On Mon, 6 Sep 2010, Mark Rogers wrote:
On 06/09/10 12:50, Dan wrote:
My question is - could the script have got any sort of access to my local filesystems or otherwise done any damage?
Highly unlikely: these scripts are generally aimed at persuading the user to download and run the trojan; it's far easy to apply a bit of social engineering than it is to get past even basic browser security. Given that the script almost certainly had access to your browser's user-agent and didn't bother to present something more targetted at your OS I'd be very surprised if they'd have known what to do with yout filesystem if they saw it!
For what it's worth, I've seen this on Windows machines and not detected any problems afterwards (provided the .exe wasn't downloaded of-course).
Many thanks to Mark and Tim. That's reassuring. Also, a clamscan of my filesystems has finally completed and come up clean, apart from a couple of suspected phishing messages in an old e-mail folder.