If it makes anyone feel any better, I did get a message from Trend anti-virus, "Action: Clean Failed (Moved)"
Of course that was on or about the time the Command Prompt appeared on my screen... Dave Bujaucius -----Original Message----- From: Premek Marek [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 06, 2002 1:15 PM To: leon Cc: [EMAIL PROTECTED] Subject: Re: scary site > http://www.liquidwd.freeserve.co.uk/ > Try it with a windows machine and IE with all patches. > Be afraid be very afraid. > FYI this is for all those people who are think that just having a > firewall is enough. > Guess what? > This works through packet filter, stateful inspection and proxy > servers. Guess what? nothing happened to me. IE 5.0, win 2000, no patches, all settings set to default. (had to reboot from linux to test it :)) MSIE says page loaded with errors .. C:/windows/system32/cmd.exe exists and is accessible. And why would you think that some packet filters and stateful inspection could stop it? Here you'd need content filter on some very high level to guess what this script could be doing. -- Premek Marek Unix systems administrator, Hosting CZ s.r.o. mailto:[EMAIL PROTECTED] tel: +420-602-386703
