Infected Avatar Site - Exploit-MhtRedir.gen

Discussion in 'other anti-malware software' started by Trekk, Aug 29, 2005.

Thread Status:
Not open for further replies.
  1. Trekk

    Trekk Registered Member

    Joined:
    Aug 16, 2005
    Posts:
    90
    Location:
    Ohio
    I was looking for Avatars and McAfee picked up Exploit-MhtRedir.gen from hxxp://theavatars.us/....

    I know its an old one, just thought I would put it out there in case anyone unprotected, or out of date, went looking for Avatars.

    -- Update June 24, 2004--
    It has recently been made known that some IIS servers have been remotely hacked. This exploit was utilized to redirect the client's browser to the location hxxp://217.107.218.147 containing an infected webpage causing unsolicited files to be downloaded and executed.

    Exploit-MhtRedir.gen Corporate User : Low-Profiled
    Home User : Low-Profiled

    Trojan Information
    Discovery Date: 02/13/2004
    Origin: Unknown
    Length: Varies
    Type: Trojan
    SubType: Exploit
    Minimum DAT: 4326 (02/18/2004)
    Updated DAT: 4569 (08/29/2005)
    Minimum Engine: 4.2.40
    Description Added: 02/17/2004
    Description Modified: 06/25/2004 6:20 AM (PT)



    Trekk


    edited to disable clickable links! please do not include clickable links to malware or infected sites - Detox
     
    Last edited by a moderator: Aug 29, 2005
  2. ErikAlbert

    ErikAlbert Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    9,455
    This site should be blacklisted in IE-SPYAD and HOSTS files.
     
  3. Trekk

    Trekk Registered Member

    Joined:
    Aug 16, 2005
    Posts:
    90
    Location:
    Ohio
    What I find amusing is Microsoft has yet to issue a revision to a patch that would fix it. If this is a 2 year old known trojan, and a vuln in IE, seems to me they need to get off their padded fanny. At least McAfee was able to catch it.

    Trekk
     
  4. ErikAlbert

    ErikAlbert Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    9,455
    Amusing indeed and on the other hand very pathetic.
    No wonder I replaced MSIE with Firefox and recently MS Outlook with Thunderbird and without any regrets.
    Microsoft doesn't impress me anymore, too many disappointments.
    I want RESULTS from Microsoft. Just DO IT and keep your mouth shut until you are better than any competition.
    That's what I expect from Microsoft.
     
  5. Trekk

    Trekk Registered Member

    Joined:
    Aug 16, 2005
    Posts:
    90
    Location:
    Ohio
    Oops! Sorry Detox! I didnt even think of that. Duh.....
     
Thread Status:
Not open for further replies.