[Greasemonkey] (no subject)

[Chris Cage]

Good call! I had googled this before but hadn't found the answer. 

I thought it was a trojan because I DID have a keylogger trojan that had
gotten into my system. I was able to get rid of the keylogger, but I
thought maybe there was something still deep in the system.
 I installed the software that Time Warner Road Runner has available.
That's the eTrust EZ Armor suite. Looks like the Firewall program that
is included is a rebranded version of Zone Alarm.

I shut down the firewall and sure enough - the script is gone. 

One of the sites in the google results shows the same thing from Zone
Alarm, but it looks like with Zone Alarm version they were nice enough
to throw in a comment tag so that you would know what was going on, such
as:

<!-- ZoneLabs Privacy Insertion -->
<script language='javascript'
src='http://127.0.0.1:1031/js.cgi?aw&r=8042'></script>

With EZ Firewall they aren't so considerate! Would have saved me a lot
of hassle.

Unfortunatly this script isn't totally benign. Several times it has
screwed with JavaScript on other sites and made pages functionaly
unusable.

I know this whole thread got off-topic for Greasemonkey, but I really
appreciate the constructive input that y'all responded with.

Thanks a bunch,
Chris

-----Original Message-----
From: greasemonkey-bounces at mozdev.org
[mailto:greasemonkey-bounces at mozdev.org] On Behalf Of esquifit
Sent: Sunday, June 11, 2006 3:19 PM
To: greasemonkey at mozdev.org
Subject: Re: [Greasemonkey] Removing a trojan script loaded in the
documenthead


A little googling [1] reveals that this line is inserted by your
firewall software Zone Alarm.  Maybe checking your ZA settings is a more
sensible solution.

[1] http://www.google.com/search?q=ZoneLabs+Privacy+Insertion