C'mon Afterdawn!

Its back...I'll try to get it with FiddlerCap, but for now, here is a screenshot...note the new IP adress:

 

I can't take a screenshot because the malware closes the browser to the desktop with only a dialog box saying message from webpage in the center of the screen. Afterdawn gets closed out with only the dialog box left . Nothing to take a screen shot of except for the dialog box in the center of the screen .

The problem has seemed to stop , atleast for today it has . Yesterday the message was appearing though .

 

It just did it again. I don't know why, but it refuses to do it while Fiddlercap is running. When it happens, it forwards off of afterdawn before any images load.

If google realy can't find these kinds of things, then the ads should have more limited capabilities...banner ads should not have control over the browser.

 

Ive used Ad Muncher for over 2 years and have never had a problem with pop ups or adds.

 

Ok, I know it comes up with firefox as well, so I'll try to grab it with that.

{edit1}
Hmm...it just happened again. I stopped it while it was loading and it looks like it came from a Symantec ad. Still no proof though...

{edit2}
I am getting more and more suspicious of the Symantec ad. When firebug is installed, this is the only ad that does not load (there is just a blank space where the banner should be sometimes; I can't be sure what is meant to be there; but Symantec is the only ad that does not show up no matter how hard i search). I'll keep trying to grab it, but if it was made by symantec, then I am guessing that they would dissable it on proxy'd connections.

 

When firebug is installed, the problem stops, but I think that it is because of these error messages:

"Permission denied for <http://ad.doubleclick.net> to call method Location.toString on <http://forums.afterdawn.com>."

"Permission denied for <http://googleads.g.doubleclick.net> to call method Location.toString on <http://forums.afterdawn.com>."

 

Well then I guess I'm out of ideas...I'll just use a firebug'd firefox on the forums from now on. It is very odd that this is the only site this seems to happen on; while there are thousands of sites with google advertising. Perhapse it has something to do with all the instances of the words, "Spyware", "Virus", and "Malware".

Still, I would have loved to catch these bastards. I guess Symantec will get away with it...

 

Don't know if this will help, but this is what i found in my microsoft security essentials removed box. It sent me to this http://www.microsoft.com/security/p...TrojanDownloader:JS/Renos&threatid=2147609530
Since i switched from avg to MSE I have not had that pop up any more.

 

Thats Good hopefuly it's gone for good!!

 

I like the pop-ups; they let me know that I am being attacked. If it were not for the fact that I like afterdawn so much, I would be smart enough to never come back.

 

The thing to remember/realise is, is that out of the gazillions of members here, there's only one or two of you (that we know about, granted) that are having such problems.. it might be time to rethink those popups..

Believe me, it's not just two of us. when mirosoft puts this on their web site http://www.microsoft.com/security/p...TrojanDownloader:JS/Renos&threatid=2147609530

I have in the last two weeks reformated 4 of my friends computers because they fell for this. and they all got it from different sites not afterdawn. I have many friends that i have recomended afterdawn and cd freaks to, for info. Not all are getting this but some do. They do not belong or sign in, just vist to read the forms and learn, like i did for a long time.
Anyway Hope this is the end of that, as i nolonger get it.