1. Contracting
    1. General
      1. Brexit
    2. Business / Contracts
      1. Coronavirus Assistance
    3. Accounting / Legal
      1. Umbrella Companies
      2. HMRC Scheme Enquiries
      3. The Future of Contracting
      4. IR35 Reform
    4. Technical
    5. Welcome / FAQs
  2. Social
    1. Light Relief
    2. Social / Events
  • Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
  • Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!

VIRUS: Caught One!

Collapse
X
11 to 20 of 62 Previous 1 2 3 4 5 7 template Next
Collapse
Reply to Thread
  •  
  • Filter
  • Time
  • Show
Clear All
new posts
11 to 20 of 62 Previous 1 2 3 4 5 7 template Next
    #11
    FWIW it's stopped appearing for me now, in the sense that it isn't even trying to inflict junk on me. Given that its appearances have been sporadic, I wouldn't be surprised if it operates for a while, then goes dormant. Alternatively it could have decided to ignore my IP address. If anybody sees any signs of it could they post here and let me know, preferably with browser details? Cheers

    Comment

      #12
      I'm still getting the virus warning on IE9.

      Comment

        #13
        Originally posted by DimPrawn View Post
        I'm still getting the virus warning on IE9.
        It's back for me too

        Comment

          #14
          So IE 9 definitely vulnerable, IE 10 and IE 11 no data yet.

          NIck has said Firefox and Chrome are safe, but not proved yet.

          Is CUK safe or not ?
          Vote Corbyn ! Save this country !

          Comment

            #15
            Originally posted by fullyautomatix View Post
            So IE 9 definitely vulnerable, IE 10 and IE 11 no data yet.

            NIck has said Firefox and Chrome are safe, but not proved yet.

            Is CUK safe or not ?
            Erm, don't think it affects IE11

            Comment

              #16
              Finally, someone believes me ... I've had this since Monday - go figure.

              I use Opera and I get reports the payload comes from URL :-> *DONTCLICKME*http://twobutfoxbut.dyndns.info/mix/*DONTCLICKME* without the *DONTCLICKME
              Last edited by Scoobos; 4 May 2012, 17:21.

              Comment

                #17
                Originally posted by DimPrawn View Post
                I'm still getting the virus warning on IE9.
                Windows 7? I can whip that up in a VM if needs be.

                Except I'm off to the pub now for a couple of beers. It's nice and sunny here.
                Behold the warranty -- the bold print giveth and the fine print taketh away.

                Comment

                  #18
                  Originally posted by Scoobos View Post
                  Finally, someone believes me ... I've had this since Monday - go figure.

                  I use Opera and I get reports the payload comes from URL :-> *DONTCLICKME*Google without the *DONTCLICKME
                  It switches around through quite a few different domains; I'll add that one to my list, as once we've got CUK sorted out I'll be reporting all those domains to DynDNS (who ultimately own them as part of their dynamic DNS service) for abuse.

                  I've downloaded and decompiled the initial Java payload, which takes a heavily obfuscated parameter and then runs through a load of heavily obfuscated spaghetti scattered around four classes with meaningless method names and much use of reflection to generate the URL of the final payload. Asthat wasn't going to get me very far in terms of cleaning CUK I'm now concentrating on the JavaScript that generates the iframe that loads the page that embeds that initial payload

                  Comment

                    #19
                    Originally posted by fullyautomatix View Post
                    So IE 9 definitely vulnerable, IE 10 and IE 11 no data yet.

                    NIck has said Firefox and Chrome are safe, but not proved yet.

                    Is CUK safe or not ?
                    It will be

                    Comment

                      #20
                      Sorry but may have seen this last weekend (haven't really been paying attention) . On a few occasions, while trying to load General, FF 3.6 popped up a message that it needed me to install the Java VM. Obv I didn't.
                      On win XP (HE) sp 3.
                      +50 Xeno Geek Points
                      Come back Toolpusher, scotspine, Voodooflux. Pogle
                      As for the rest of you - DILLIGAF
                      Purveyor of fine quality smut since 2005

                      CUK Olympic University Challenge Champions 2010/2012

                      Comment

                      Reply to Thread
                      11 to 20 of 62 Previous 1 2 3 4 5 7 template Next

                      Advertisers

                      1. Contracting
                        1. General
                          1. Brexit
                        2. Business / Contracts
                          1. Coronavirus Assistance
                        3. Accounting / Legal
                          1. Umbrella Companies
                          2. HMRC Scheme Enquiries
                          3. The Future of Contracting
                          4. IR35 Reform
                        4. Technical
                        5. Welcome / FAQs
                      2. Social
                        1. Light Relief
                        2. Social / Events
                      Working...
                      X