Josh Collins
December 5th 03, 01:15 AM
"John B" > wrote in message
news:7709750.dBJjnQvpdV@Buy_me_a_shrubbery_or_I_wi ll_say_NI!_to_you!.com...
> Michael Stevens, while banging their head on a wall, wrote:
>
> > purplehaz03 wrote:
>
> <snip>
>
> >>The site you posted was the only other site. This
> >> is on a
> >> machine with av installed, spybot run daily, behind lan firewall and
> >> corporate firewall, messenger service disabled, all patches and
> >> updates and sp's, IE6 sp1. The only popup this computer can get is
> >> from a webpage.
> >> Here's what nortons says about it when it caught it:
> >>
> >
>
http://securityresponse.symantec.com/avcenter/venc/data/js.exception.exploit.html
> >>
> >
> >
> > Confirmed here also with NAV 2003, something fishy on the Lexmark.com
site.
> >
> > --
> >
> > Michael Stevens MS-MVP XP
>
> It's just a redirect page, though W3C couldn't verify it, but I don't
think it
> has any 'nasties' in it:
>
> <html>
> <head>
>
> <title></title>
>
> <script language="JavaScript">
> <!--
> if (window != window.top)
> top.location.href = location.href;
> // -->
> </script>
>
> <meta http-equiv="refresh" CONTENT="3;
> URL=http://www.site-loading.com/expired_domain.htm">
>
> </head>
> <BODY>
> <p> </p><p align="center"><a
> href="http://www.site-loading.com/expired_domain.htm">
> <font face="Arial">Please wait (or click here) to be forwarded to a
> sponsor.</font></a></p>
> <p align="center"><a
?subject=Question">
> <font face="Arial">C</font></a><font face="Arial"><a
> ?subject=Question">lick
> here to email the domain owner with any questions.</a><br>
> </body>
>
> </html>
>
> That's all it's made up of. Maybe your Java security settings are a
little too
> high? Doesn't bother my linux box one bit...*any* of the sites it
redirects me
> to, nor does the java popup redirection.
>
> John
> --
> http://www.pclinuxonline.com/modules.php?name=News&file=article&sid=6797
news:7709750.dBJjnQvpdV@Buy_me_a_shrubbery_or_I_wi ll_say_NI!_to_you!.com...
> Michael Stevens, while banging their head on a wall, wrote:
>
> > purplehaz03 wrote:
>
> <snip>
>
> >>The site you posted was the only other site. This
> >> is on a
> >> machine with av installed, spybot run daily, behind lan firewall and
> >> corporate firewall, messenger service disabled, all patches and
> >> updates and sp's, IE6 sp1. The only popup this computer can get is
> >> from a webpage.
> >> Here's what nortons says about it when it caught it:
> >>
> >
>
http://securityresponse.symantec.com/avcenter/venc/data/js.exception.exploit.html
> >>
> >
> >
> > Confirmed here also with NAV 2003, something fishy on the Lexmark.com
site.
> >
> > --
> >
> > Michael Stevens MS-MVP XP
>
> It's just a redirect page, though W3C couldn't verify it, but I don't
think it
> has any 'nasties' in it:
>
> <html>
> <head>
>
> <title></title>
>
> <script language="JavaScript">
> <!--
> if (window != window.top)
> top.location.href = location.href;
> // -->
> </script>
>
> <meta http-equiv="refresh" CONTENT="3;
> URL=http://www.site-loading.com/expired_domain.htm">
>
> </head>
> <BODY>
> <p> </p><p align="center"><a
> href="http://www.site-loading.com/expired_domain.htm">
> <font face="Arial">Please wait (or click here) to be forwarded to a
> sponsor.</font></a></p>
> <p align="center"><a
?subject=Question">
> <font face="Arial">C</font></a><font face="Arial"><a
> ?subject=Question">lick
> here to email the domain owner with any questions.</a><br>
> </body>
>
> </html>
>
> That's all it's made up of. Maybe your Java security settings are a
little too
> high? Doesn't bother my linux box one bit...*any* of the sites it
redirects me
> to, nor does the java popup redirection.
>
> John
> --
> http://www.pclinuxonline.com/modules.php?name=News&file=article&sid=6797