RE: [Full-Disclosure] Puzzled....

From: Aditya, ALD [Aditya Lalit Deshmukh] (aditya.deshmukh_at_online.gateway.technolabs.net)
Date: 08/04/04

Next message: Ron DuFresne: "Re: FW: [Full-Disclosure] Question for DNS pros"

Previous message: Aditya, ALD [Aditya Lalit Deshmukh]: "RE: [Full-Disclosure] Defcon spelled half backwards is Fedcon and you dumfucks walked into a trap"
In reply to: Jean-Marie Monnier: "[Full-Disclosure] Puzzled...."
Next in thread: Jean-Marie Monnier: "Re: [Full-Disclosure] Puzzled...."
Reply: Jean-Marie Monnier: "Re: [Full-Disclosure] Puzzled...."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: <kedves@attglobal.net>, <full-disclosure@lists.netsys.com>
Date: Wed, 4 Aug 2004 09:06:30 +0530

This is a typical behavior where the resident sheild simply put the file in quarantine or deletes the file is this what is happening please see the options to see what AVG is doing ....

-aditya
  -----Original Message-----
  From: full-disclosure-admin@lists.netsys.com [mailto:full-disclosure-admin@lists.netsys.com]On Behalf Of Jean-Marie Monnier
  Sent: Wednesday, August 04, 2004 12:06 AM
  To: full-disclosure@lists.netsys.com
  Subject: [Full-Disclosure] Puzzled....

  Since mid day today, I am flooded with interrupts from AVG resident shield yelling at me; and saying, in a nice little box..:.
  =================================
   Virus !
  Trojan horse Downloader Crypter C !
                                                                           !
  is found in file !
  C\WINDOWS\TEMP\WKNxxxx.exe ! <= (xxxx taking all kind of values, the most recent one being A0803 )
                                                                           !
  to remove this virus, run AVG for Windows !
  ____________________________________!

Running AVG doesn't find anything..... Any clues? Thanks in advance for any... jm (retired IBM'er... yes, it shows.. :-[ )

________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Next message: Ron DuFresne: "Re: FW: [Full-Disclosure] Question for DNS pros"

Previous message: Aditya, ALD [Aditya Lalit Deshmukh]: "RE: [Full-Disclosure] Defcon spelled half backwards is Fedcon and you dumfucks walked into a trap"
In reply to: Jean-Marie Monnier: "[Full-Disclosure] Puzzled...."
Next in thread: Jean-Marie Monnier: "Re: [Full-Disclosure] Puzzled...."
Reply: Jean-Marie Monnier: "Re: [Full-Disclosure] Puzzled...."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]