Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

https breaking software


  • Please log in to reply
16 replies to this topic

#1 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 5,582 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:51 AM

Posted 23 February 2015 - 02:59 PM

http://www.howtogeek.com/210265/download.com-and-others-bundle-superfish-style-https-breaking-adware/


Condobloke

Outback Australian  

 

fed up with Windows antics...??

 

LINUX IS THE ANSWER

 

I USE LINUX MINT EXCLUSIVELY... NO DUAL BOOT, NO VIRTUAL MACHINE

 

 

 Failure is not an option. It comes bundled with your Microsoft product.

 

 

 


BC AdBot (Login to Remove)

 


m

#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,581 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:02:51 PM

Posted 23 February 2015 - 04:37 PM

...Superfish malware opens big hole for hackers ...beware anti-virus program Avast uses the same trick !
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,197 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Quebec, Canada
  • Local time:02:51 PM

Posted 23 February 2015 - 05:15 PM

I was aware of the issue with avast! breaking HTTPS connection. It's been going on for a while now, I can say at least 4-5 months. I'm surprised this keeps on going. It was a real headache to solve that issue the first time I encountered it.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#4 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:08:51 PM

Posted 23 February 2015 - 07:50 PM

One more reason to stay away from such download portals. First bundled PUPs and now security breaking adware.

Alex

#5 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,581 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:02:51 PM

Posted 23 February 2015 - 10:03 PM

The first reason was reason enough. The second may help to inform folks about the first.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#6 Winterland

Winterland

  • Members
  • 980 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Land of Enchantment
  • Local time:12:51 PM

Posted 24 February 2015 - 06:07 AM

 

Good morning qm7 - with regards to the link you posted - that website suggests & also shows how to disable this Feature in Avast (and also the subsequent clean up for all the browsers) - is this something you recommend?

 

 

I don't want to over-react to everything presented here - and please know that I'm very careful about what I download, where I download from and am also watch every click/window when I'm installing but I do have (and have had) Avast installed for some time now.

 

Is this something that only Avast does, or do other AV's also do this?

 

 

I like to keep my machines locked down pretty well - patched, updated, scanned & backed up - so this I'm comfortable making any changes / practices you suggest.

 

A big thank you to Condobloke for the OP.

 

 

Winterland


Photobucket removed my cool flag - idiots!

 

Every calculation based on experience elsewhere fails in New Mexico.


#7 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,581 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:02:51 PM

Posted 24 February 2015 - 06:14 AM

An ESET researcher at their forums indicated other anti-virus vendors are doing something similar but he didn't provide a list. As time goes on that information will come out just like this I read today.

PrivDog Ad-blocking software by Comodo is worse than superfish
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#8 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:08:51 PM

Posted 24 February 2015 - 06:22 AM

Other AV vendors might be doing similar things, but not all of them. There are some trustworthy vendors.

This is like the AV Comparative report on data transmission again.

Alex

#9 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,581 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:02:51 PM

Posted 24 February 2015 - 06:29 AM

Time will tell and expose those who do.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#10 Winterland

Winterland

  • Members
  • 980 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Land of Enchantment
  • Local time:12:51 PM

Posted 24 February 2015 - 06:32 AM

An ESET researcher at their forums indicated other anti-virus vendors are doing something similar but he didn't provide a list. As time goes on that information will come out just like this I read today.

PrivDog Ad-blocking software by Comodo is worse than superfish

 

It feels like I'm falling down the Rabbit Hole here.

 

@qm7 - so, would you still recommend the NeverMink.dk steps to disable the Avast Feature for an average user?

 

Thanks.


Photobucket removed my cool flag - idiots!

 

Every calculation based on experience elsewhere fails in New Mexico.


#11 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:08:51 PM

Posted 24 February 2015 - 06:33 AM

Time will tell and expose those who do.

I do hope it comes to pass, quietman7 - so I know who to avoid.

Alex

#12 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,581 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:02:51 PM

Posted 24 February 2015 - 06:37 AM

@qm7 - so, would you still recommend the NeverMink.dk steps to disable the Avast Feature for an average user?

That is what I did on my wife's computer since she likes avast.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#13 Winterland

Winterland

  • Members
  • 980 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Land of Enchantment
  • Local time:12:51 PM

Posted 24 February 2015 - 06:50 AM

@qm7 - Thank you!

 

Winterland


Photobucket removed my cool flag - idiots!

 

Every calculation based on experience elsewhere fails in New Mexico.


#14 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,581 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:02:51 PM

Posted 24 February 2015 - 06:59 AM

You're welcome.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#15 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,197 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Quebec, Canada
  • Local time:02:51 PM

Posted 24 February 2015 - 08:13 AM

I knew PrivDog was breaking up a secure connection somehow, but I didn't know how at the time I had calls on that issues. Not only does Comodo bundles a variant of Ask Toolbar on their installation and asks you to use their DNS servers, but it looks like they also "bundles" PrivDog in your installation. Looks like there's only a few trustworthy Antivirus companies left.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users