Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

https breaking software


  • Please log in to reply
16 replies to this topic

#1 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,040 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:01:30 PM

Posted 23 February 2015 - 02:59 PM

http://www.howtogeek.com/210265/download.com-and-others-bundle-superfish-style-https-breaking-adware/


Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:30 PM

Posted 23 February 2015 - 04:37 PM

...Superfish malware opens big hole for hackers ...beware anti-virus program Avast uses the same trick !
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,670 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:30 PM

Posted 23 February 2015 - 05:15 PM

I was aware of the issue with avast! breaking HTTPS connection. It's been going on for a while now, I can say at least 4-5 months. I'm surprised this keeps on going. It was a real headache to solve that issue the first time I encountered it.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#4 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:04:30 AM

Posted 23 February 2015 - 07:50 PM

One more reason to stay away from such download portals. First bundled PUPs and now security breaking adware.

Alex

#5 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:30 PM

Posted 23 February 2015 - 10:03 PM

The first reason was reason enough. The second may help to inform folks about the first.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#6 Winterland

Winterland

  • Members
  • 995 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Land of Enchantment
  • Local time:09:30 PM

Posted 24 February 2015 - 06:07 AM

 

Good morning qm7 - with regards to the link you posted - that website suggests & also shows how to disable this Feature in Avast (and also the subsequent clean up for all the browsers) - is this something you recommend?

 

 

I don't want to over-react to everything presented here - and please know that I'm very careful about what I download, where I download from and am also watch every click/window when I'm installing but I do have (and have had) Avast installed for some time now.

 

Is this something that only Avast does, or do other AV's also do this?

 

 

I like to keep my machines locked down pretty well - patched, updated, scanned & backed up - so this I'm comfortable making any changes / practices you suggest.

 

A big thank you to Condobloke for the OP.

 

 

Winterland


Photobucket removed my cool flag - idiots!

 

Every calculation based on experience elsewhere fails in New Mexico.


#7 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:30 PM

Posted 24 February 2015 - 06:14 AM

An ESET researcher at their forums indicated other anti-virus vendors are doing something similar but he didn't provide a list. As time goes on that information will come out just like this I read today.

PrivDog Ad-blocking software by Comodo is worse than superfish
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#8 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:04:30 AM

Posted 24 February 2015 - 06:22 AM

Other AV vendors might be doing similar things, but not all of them. There are some trustworthy vendors.

This is like the AV Comparative report on data transmission again.

Alex

#9 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:30 PM

Posted 24 February 2015 - 06:29 AM

Time will tell and expose those who do.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#10 Winterland

Winterland

  • Members
  • 995 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Land of Enchantment
  • Local time:09:30 PM

Posted 24 February 2015 - 06:32 AM

An ESET researcher at their forums indicated other anti-virus vendors are doing something similar but he didn't provide a list. As time goes on that information will come out just like this I read today.

PrivDog Ad-blocking software by Comodo is worse than superfish

 

It feels like I'm falling down the Rabbit Hole here.

 

@qm7 - so, would you still recommend the NeverMink.dk steps to disable the Avast Feature for an average user?

 

Thanks.


Photobucket removed my cool flag - idiots!

 

Every calculation based on experience elsewhere fails in New Mexico.


#11 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:04:30 AM

Posted 24 February 2015 - 06:33 AM

Time will tell and expose those who do.

I do hope it comes to pass, quietman7 - so I know who to avoid.

Alex

#12 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:30 PM

Posted 24 February 2015 - 06:37 AM

@qm7 - so, would you still recommend the NeverMink.dk steps to disable the Avast Feature for an average user?

That is what I did on my wife's computer since she likes avast.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#13 Winterland

Winterland

  • Members
  • 995 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Land of Enchantment
  • Local time:09:30 PM

Posted 24 February 2015 - 06:50 AM

@qm7 - Thank you!

 

Winterland


Photobucket removed my cool flag - idiots!

 

Every calculation based on experience elsewhere fails in New Mexico.


#14 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:30 PM

Posted 24 February 2015 - 06:59 AM

You're welcome.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#15 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,670 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:30 PM

Posted 24 February 2015 - 08:13 AM

I knew PrivDog was breaking up a secure connection somehow, but I didn't know how at the time I had calls on that issues. Not only does Comodo bundles a variant of Ask Toolbar on their installation and asks you to use their DNS servers, but it looks like they also "bundles" PrivDog in your installation. Looks like there's only a few trustworthy Antivirus companies left.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users