Author Topic: Targeted Internet Explorer Zero-Day Attack  (Read 3154 times)

0 Members and 1 Guest are viewing this topic.

March 11, 2010, 08:05:20 pm
Read 3154 times

parici.lapoulette

  • Newbie

  • Offline
  • *

  • 2
Hey guys !

This is my first report, for a domain name I did not see a report on your forum.

http://topix21century.com
https://topix21century.com

I don't know how to classify this kind of attack, but according to McAfee Labs, "in this attack, vulnerable users are directed to a malicious webpage that downloads and executes a file named notes.exe or svohost.exe (classified as BackDoor-EMN) in drive-by download fashion (visiting the page is enough to get infected)."

I already added those two domains in my personnal blocked hosts file.

I don't know this domain's exact IP Adress, because I don't want to infect my own pc looking for this information.

Source : http://www.avertlabs.com/research/blog/index.php/2010/03/09/targeted-internet-explorer-0day-attack-announced-cve-2010-0806/

Thank you for your hard work !

March 11, 2010, 08:14:15 pm
Reply #1

SysAdMini

  • Administrator
  • Hero Member

  • Offline
  • *****

  • 3335
Ruining the bad guy's day

March 11, 2010, 10:43:42 pm
Reply #2

parici.lapoulette

  • Newbie

  • Offline
  • *

  • 2
Wow !

Seems I'm late !

Thank you for your response, and thanks again for your excellent job every day !

March 13, 2010, 11:20:26 am
Reply #3

redwolfe_98

  • Special Members
  • Jr. Member

  • Offline
  • *

  • 21
as far as i can tell, "topix21century.com" never was added to the "MDL"..