pain or abuse of any kind then you will be well appreciated.

    Network Information:

    NetRange
    210.219.0.0 - 210.219.255.255

    Registrant
    KRNIC
    Korea Network Information Center
    Republic of Korea


    Administrative contact
    Host Master
    11F, KTF B/D, 1321-11, Seocho2-Dong, Seocho-Gu,
    Seoul, Korea, 137-857
    KR
    Phone : +82-2-2186-4500
    Fax : +82-2-2186-4496
    hostmaster@nic.or.kr

    I've Included the net range for you hackers if ya are bored one day but excluded the domain name so no one falls prey to this malicious #*:+#*/.*##*/#;\!#][*#

    Thanks in advance
     
Loading...
Thread Status:
Not open for further replies.