Drudge Pop Ups - Now More than spyware. Now downloading

Drudge ^ | December 31, 2004 | Pop Up Author

[BJungNan]

My computer is set to advise me if a site I am going to is trying to download something onto my computer and gives me the option to download or cancel. I just went to Drudge's site and got a warning about an attempted download.

Drudge has been dumping at 3 to 7 spyware programs on my computer each time I visit - I've checked by clearing all spyware and then going to his site and checking again. That's bad enough. But, now to have direct downloads from from Drudge, that is not alright.

Likely it is from the same pop-ups and not specifically from Drudge's page, one of his advertisers. Some will say you a pop up blocker but those get in the way of the some of the functionality of sites I use on the net. I tolerate the pop-ups because it is less trouble to click them away than to turn on and off a pop-up stopper program.

The questions are these: Is Drudge being careful enough with the pop-ups he is facilitating through his site? Was there malicious code in the download that was attempted? Will Drudge address this? I have found no such instance on any other site I frequent except those in Asia that seem to love this practice.

One other question: Is anyone aware of any sort of malicious code that can be delivered through a site that wants to download to your computer just by visiting it?

[cajungirl]

happy New Year ya'll. I am boycotting news and only read FR and my life is more peaceful. Thanks above for computer advice!!

If you don't have an IPod, go get one and get the biggest mother they have. It is more fun than a barrel of monkeys. And I am listening to music we haven't listened to in years!!

[topher]

I had some problem with Drudge and sent him email.

No response.

Bump for later.

[rlmorel]

Heh, thats EXACTLY the response I got from Verizon when I got DSL several years ago...

[NewRomeTacitus]

I used to set up new Dell workstations for a small brokerage firm. The first thing we did was erase all the "crapware" Dell loads on all their computers and cleanly reinstall required applications from the support disks. Too many conflict problems from the Dell garbage made this necessary.

Now I work at the Dell factory in Lebanon, Tennessee; but at my present low rung I have yet to gain any insight as to why they persist in the practice of putting problem-plagued software on excellent hardware. To Dell's credit they do implement many redundant steps to insure that the customer recieves the best computer they can provide (in a market where doing that in America is supposed to be impossible). While I see how they are attempting to make their computers dummy-proof I believe the added/addled software problem must be addressed and corrected.

Internet Explorer not only suffers from Microsoft's propriatory schemes, it is just bad code patched and repatched to the point where it's patches cause problems. This is the result of Gate's ongoing campaign to squish or aquire small-time developers in his attempt to to make all things Microsoft. Our movement away from IE is just the beginning of his chickens coming home to roost. Karma - ain't it a b*tch!

[TerryGale]

In short, the well-known copyright management/protection firm Overpeer has figured out how to install adware through Windows Media files. The technique exploits features of the Windows Media DRM functionality to launch special Internet Explorer windows that display popup ads and that also attempt to download and install adware/spyware. This happens when the user opens the Windows Media file for playing.

Some might be tempted to dismiss this new method for distributing adware and spyware as a risk only for those using P2P networks. That snap judgement would be a mistaken and misguided one, though. The P2P file sharing angle on this story is a red herring.

The problem here involves the DRM features of Windows Media, and those features create a new and potentially very effective means for adware vendors to push unwanted software on unsuspecting users who have no interest whatsoever in using P2P networks to trade unauthorized music files.

I should caution readers that the PC World article, while detailed, is still short on specifics and that we still need more information. That said, users should be advised to take the usual steps to protect themselves against adware and spyware. At a minimum that involves:

* locking down Internet Explorer (esp. ActiveX controls, Java applets, and scripting);
* installing spyware prevention utilities such as SpywareBlaster and SpywareGuard;
* installing at least two reputable anti-spyware scanners and keeping them updated;
* keeping your system updated through Windows Update.

In addition to the above, PC World recommends tweaking the settings for Windows Media Player:

said by PC World:* Change windows Media Player setting to give you more warning. Select Tool, Options, Privacy and turn off 'Acquire licenses automatically for protected content'. A dialog box then will warn you each time a protected file attempts to get a license, and it will display the URL from which the file intends to request the license. If you have any doubts about the site, choose 'No.' Changing this setting in Windows Media Player will affect any other players you use that support Microsoft's DRM scheme.

Also, it *appears* that merely switching your default browser to something other than Internet Explorer will not be sufficient to eliminate the threat, as Windows Media Player uses the Internet Explorer engine to open browser windows that function as dialog boxes. Even if you're not actively using Internet Explorer, you should lock it down to prevent its being exploited by rogue WMA files.

http://www.dslreports.com/forum/remark,12245912~mode=flat~days=9999
Source with PC World story links

http://it.slashdot.org/article.pl?sid=04/12/31/1553231&tid=95&tid=97&tid=172&tid=17
/. story: RIAA/MPAA Contractor Deploys Malicious Adware Trojans

(I copied this from another Forum. Anyone who completely understands it should come to my house and check my computer...)

[edchambers]

As you have no doubt read a hundred times already Mozilla Firefox is less vulnerable to pop-ups and spyware than IE.It does load slower and renders some pages slower and some not at all.This is especially noticable on older slower computers it is in fact so much slower on the kids old Pentium 2s I can't get them to use it.Yahoo toolbar now features pop-up blocking and anti spyware which works pretty well.I use both Firefox and a "fortified" version of IE with Spyware Blaster and Yahoo toolbar.I have never made Firefox my default browser because I'm not sure it won't keep some apps that depend on IE from working properly.

[Wiz]

If you want to deal with pop ups, go to the Internet options and shut off or recommend a prompt for scripts to be running.

If you want a software to do the job for you, Proxomitron has the capabilities to terminate the banners and pop ups with also other capabilities. However, if you are having a hard time with the settings, you might want to look into Download.com for the pop up killers that will meet your demands.

[calcowgirl]

Interesting info. I have a new Dell being delivered on the 4th. What's the quickest/easiest way to "erase all the crapware"? (Yes, I am tech challenged, lol).

I've been reading through this thread taking notes of steps to take (mozilla, blackviper, etc.). Any other recommendations will be appreciated and duly noted.

Happy New Year!

[knittnmom]

LDot opens a second window - I used to close the article window looking for the thread window.

[OldCorps]

bump

[Palladin]

My son is showing off his I-pod over here today. What an amazing piece of technology.

Guess I'll put it on my Santa list for next year.

And maybe buy 100 shares of Apple stock on Monday.

[NewRomeTacitus]

I forgot the specific processes that can be deleted, but recall that I used the Task List Programs service at the Answers That Work website to find out what they all do (lots of great stuff there). Once identified you find out where the offending file resides with your Search function and delete them to the Recycle Bin. Restart your computer and check to make sure everything you use still functions correctly. If they do you can safely delete the file from the Recycle Bin for good. Repeat these steps for each individual file. We do it this way to insure that any files that may be critical are not trashed by accident and to take advantage of the Recycle Bin's ability to restore files to the exact location they came from.

Regarding programs consisting of multiple files, I've found that Windows Add/Remove Programs function often does a shoddy job of cleaning out what you wish to get rid of. All programs should contain a removal file called "uninstall.exe" or similar name, though some program writers seem to believe users would never want to delete their creations and don't provide a removal file (lazy/arrogant *#@%s). If you don't find that file within the programs (Windows/Program Files/AOHell, for example) we resort to the Windows Add/Remove Programs utility. Once done go back and check where the program was to insure it was actually removed. If the program isn't listed in Add/Remove Programs you'll have to go to it's location and manually delete it's folder.

Many programs place files in locations other than their dedicated folder under Program Files. Some install under "C:" outside of Windows itself in the tree structure, so don't be surprised to find them there. Many install some files to the "Windows/System" folder in order to function. Those files are often missed by Add/Remove Programs but most won't do any harm by remaining there. Purists will want them gone on principle - they can look up the names of a program's files and root them out with the Search function.

Don't despair over your Dell computer - it's a good machine once you get it "cleaned up". Customers have the option of buying them with nothing installed except the BIOS (Basic Input/Output) files so they can control exactly what they want, but most are opting for pre-installed software packages to take advantage of the passed-along savings.

[Nita Nupress]

I haven't forgotten about this conversation. I'm trying to get the wireless connection to work on the other computer so I can be more comfortable while FReeping. Just wanted to tell you so you wouldn't think I forgot.

[hispanarepublicana]

i'm freeping and drudging on my hp ipaq w/ wifi, and for once, i'm free of the usual drudge 'sludge'.....i hope. plus, i'm 'watching' bowl games w/hubby and freeping at the same time. i love my ipaq.

[calcowgirl]

WOW! Thanks for taking the time. I just printed out your post. It helps a lot. I like the method you described (put in the Recycle bin until you know it still works). I have always been hesitant to delete program files, thinking I will make something important inoperable. This sounds like a safe method.

When I ordered it, I didn't see an option to ask for it to come without the software loaded. I bought it in a hurry because it was 10% off, with free shipping (and I didn't know how long that promotion was going to last). This will be my third Dell desktop, so I have obviously been happy with them. :-) I also have a Sony laptop that has also been a great workhorse.

Thanks again for your input!

[calcowgirl]

No problem! I'll check back (for sure when I get mine delivered, lol)

Hope you get yours up and working smoothly! :-)

[NewRomeTacitus]

You are most welcome.

[Nita Nupress]

Oh, my gosh. I just had the most IRRITATING experience. I finally got the wireless connection up and running, but it took all this time to do it. There's a lesson here for other people like me who know just enough about computers to be dangerous, so I'll explain what happened.

The bottom line: Somehow I accidently disabled the "wireless switch" on the computer yesterday without knowing it.

I think it was when I went into the msconfig to disable some unneeded background clutter.
Yesterday, I opened up the "Msconfig" ("Run" ---> type "msconfig"---> go to "Startup" tab) to disable some of those 49 processes I mentioned earlier on the thread. Evidently, something that I unchecked yesterday served to disable the wireless connection on the next bootup.

While troubleshooting today, it kept on telling me something like "Make sure the wireless switch is turned on." I couldn't figure out where the "Wireless Switch" was -- I've never heard of that! I had a conference with Mr. Google and finally found that the "Fn" + F2 command is supposedly the "wireless switch," but that didn't work either.

After messing with that a while, a message came up saying, "The Intel PRO/Wireless Network Connection is still disabled. Use PROSet/Wireless to enable it." FINALLY, a message that had some useful instructions in it!

I figured out that "Intel PRO/Wireless" was a software program under "Programs," so I opened it up and it told me I had to "enable the radio" in order to enable a wireless connection.

What the heck does a friggin' radio have to do with a wireless computer connection?!! ARRRGGHH!

I'm out of time. Will be back later. lol!

[calcowgirl]

>>I had a conference with Mr. Google...

ROFL! I talk to him daily. Better than a shrink! ;-)

>>What the heck does a friggin' radio have to do with a wireless computer connection?!!

Just a guess, but "wireless"... as in "radio waves"?

Good luck! (and thanks for sharing)

[BJungNan]

i'm freeping and drudging on my hp ipaq w/ wifi...

Cool! What is the wifi? I have the HP Jornada 720 like the one pictured below. I love this thing. Threw away my lap top once I got it. I love the keyboard that comes as part of it and it has an on-board modem or you can connect via cable modem with a socket (CF) card but have not gotten that up and running yet.

The Jornada is the little one on top of the laptop. Closed up it is about the size of an ordinary check book, just a bit fatter and only a bit bigger than an Ipaq. Fits in my front shirt pocket. Keyboard is 70% size. Don't need a mouse - just tap the screen.