IE6 infected

From: Eric (noaddress_at_forme.com)
Date: 10/22/04


Date: Fri, 22 Oct 2004 12:28:17 GMT

I use free versions of ZoneAlarm for firewall & AVG 6.0.779 for anti-virus
checking. ZoneAlarm is set to automatically check for updates. Updating AVG
is usually the first thing I do every time I go online. I also automatically
check for & immediately install updates to IE6, Win 98 & other Microsoft
products.

My PC seems to have some sort of infection. Web pages I view with IE6 appear
to have JavaScript inserted. This script is not actually in those web
pages & when I use a non-Microsoft browser I can see them as they should be,
This problem does not manifest itself when I create a web page myself and
examine it on my hard drive. However once that page is placed in my webspace
the Javascript problem manifests itself (see example below: first original
file, then file with inserted Javascript).

I have tried doing a free PestScan offered by ZoneLabs, but it just opens a
blank IE window. It doesn't seem to do anything.

Some one suggested using "HijackThis" but the blurb for this says its
"Intended for advanced users". I don't think I know enough to use it. Can
anyone suggest a course of action which doesn't involve spending money on
new software or re formatting my disc& re-installing the operating system?

----------------------------------------------------------------------------
---------------------------
<?xml version="1.0" encoding="utf-8"?>
<?xml-stylesheet type="text/css" href="standard.css" ?>

<!DOCTYPE html
     PUBLIC "-//W3C//DTD XHTML Basic 1.0//EN"
    "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>

  <title>Testing NTL webspace</title>
</head>
<body>
<div class="footer">
<p>
    <a href="http://validator.w3.org/check?uri=referer"><img
        src="vxhtml-basic10.png"
        alt="Valid XHTML Basic 1.0!"
        height="31"
        width="88" /></a>
Testing!!!!!!!
</p>
</div>

</body>
</html>

----------------------------------------------------------------------------
---------------------------
<?xml version="1.0" encoding="utf-8"?>
<?xml-stylesheet type="text/css" href="standard.css" ?>

<!DOCTYPE html
     PUBLIC "-//W3C//DTD XHTML Basic 1.0//EN"
    "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>

  <title>Testing NTL webspace</title>

   <script language='javascript'
src='http://127.0.0.1:1025/js.cgi?pcaw&r=21726'></script>

</head>
<body>
<div class="footer">
<p>
    <a href="http://validator.w3.org/check?uri=referer">
</a>
Testing!!!!!!!
</p>
</div>

</body>
</html>

<script language='javascript'>postamble();</script>

IE6 Infecyed