I opened firefox After about an hour of the system being in standby and in theSponsored Links row there were 2 new entries

http:/ /bom07s30-in-x03. 1e100. net/ (I dismantled the URLs to prevent accidental clicks)

pnbomb-ac-in-x0e.1e100

I right clicked and searched in Google and it showed up as this

pnbomb-ac-in-x0e.1e100 Sponsored it disappeared after a while, just to be sure I ran sudo lsof -i and noticed firefox was connected to this url

maa05s15-in-x03.1e100.net

I am not sure if am infected or this is just a glitch(I obviously didn’t click on the links)

    • somethingsomethingidk@lemmy.world
      link
      fedilink
      arrow-up
      4
      ·
      10 months ago

      Install clamav and run a scan. You will probably get false positives.

      For instance the gnome polkit agent has a “malicious” image that it tries to load at start and if it succeeds it kills the program before it can run. This is to keep an actually malicious icon from being used. I spent days on that one lol

        • redcalcium@lemmy.institute
          link
          fedilink
          arrow-up
          2
          ·
          9 months ago

          Depends on the malware database you use, but out of the box it’ll catch wide range of stuff, even linux malwares (which is rare but exists and mostly infect vulnerable web servers).

      • Atemu@lemmy.ml
        link
        fedilink
        arrow-up
        9
        ·
        edit-2
        10 months ago

        Note that anti-virus can only assert that you are infected, not the opposite.

        • You’re saying even if you’re not confirmed as infected, you’re not necessarily confirmed as not being infected. In other words, you’re talking about false positives.

          Am I understanding you correctly?

          • NotJustForMe@lemmy.ml
            link
            fedilink
            arrow-up
            2
            ·
            9 months ago

            The opposite. Not found negatives. Anti-virus software can only tell you that it didn’t find a virus, not that there aren’t any.

            • EveryMuffinIsNowEncrypted@lemmy.blahaj.zone
              link
              fedilink
              arrow-up
              1
              ·
              edit-2
              9 months ago

              Yeah, what you just said is what I said I thought you said. (@_@)

              We’re on the same page; it’s just that wording is hard.

              Also, you all were right; I was wrong. Admission given. 👍

              • Suspiciousbrowsing@kbin.social
                link
                fedilink
                arrow-up
                1
                ·
                9 months ago

                I think you’re on the same page, but mean false negatives not false positive.
                False negatives being the potential that you have the virus, but the scanner wasn’t able to identify it so returned a “you’re all clean” when in fact, you’ve got a dirty virus and should have listened in health class.