I think this is an adware question...
Page 1 of 2 12 LastLast
Results 1 to 10 of 12

Thread: I think this is an adware question...

  1. #1
    Junior Member
    Join Date
    Jan 2011
    Location
    Bay Area, CA USA
    Posts
    8

    I think this is an adware question...

    My main internet activity is doing Google/Yahoo searches. I'm using the book 'Google And Other Search Engines'. My major problem is that maybe one out of ten sites that show up on a search (lets say 'HDCP and Microsoft') seem to be bogus. They sound like exactly what you want, but the instant you click on such a site, you get re-directed to some differert site....usually a 'hostage' site, or one armed with a popup-type forced downloader. I'm wondering if anyone knows how to escape these sites (other than re-boot)? I'm currently using public computers, but plan to get home PC this year, and hope to have some defense against this pain in the rump before then!

  2. #2
    Gonzo District BOFH westin's Avatar
    Join Date
    Jan 2006
    Location
    SW MO
    Posts
    1,188
    Some of the risk might be mitigated by using the immunize feature of Spybot Search and Destroy. It will cause "known bad" domains to resolve to 127.0.0.1 [localhost].

    Another way to prevent this, is to use either NoScript with Firefox, or disable scripting in whichever browser you are using. With NoScript, it is easy to tell the browser to allow scripts from certain sites if you decide that they are safe for use.
    \"Those of us that had been up all night were in no mood for coffee and donuts, we wanted strong drink.\"

    -HST

  3. #3
    Keeping The Balance CybertecOne's Avatar
    Join Date
    Aug 2004
    Location
    Australia
    Posts
    659
    Although, chances of being able to do this may be slim as it is a public computer which is most likely locked down for public users..... but then again dot dot dot


    CTO
    "Any intelligent fool can make things bigger and more complex... It takes a touch of genius --- and a lot of courage to move in the opposite direction."
    - Albert Einstein

  4. #4
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190
    You can certainly set FF to report redirects and let you block them.There are a variety of tools that rate sites in Google searches at least. I believe MCAfee do a free one, and possibly AVG?

    You might also look at sandboxed browsing such as Sandboxie and Fortres Grand?

    With public computers it is down to the administrator to set the security. You might be able to pursuade them to implement some of these options, but I wouldn't hold my breath waiting
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  5. #5
    Dissident 4dm1n brokencrow's Avatar
    Join Date
    Feb 2004
    Location
    Shawnee country
    Posts
    1,242
    Sounds like that computer's infected. Redirects are symptomatic
    of trojans and viruses. If you can, check the LAN settings in
    the "Connections" tab under "Internet Options" in the "Control
    Panel" and see if a proxy is enabled. Trojans will often add a
    proxy setting.

    If it's not your PC, you should check with the admin before
    toggling (changing) anything.
    Last edited by brokencrow; January 18th, 2011 at 05:50 PM.
    “Everybody is ignorant, only on different subjects.” — Will Rogers

  6. #6
    Only african to own a PC! Cider's Avatar
    Join Date
    Jun 2003
    Location
    Israel
    Posts
    1,683
    Give WOT a try

    http://www.mywot.com

    Nihil, doesnt Winpatrol also harass you if someone is trying to change your default home page?
    The world is a dangerous place to live; not because of the people who are evil, but because of the people who don't do anything about it.
    Albert Einstein

  7. #7
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190
    Hi Cider,

    Yes, Winpatrol monitors for system changes. I would also suggest looking at Tall Emu's (yes they really call themselves that ) "Online Armor" which is a combined firewall and behavioural monitoring suite, and the free version of AdAware, which seems to have sharpened its act up of late, as it now scans interactively as well.

    This is my wife's newest computer and it is running Wot and McAfee Site Advisor, as well as Winpatrol, Online Armor, and Avira. No problems so far.

    For general internet browsing we use FF, as it has a wide range of security plugins, and will also warn you about homepage changes. There is a plug-in that will tell you (in the system tray) what site you are really on, so you can check it before entering personal or financial details.

    I think that we have two basic issues here?

    1. Is the site what it claims to be.
    2. Does the site try to infect or hijack you?

    Unfortunately, the latter frequently involves sites that are fundamentally legitimate, but have been infected themselves. The former is generally just a waste of your time unless you start clicking on links.

    Bizzarely, you are probably safer surfing pr0n sites than that of your local police force! I saw a recent analysis of infected sites (>700) that showed that only 1 in 100 purported to be of an "adult" nature.

    Well, that's my excuse and I'm sticking to it!

    I also believe that part of the trick is to get familiar with search engine results?

    The site may look like what you want, but is the address plausible and does the description contain anything that is obviously off topic and irrelevant?

    Sites like that you don't bother to visit because it is an obvious ploy to confuse automatic content filters

    I would also recommend checking your browser to see if it will block redirects............FF certainly does and asks you if you want to allow it on an event by event basis.
    Last edited by nihil; January 19th, 2011 at 02:48 PM.
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  8. #8
    Junior Member
    Join Date
    Jan 2011
    Posts
    3
    you can download malwarebyte, it's a great soft to solve problem!

  9. #9
    Banned
    Join Date
    Jan 2008
    Posts
    605
    Your problem is local policy. You're not worthy enought to have any privileges on a computer. Reinstall, add a guest account, edit and the group policy.

  10. #10
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190
    @xtreme164

    you can download malwarebyte, it's a great soft to solve problem!
    The free download version of Malwarebytes is an on demand scanner only. I agree that it can be useful in solving problems but I think that Varsel's question is how not to get the problems in the first place?

    I am afraid that I cannot comment on the commercial version as I have never used it.

    @The-Spec:

    Your problem is local policy.
    More likely a lack of it?

    From Varsel's original post:

    I'm currently using public computers, but plan to get home PC this year, and hope to have some defense against this pain in the rump before then!
    So it is the public site's administrator's responsibility.

    You're not worthy enough to have any privileges on a (public) computer.
    True, the doctrine of least privilege should apply, but I doubt if it does to many public installations as the admins couldn't give a rodent's rectum.

    Reinstall, add a guest account, and edit the group policy.
    But not on a public computer.........it isn't yours. Also, I don't believe that a reinstall is required. When you have your own machine use a least privilege account, and use the Windows "run as" option if you need to escalate it.

    The problem would seem to be that a lot of legitimate sites redirect you for perfectly legitimate reasons. At the end of the day it is up to you, the user, to decide whether to clicky clicky?

    A little common sense can go a long way............for example: "what is the name of the site?.........does that really sound like the kind of site that would have the information I am looking for?". Remember that search engines can be fooled, and frequently are
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

Similar Threads

  1. Question Time
    By jm459 in forum Tech Humor
    Replies: 1
    Last Post: April 14th, 2004, 02:41 PM
  2. Maximum performance question
    By Fasheezy in forum Hardware
    Replies: 5
    Last Post: February 5th, 2004, 04:25 PM
  3. Test Your General Linux Knowledge
    By smirc in forum AntiOnline's General Chit Chat
    Replies: 6
    Last Post: May 13th, 2002, 05:35 PM
  4. Test Your Knowledge of Redhat?
    By smirc in forum AntiOnline's General Chit Chat
    Replies: 3
    Last Post: May 13th, 2002, 04:24 AM
  5. Question Bout AntiPoint Assignment
    By NetSyn in forum Site Feedback/Questions/Suggestions
    Replies: 15
    Last Post: May 8th, 2002, 02:45 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •