don't be so sure.

in Firefox 3 I was visiting a site for Eagle Transporters when I got a message about a bad Runtime install as a popup came up.

then suddenly I can't get to pages like Google - in firefox...

did´nt think anything of that... (thought it was my ISP) until I started IE to run windows update...

suddenly I´ve got popup ad´s etc.

seems that popup that failed in firefox did manage to install ´virtuamonde' onto my system.

getting rid of it now...

(yes before anyone starts telling me otherwise.. I only run IE for windows update and nothing else. the infection came through Firefox 3. I am not drinking or hallucnating or trolling. I am currently running Spybot and have removal tools for this at hand. I did not imagine this. )

Thanks for the warning... Are you by any chance running a firewall like ZoneAlarm or any of those vaulted brand?

TS

Running Zonealarm Pro, avast! and have AVG, Cureit etc in the toolbox....

you should also be supplementing firefox with add-ons like NoScript and only allowing domains you trust.

IIm on a Mac ...non issue for us

Quote - IIm on a Mac ...non issue for us

yawn. thanks for that. I knew someone would post the old chestnuts like get a mac, run linux, I use a mac, I hate microsoft, etc.

Khai, just ignore the voice from the Nuts (Mac or other anti-MS sentiments :tt2:  ) gallery.  Blackhearted is correct tho. On my computer with Firefox, I am also running AVG version 8 which has a  plugin(Web Shield and Link Scanner) for  Firefox. (Toolbar). When I visit a dangerous site, AVG really blocked the site big time!!!  Site can not connect to me to pop up anything or pop under anything...  I also have a Web Of Trust plug which in conjunction with AVG tells me whether the site I am about to enter is a good site or not. So far I have been stopped numerous times... If you are running AVG 7, I think it would be worth your while to upgrade to version 8 with all these nifty bells and whistles...  :laugh:

Another vote for NoScript.  It's the hounds hangers for blocking weird scripts and stuff

took a few hours to get shot of that one... it's a nasty bug that stealths and uses rootkit technology to really dig in deep..

but it's gone now..

Khai,

How did you get rid of this.  I'm having the same problem.

A person in the office got the above image as a joke in an email, and called the IT people and wanted to know why they couldn't input anything in the fake input squares screaming at the top of their lungs they wanted to send the data to find out if their credit card had been stolen!

The IT people here preach, the script kiddies will bite you when you least expect it.

thing was, I did'nt click anything.
the popup came up, the error came up.... but I was infected anyway. I think it got in via a plugin or similar.. the site was trying to play some music for Space 1999...

as to getting shot of the little bugger, I used the information from here about virtumunde -
http://forums.spybot.info/forumdisplay.php?f=22 ... follow all directions with care...

Quote - > Quote - IIm on a Mac ...non issue for us

yawn. thanks for that. I knew someone would post the old chestnuts like get a mac, run linux, I use a mac, I hate microsoft, etc.

Linux??.... Baaa!!

I think the problem lies in websites and less to do with what browser you use. Noscript is fantastic - have a browse through the firefox extensions there are loads of useful ones.  Even mainstream legit sites have been hacked recently so its always good to air on the side of caution. Life is easier on other systems (than that of windows because thats the most heavily targeted).  Having used both Macs and windows ( I can duel boot). Windows is scary because you seem to have less control over what happens to your operating system.  I'm running AVG, spybot and spyware doctor and still found ClamX on my mac partition found virueses that the other pc apps didin't which worried me some what.

 I think you've just got to use what ever you can. IE does seem to be targeted as well - general dislike of microsoft in the hacking community - I've known a few in my time!

 Just make sure you keep everything upto date and keep an eye out of forums etc for potential problems. No point bashing other systems - help others - if you hear of a potential problem pass it on to your fellow pc users - the advice that is not the problem!

How do you know if you're infected?

You know I noticed the dragon page has changed and it tried to load something on my system but webroot stopped it. The only way I can reach that site to make changes to the dragons or get new eggs is through firefox, I.E. won't do it. Wonder if that's where it came from?

it's possible you know you're infected if you're using win XP or vista and you've
accessed usenet, P2P, internet or e-mails.  that's why I'm very grateful that
here's now an app called crossover that allows OS X users to run the few windows
apps with no OS X version, without having to install any version of windows.

In all of the years that I've been fooling around with PC's, I've had perhaps three brushes with viruses.  And one of those experiences was with an Amiga virus -- the old Lamer Exterminator Virus, which came pre-loaded on a commercial game disk that I installed from.  I've had a couple of other viruses affect me -- most notably the "Love Bug" e-mail virus.  I clearly recall the day when I suddenly started getting numerous e-mails from my co-workers proclaiming "I Love You!".  I knew right away that something had to be fishy.........

IMO, spyware is a more pervasive threat than viruses.  Although a virus will usually ruin your day faster......you might not see the results of spyware until you start getting strange bills in the mail 30 days later.

Check around, though......there might be some good recipes online for making Dragon Egg omelets........

I don't do p2p or usenet. Nothing out there is worth stealing when it can take me down and lose me real money by not being able to work.

Quote - don't be so sure.

in Firefox 3 I was visiting a site for Eagle Transporters when I got a message about a bad Runtime install as a popup came up.

then suddenly I can't get to pages like Google - in firefox...

did´nt think anything of that... (thought it was my ISP) until I started IE to run windows update...

suddenly I´ve got popup ad´s etc.

seems that popup that failed in firefox did manage to install ´virtuamonde' onto my system.

getting rid of it now...

(yes before anyone starts telling me otherwise.. I only run IE for windows update and nothing else. the infection came through Firefox 3. I am not drinking or hallucnating or trolling. I am currently running Spybot and have removal tools for this at hand. I did not imagine this. )

Um, not sure where you get the impression that FF has no security holes (or that this is the prevailing impression).  It's my impression that FF's biggest strength in this area is its relatively small market share (hackers and such want the biggest bang for their buck so they target IE).

never said it had no security holes. as I said, 'if you think firefox will protect you from popup/popunder infection don't be so sure'. -  I'm not sure where you read I thought it was secure?

as to "or that this is the prevailing impression" I think that comes from the repeated advice that you use FF to avoid infections. do a search and you'll find plenty saying that.

personally I think the only secure computer is switched off, dismantled and then buried in a peat bog.

Quote - personally I think the only secure computer is switched off, dismantled and then buried in a peat bog.

After being encased in lead and concrete

I meant something like "or how this became the prevailing impression" or whatver.  My point is that FF is just protected by IE taking all the body blows.