Some type of malware?
Posted: Tue Sep 29, 2009 4:24 pm
Hi. I was told by someone in the Apple Support Forum that I should come here and ask this question, since it has them stumped and they say you guys are the gods of this stuff!
I was looking for free dialup service as a backup. I came across a link in a forum I frequent, and went to the site. Registration was just username and password. I registered, but was suspicious.
So I ran a search and came across complaints that the site (Metconnect.com) was infiltrated by hackers, and they'd installed "urchin.js" trackers. Out of curiosity, I did a find on my computer (Mac laptop, running 10.4.11) and found two instances of this "urchin.js," which apparently comes with Google Analytics? But what was really suspicious was their location: both were found in a folder where I keep pdf copies of credit reports and all my financial information (tax returns, investment account information, electronic copies of paystubs and credit card statements etc.), titled "Credit Reports/Money."
I immediately deleted them both and emptied the trash, disconnected from the internet and started a spyware/keylogger check that comes with Internet Cleanup/Net Blockade, which I keep running at all times and use the feature which lets me know when anyone tries to connect to my computer. I also have my firewall settings turned up to the max/stealth.
However, I am still freaking out and wondering just what information these folks might already have grabbed in those few minutes. The spyware check didn't find anything, but of course I have no idea what kind of damage might have been done before I found and deleted those files.
Does anyone have any experience with this, and know what I might be up against? Thanks SO MUCH for any help you might give!!
I was looking for free dialup service as a backup. I came across a link in a forum I frequent, and went to the site. Registration was just username and password. I registered, but was suspicious.
So I ran a search and came across complaints that the site (Metconnect.com) was infiltrated by hackers, and they'd installed "urchin.js" trackers. Out of curiosity, I did a find on my computer (Mac laptop, running 10.4.11) and found two instances of this "urchin.js," which apparently comes with Google Analytics? But what was really suspicious was their location: both were found in a folder where I keep pdf copies of credit reports and all my financial information (tax returns, investment account information, electronic copies of paystubs and credit card statements etc.), titled "Credit Reports/Money."
I immediately deleted them both and emptied the trash, disconnected from the internet and started a spyware/keylogger check that comes with Internet Cleanup/Net Blockade, which I keep running at all times and use the feature which lets me know when anyone tries to connect to my computer. I also have my firewall settings turned up to the max/stealth.
However, I am still freaking out and wondering just what information these folks might already have grabbed in those few minutes. The spyware check didn't find anything, but of course I have no idea what kind of damage might have been done before I found and deleted those files.
Does anyone have any experience with this, and know what I might be up against? Thanks SO MUCH for any help you might give!!