Boost logo

Boost :

Subject: Re: [boost] [vault] Malware in the Boost Vault!
From: Chad Nelson (chad.thecomfychair_at_[hidden])
Date: 2010-06-12 18:38:38


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 06/12/2010 06:20 PM, Rene Rivera wrote:

>> "Sexy Live.zip", uploaded to the Vault on March 31st by
>> "gr7ne2009", is apparently some kind of Trojan masquerading as a
>> Windows screen saver, according to various antivirus programs
>> (checked with both virusscan.jotti.org and www.virustotal.com). Who
>> has access to remove it?
>
> User and all their files I could find removed now.. And a fair number
> of other files by others that where definitely bogus also removed.
> Thanks for reporting this.. And if you find more please let me know.

Thanks. Everything else (most judged solely by filenames and
descriptions) looks legit. I only looked at files in the main directory
though, there are a number of subdirectories.

There's one directory that caught my eye ("Program to search for
channels Nationali", which is very similar to the description for the
"Sexy Live.zip" file), but if it had any contents, you'd already deleted
them by the time I looked.
- --
Chad Nelson
Oak Circle Software, Inc.
*
*
*
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkwUDG4ACgkQp9x9jeZ9/wSFMACgsdY9iPoibQPAHVoz1LBOORLA
+3kAn16kPag+OTnvK4J4hcgkZke+fSP8
=U3GE
-----END PGP SIGNATURE-----


Boost list run by bdawes at acm.org, gregod at cs.rpi.edu, cpdaniel at pacbell.net, john at johnmaddock.co.uk