mrl777
February 24th, 2009, 11:19 PM
I posted this on the Mozilla forum. I just though I'd try it here. This is an odd one so bear with me.
I think someone is attacking my computer by the browser... again.
This happened the last time when I was using XP. I went to Ubuntu thinking that there's no way it would happen again due to the increased security. Now it's starting again.
Ok -- here it goes:
I'm using a different computer than the last one that was attacked and it is now exhibiting the same symptoms as the old one did just before it crashed. Yet, I am using Ubuntu, not Windows XP. I thought this would be more secure. The only thing I can think of is that both systems use the Firefox browser, which may have some plug-in or add-on that was created to clobber the system. Either that or Firefox is not what it appears to be, i.e. it's not a nice program as it has been advertised.
Yesterday, this present system crashed -- then when I pressed the reset button the BIOS came up and said it detected a hardware error and gave me an option to enter the BIOS or press F1 to continue booting. The last time it did this on the other computer I entered the BIOS and the BIOS gave me only one choice when I wanted to exit SAVE settings and exit, or continue. The BIOS NEVER does this. You can save, or exit without saving. I stupidly saved and I think I screwed myself. I should have powered down, bypassed the BIOS and just booted.
When I powered up this new computer today the BIOS give no error message. So, either the power down erased the junk that was sitting in memory, or the nasty need is done regardless of what I do. That last time this stuff happened my OS was wiped out and even the backup drive was affected.
I think it's the browser. Either Firefox is not what it appeasers to be, or the some plug-in/add-on has got some backdoor code in it. I'm thinking that the plug-in monitors the data stream into the browser and if it encounters a unique code string it then goes into another mode of operation where it contacts an IP address and gets further instructions. The remote server then sends it a machine number to keep track of who I am and when I get on the net. When the browser is running it contacts the server using that machine number.
Thermostatically, the Trojan can be activated just by me opening a web mail with that unique character string in it. It could even be a private message on a forum.
This is what I'm thinking. Other than that I can't see how they could do such a thing to both Linux and Windows. The only common denominator between that last system and this one is Firefox and the plug-ins I use. I've uninstalled the plug-ins to see what happens.
If you have any ideas then please let me know. I'm getting tired of this.
The plug-ins are AddBlock, NoScript, Download them all, FEBE, glowywine theme. there are other plug-ins / add-ons, but I'm stating with the ones mentioned. The plug-in are default plug-in, demo print plug-in, Divx Web player, QuickTime, Shockwave, Totem web browser, VLC Multimedia player, Windows media player. It could be any one of those. God knows.
Here's something that I think is important. I am engaging in activity that government doesn't like, in that I am researching and implementing legal tactics that effectively get someone out from under government control. In other words, when this technique is executed properly the individual will no longer be subject to the laws of the legislature. I takes guts to do it, but it works if done properly. I know, because I don't use a driver's license or updated the stickers on my plates and they don't stop me.
My theory is this: --- big brother writes some nice software (plug-ins or add-ons) that people will load and use, where 99.999 % of the users are never bothered by the Trojan because they're good little slaves that behave. But when a guy like me comes along and starts trashing their control over people and teaching others to execute the process then they get a little upset. I think I'm being attacked, and no I'm not a tinfoil-hat-head. Here's something else, email was being prevented from getting to me and it was only one man's emails. IT was the guy who was teaching me this method. We communicated for about three months, then he stopped responding. He then answered and said he was responding to all my emails but evidently they were not getting through. The reason he got through was because he use his email client and not his web mail. Then, some of his emails got blocked again, and I went into gmail web male instead of using my email client and I saw some of the block emails sitting on the gmail server. Only this man was being blocked and no one else. It was shortly after that (days) when my system was taken out. I was onto them and I was investigating. They didn't want me to figure it out, so they took me out. That's why I'm thinking what I'm thinking. Big brother is here.
Again, here are the facts.
1) my last PC was running XP.
2) this new PC is running Ubuntu.
3) the common denominator is that both PCs were/are running Firefox with the same plug-ins and add-ons.
I have the Ubuntu firewall running at maximum security level and I'm behind a linksys wireless system. The last system was on dial-up.
I think someone is attacking my computer by the browser... again.
This happened the last time when I was using XP. I went to Ubuntu thinking that there's no way it would happen again due to the increased security. Now it's starting again.
Ok -- here it goes:
I'm using a different computer than the last one that was attacked and it is now exhibiting the same symptoms as the old one did just before it crashed. Yet, I am using Ubuntu, not Windows XP. I thought this would be more secure. The only thing I can think of is that both systems use the Firefox browser, which may have some plug-in or add-on that was created to clobber the system. Either that or Firefox is not what it appears to be, i.e. it's not a nice program as it has been advertised.
Yesterday, this present system crashed -- then when I pressed the reset button the BIOS came up and said it detected a hardware error and gave me an option to enter the BIOS or press F1 to continue booting. The last time it did this on the other computer I entered the BIOS and the BIOS gave me only one choice when I wanted to exit SAVE settings and exit, or continue. The BIOS NEVER does this. You can save, or exit without saving. I stupidly saved and I think I screwed myself. I should have powered down, bypassed the BIOS and just booted.
When I powered up this new computer today the BIOS give no error message. So, either the power down erased the junk that was sitting in memory, or the nasty need is done regardless of what I do. That last time this stuff happened my OS was wiped out and even the backup drive was affected.
I think it's the browser. Either Firefox is not what it appeasers to be, or the some plug-in/add-on has got some backdoor code in it. I'm thinking that the plug-in monitors the data stream into the browser and if it encounters a unique code string it then goes into another mode of operation where it contacts an IP address and gets further instructions. The remote server then sends it a machine number to keep track of who I am and when I get on the net. When the browser is running it contacts the server using that machine number.
Thermostatically, the Trojan can be activated just by me opening a web mail with that unique character string in it. It could even be a private message on a forum.
This is what I'm thinking. Other than that I can't see how they could do such a thing to both Linux and Windows. The only common denominator between that last system and this one is Firefox and the plug-ins I use. I've uninstalled the plug-ins to see what happens.
If you have any ideas then please let me know. I'm getting tired of this.
The plug-ins are AddBlock, NoScript, Download them all, FEBE, glowywine theme. there are other plug-ins / add-ons, but I'm stating with the ones mentioned. The plug-in are default plug-in, demo print plug-in, Divx Web player, QuickTime, Shockwave, Totem web browser, VLC Multimedia player, Windows media player. It could be any one of those. God knows.
Here's something that I think is important. I am engaging in activity that government doesn't like, in that I am researching and implementing legal tactics that effectively get someone out from under government control. In other words, when this technique is executed properly the individual will no longer be subject to the laws of the legislature. I takes guts to do it, but it works if done properly. I know, because I don't use a driver's license or updated the stickers on my plates and they don't stop me.
My theory is this: --- big brother writes some nice software (plug-ins or add-ons) that people will load and use, where 99.999 % of the users are never bothered by the Trojan because they're good little slaves that behave. But when a guy like me comes along and starts trashing their control over people and teaching others to execute the process then they get a little upset. I think I'm being attacked, and no I'm not a tinfoil-hat-head. Here's something else, email was being prevented from getting to me and it was only one man's emails. IT was the guy who was teaching me this method. We communicated for about three months, then he stopped responding. He then answered and said he was responding to all my emails but evidently they were not getting through. The reason he got through was because he use his email client and not his web mail. Then, some of his emails got blocked again, and I went into gmail web male instead of using my email client and I saw some of the block emails sitting on the gmail server. Only this man was being blocked and no one else. It was shortly after that (days) when my system was taken out. I was onto them and I was investigating. They didn't want me to figure it out, so they took me out. That's why I'm thinking what I'm thinking. Big brother is here.
Again, here are the facts.
1) my last PC was running XP.
2) this new PC is running Ubuntu.
3) the common denominator is that both PCs were/are running Firefox with the same plug-ins and add-ons.
I have the Ubuntu firewall running at maximum security level and I'm behind a linksys wireless system. The last system was on dial-up.