Possible exploit in Java VM and Firefox or Adaware

Enverex

Just browsing random sites again today and googling etc, Java fires up, sits in the tray as normal when I go to some sites, close Firefox and it dissapears as normal....

I open up explorer, browsing my D drive when I notice I now have a search bar... clicking the "directory" button brings me to makemesearch.com so I assume its spyware from them or someone.

Now I shouldn't have any problem removing this, but, what bothers me is the only file I have run today, other than Firefox, is the latest version of Adaware downloaded from SM itself. So either Adaware installs adware, or there is a vulnerability in FF & Suns Java VM that allows spyware to be installed...

Just thought I would post about this as it is very odd.

primesuspect

Java byteverify exploit.

I would get the latest JavaVM from sun (i think it's 1.45 or something like that)....

Enverex

Cheers prime. Just need to find out which of the machines downstairs has about 20 viruses. Random files keep appearing on the server (virus files at the root of the shares). AVG and Avast! don't find anything...

For the record, the offending file was:

primesuspect

lol @ "tubby"

where do they come up with this stuff :shakehead

Leonardo

I got a popup today when using Firefox. It was an advertisement for Vonage. Hmm makes me wonder if Mozilla Firefox maybe ain't so free anymore. Until today, I had never, not once received a popup when using Firefox.

primesuspect

Leo, what site were you visiting when that happened? I want to try that out....

Leonardo

I don't know what site it was. I didn't see the popop (pop-under?) until I minimized the Firefox window. Truth be told, after I updated the client, there's been no other popup.

Enverex

Are you sure the popup wasn't from a site which you allowed popups for one reason or another at some point, and has now implemented them for advertising? Just a thought.

Leonardo

Nope. It's still a mystery; but again, no problems since updating Firefox to v 0.10.