 Foistware, And how to avoid it |
Welcome Guest ( Log In | Click here to Register a free account now! )
Register a free account to unlock additional features at BleepingComputer.com
Welcome to Bleeping Computer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
 Oct 2 2005, 12:26 PM
Post
#1
|
|
 Voted most likely  Group: Members Posts: 3,731 Joined: 19-September 04 From: Collingwood, Ontario, Canada Member No.: 2,883  |
This thread will illustrate what happens when you go to a malicious website that won't let you leave without downloading their program. Its very hard to get away from once you go there. It will also discuss what to do when this happens and how to get out of the situation without getting any unwanted malware related programs installed on your computer without your consent or knowledge.
Please be aware that these are only screenshots and nothing will happen to your computer. They are not clickable. The following is based on using Internet Explorer and concerns a feature called "Install on demand". There are instructions at the end of the post for disabling this feature So you click on a link for an anti-spyware program or maybe its a popup or a link in your email and you are taken to a website like this:  If you don't have Install on demand disabled and you use Internet Explorer you are already the unwitting recipient of the following download. It has been downloaded and installed on your computer. You are infected with malware now. This is known as a "Drive By Download".  If you do have Install on demand disabled you receive the above security warning and you would think that you are ok. You click No. You try to navigate away from the site, but wait, what this?  No, no, no, You don't want to do this. You click cancel. Now you get this:  Now what are you going to do? I don't believe that if you clicked Ok on that box that you would have the option of Run or Open, which implies a Cancel option too. I think the download may start right away. Its important not to panic or to get frustrated and click Ok just to make the boxes go away. Personally, I chickened out at this point. If you were using a ZoneAlarm Firewall or any other type that has an Internet Lock this would be the ideal time to use it. In order to get out of this you need to close the browser using the Task Manager/Close Programs feature accessed by using Ctrl+Alt+Delete and closing the page. The second time I went to this site when I forced the window to close I got a blue screen. If I get brave I'll go back and click Ok on that last one.  In Firefox, you can disable the automatic install feature this way: "tools tab", under "tools, options, web features", the default setting is "Allow websites to install software". Uncheck that. Thanks to our jgweed for that info. In Internet Explorer go to Tools>Internet Options>Advanced and take the check mark from Enable Install On Demand (Internet Explorer) and Enable Install On Demand (Other). The consequence of this will be that you will begin to see Security Warnings when something tries to install on your computer. Unless it is something you want to install (which happens rarely) always say no. Many thanks to Pandy for all her hard work on the screenshots in this post and her timely advice. This post has been edited by Pandy: Apr 13 2006, 07:53 AM -------------------- **** We use our powers for good, not evil **** When the only tool you own is a hammer, every problem begins to resemble a nail. Abraham Maslo |
 |
 
|
Posts in this topic
Leurgy Foistware Oct 2 2005, 12:26 PM
Pandy Leurgy. It was my distinct pleasure to assist you.... Oct 2 2005, 12:33 PM Grinler Very informative posts and a great job on the rese... Oct 2 2005, 08:19 PM UKBiker Excellent write up. Well done.
UKBiker Oct 3 2005, 09:45 PM Dollyeyes :clapping: As a newbie..i have just read this item... Oct 8 2005, 11:28 AM Haroldo Your fans over at CoU will see this link Oct 8 2005, 03:46 PM boopme A great wtite up as you know I got hammered by one... Oct 8 2005, 07:37 PM Pandy Oh Haroldo Thank you so much for the link there at... Oct 9 2005, 01:00 AM yanowhiz Great advice! Very helpful in protecting yours... Oct 9 2005, 05:15 AM
Elixer Very helpful for users and a good read. Oct 10 2005, 01:33 PM Albert Frankenstein Thanks for the info. I actually just accidentally... Oct 10 2005, 04:22 PM rms4evr Thanks for the tip! I hate those sites. It... Oct 13 2005, 08:15 PM Ravenshade Thanks for the tips, always appreciated guys. Oct 14 2005, 06:15 PM Animal Leurgy and Pandy,
It is my distinct pleasure to u... Oct 15 2005, 11:05 PM Pandy :woot: Animal Thank you :) Oct 16 2005, 10:21 PM Lily Livered Would someone please look at my post ZoneAlarm Ser... Oct 27 2005, 09:47 AM Greg Tippett "In Firefox, you can disable the automatic in... Dec 11 2005, 06:14 AM Vercingetorix If using Firefox 2, go to Tools > Options > ... Jan 1 2007, 01:20 AM Bobang One more good reason to use Tabbed Browsing: Right... Jan 31 2007, 03:33 AM Turnips
Where's the "web features"? In wha... Nov 16 2007, 07:35 PM tg1911 That was for the older version of Firefox.
Use thi... Nov 16 2007, 08:24 PM soseberg In Internet Explorer go to Tools>Internet Optio... Sep 24 2008, 05:29 AM Nolimit4show Awesome, i may need to pick up ZoneAlarm, Windows ... Mar 11 2009, 05:53 PM
cel07 this is very informative. It's really a big he... Sep 6 2009, 08:11 AM  |
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:
| Lo-Fi Version | Time is now: 9th February 2010 - 03:40 PM |
© 2003-2010 All Rights Reserved Bleeping Computer LLC.