[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] found suspicious desktop.ini in startup folders

To: "Full Disclosure" <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: [Full-Disclosure] found suspicious desktop.ini in startup folders
From: "BillyBobKnob" <billybobknob@xxxxxxxxxxx>
Date: Tue, 24 Aug 2004 10:55:45 -0300

Does anyone know if this file is used in an exploit since it was found in
startup folders ?

The contents of the file are:

[.ShellClassInfo]
LocalizedResourceName=@%SystemRoot%\system32\shell32.dll,-21787



BillyBob

Attachment: desktop.ini
Description: Binary data

Follow-Ups:
- Re: [Full-Disclosure] found suspicious desktop.ini in startup folders
  - From: Nick FitzGerald

Prev by Date: Re: [Full-Disclosure] Re-write with security in mind all ops.
Next by Date: Re: [Full-Disclosure] Re-write with security in mind all ops.
Previous by thread: [Full-Disclosure] Windows update - XPSP2
Next by thread: Re: [Full-Disclosure] found suspicious desktop.ini in startup folders
Index(es):
- Date
- Thread