LinkBack URL
About LinkBacksi still get avira warning me.
i still get avira warning me.
Last edited by computerman; 04-10-2007 at 08:00 PM.
Hi there,
The virus that previously effected the site was - Trojan-Downloader.JS.Agent.kd was fixed earlier, I just went onto the main page of the Yoyotech website just before making this post & a new virus has been found by Kaspersky:-
Trojan-Downloader.JS.Small.fs
File:
http://gifecnt.com/ld/puh/index.php?b=3 DO NOT CLICK THE LINK!! For Infomation purposes only.
NOTE: The Virus only shows up if I hit the back button when I've been browsing through your website.
Last edited by Nelly.; 04-10-2007 at 11:23 PM.
AVG does not pick anything up.
□ΞVΞ□
Try clicking the back button on Internet Explorer once you have viewed one or two pages.Originally Posted by jay_oasis
Last edited by Nelly.; 04-10-2007 at 11:22 PM.
Still getting the virus here, and come to think about it, it was when I pressed the back button previously that I had it trigger
mine was going to 81.95.149.77/wtsin.cgi?s=z&c=1 - DO NOT CLICK! THIS IS A KNOWN VIRUS LINK!
Looks like you guys have been well and truely hacked and by someone who knows what they're doing.
that hacker must be one hell of a pissed off customer. dids u guys rip him off £1000?
You lot must be 100 percent confident of your AV scanner coz you guys are going there again and again knowing the site is infected!
Come on dozer, 'fess up
haha, i maybe called the computerman but i dont know crap about hacking n hate viruses thats why i reported it here. and double d u should use the edit button so that you dont make a post straight after your previous post.
Just an update, I checked the webpages for the site today, using the back button on Internet Explorer brought up the following warnings when using Kaspersky Internet Security 7.0.
Trojan-Downloader.JS.Agent.kd - Link SAFE to check.Exploit.HTML.IESlice.h detected: malware Exploit.HTML.IESlice.h Script: - Link SAFE to check.URL:http://81.95.149.76/sp/index.php - DO NOT CLICK THIS LINKIf you definitly have a hacker/virus problem, maybe worth changing to a more reliable/secure hardware router than the one your using?http://www.yoyotech.co.uk/product_in...517515a6279cb6 - DO NOT CLICK THIS LINK
Last edited by Nelly.; 08-10-2007 at 05:21 PM.
Looks like yototech has still got some serious infections. NIS2008's Browser Defender gave me 3 browser exploits:
MSIE WebViewFolderIcon ActiveX BO
MSIE ADODB.Stream Installation Weakness
and the not so common
Winzip WZFileView ActiveX BO
Sorry guys but I am removing yoyo from my suppliers list at work. If I was yoyo I would take the site down as I am sure after all this warning some one could sue.
Last edited by Jay; 09-10-2007 at 08:16 AM.
□ΞVΞ□
If it were me running your company, I'd be taking a long hard look at who has access to the site internally, and start asking some very pointed questions as to how this has happened and what you can do to fix it.
You're completely destroying any trust you have in your company by continuing to ignore this issue and I for one would not expect it from a well known company like yourselves....
i agree, I have removed the DNS record from our servers and pointed them to Scan instead. Can't risk users going to the site either. This hack is very well done but not the best, i agree that it does look like someone who knows a lot about your site and it could be internal.
I still think the site should be taken down until its sorted. I mean how do we know creditcard details are not being taken etc etc. ?
□ΞVΞ□
I'm also a little concerned by the fact that they are still posting on this forum with regards to orders, stock query etc etc, yet very little have been said about this thread....
Checked the website just now & could find nothing in terms of any virus. This happend previously though then suddenly appeared within a few hours.
Hope this gets sorted soon, as I will be wanting to place an order within the next week or so.
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
