Infected Avatar Site - Exploit-MhtRedir.gen

I was looking for Avatars and McAfee picked up Exploit-MhtRedir.gen from hxxp://theavatars.us/....

I know its an old one, just thought I would put it out there in case anyone unprotected, or out of date, went looking for Avatars.

-- Update June 24, 2004--
It has recently been made known that some IIS servers have been remotely hacked. This exploit was utilized to redirect the client's browser to the location hxxp://217.107.218.147 containing an infected webpage causing unsolicited files to be downloaded and executed.

Exploit-MhtRedir.gen Corporate User : Low-Profiled
Home User : Low-Profiled

Trojan Information
Discovery Date: 02/13/2004
Origin: Unknown
Length: Varies
Type: Trojan
SubType: Exploit
Minimum DAT: 4326 (02/18/2004)
Updated DAT: 4569 (08/29/2005)
Minimum Engine: 4.2.40
Description Added: 02/17/2004
Description Modified: 06/25/2004 6:20 AM (PT)



Trekk


edited to disable clickable links! please do not include clickable links to malware or infected sites - Detox

 

This site should be blacklisted in IE-SPYAD and HOSTS files.

 

What I find amusing is Microsoft has yet to issue a revision to a patch that would fix it. If this is a 2 year old known trojan, and a vuln in IE, seems to me they need to get off their padded fanny. At least McAfee was able to catch it.

Trekk

 

Amusing indeed and on the other hand very pathetic.
No wonder I replaced MSIE with Firefox and recently MS Outlook with Thunderbird and without any regrets.
Microsoft doesn't impress me anymore, too many disappointments.
I want RESULTS from Microsoft. Just DO IT and keep your mouth shut until you are better than any competition.
That's what I expect from Microsoft.

 

Oops! Sorry Detox! I didnt even think of that. Duh.....