Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can you get a virus by hovering over an ad?


  • Please log in to reply
15 replies to this topic

#1 Stipl3x

Stipl3x

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:30 PM

Posted 21 February 2016 - 01:15 PM

Hi!

When I was on utorrent I saw that 2 ads and when I hovered my mouse over them it changed to the write pointer and the hand, but of course, i didn't clicked them

And then I've asked this question that I hope you can answer to me

Can you get a virus or can the ad open it self just by hovering the mouse over it (on web browser and apps like utorrent) or you need to click it?

Thanks in advance and sorry for my English!



BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,317 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:01:30 PM

Posted 21 February 2016 - 02:15 PM

It's happened before. Haven't seen any evidence of that happening recently.

You are taking a huge risk using utorrent to download free stuff like music, movies, cracked programs, etc. May be illegal, too.

Some of the most dangerous malware is downloaded with those files. Not to mention the adware installed by just downloading and

using utorrent.

 

If you have installed utorrent run these programs and see if I am right about the adware.

 

Download Malwarebytes' Anti-Malware from Here

Double-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).

  • Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.
  • Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.
  • Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.
  • Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.
  • If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).
  • When MBAM is finished scanning it will display a screen that displays any malware that it has detected.
  • Click the Remove Selected button.
  • MBAM will now delete all of the files and registry keys and add them to the programs quarantine. When removing the files, MBAM may require a reboot in order to remove some of them. If it displays a message stating that it needs to reboot, please allow it to do so.
  • While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.
  • The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Logs.

POST THE LOG FOR  REVIEW.

 

Download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
  • download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#3 Stipl3x

Stipl3x
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:30 PM

Posted 21 February 2016 - 02:24 PM

Thanks for your answer!

I use Malwarebytes :D and Ccleaner for clearing my cache but I will think about adwcleaner too ;)

All I wanted to know was if it is possible to an ad to open by itself just by getting the mouse over it, especially in web browser

I've asked that because I wasn't sure...the whole thing about ads it's very strange for me....ok..the ads are good..but some can really fill your pc with add-ons and things that you don't want.


Edited by Stipl3x, 21 February 2016 - 02:25 PM.


#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,756 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:02:30 PM

Posted 21 February 2016 - 02:30 PM

Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users. Hackers are also known to exploit Flash vulnerabilities which can lead to malware infection. When visiting a website that hosts an HTML page which requires a Flash script, users may encounter a malicious Flash redirector or malicious script specifically written to exploit a vulnerability in the Flash Interpreter which causes it to execute automatically in order to infect a computer.Keep in mind that even legitimate web sites and the ads they display can be a source of infection...exploit kits and drive-by downloads.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#5 Stipl3x

Stipl3x
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:30 PM

Posted 21 February 2016 - 02:42 PM

Thank you very much for your answers! :D

But the thing is that I know some of these things because, trust me, I do a lot of research

But for the first time this question came to my mind...so yeah..I just want to know if it's possible :D


Edited by Stipl3x, 21 February 2016 - 02:44 PM.


#6 buddy215

buddy215

  • Moderator
  • 13,317 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:01:30 PM

Posted 21 February 2016 - 02:57 PM

Sounds like you need to clean up the adware on your computer.

 

If you are not using Adblock Plus you should install it in your browser(s). Once installed click on the ABP icon and 

choose Filter Preferences. UNcheck the box next to allow some non-intrusive advertisements. If you are seeing ads

after doing that then you have adware you need to clean up.

Adblock Plus - Chrome Web Store

Adblock Plus :: Add-ons for Firefox

 

You can block the ad and tracking cookies from installing in your browsers. Then run CCleaner to remove the existing ones.

How to disable third-party cookies in all major web browsers


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#7 Stipl3x

Stipl3x
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:30 PM

Posted 21 February 2016 - 03:11 PM

I have Adblock Plus too :D

And it really helps

But just to know about what ads I am talking about is these ads with live movement...hope it's correct :))) ..not an English native speaker :( .... like the ads with shooter or casino games or the ads that say that you won a prize...I think they appear in Yahoo Messenger too..I don't know right know because I've stopped from using Messenger :)

This is just for my curiosity, because these ads with movement seems a little strange when you see them

But thank you very very much for your research because now I have some solutions if I will need help someday with ad cleaning

Sorry that I didn't specified at the top that it's just for curiosity...really didn't want that anyone to lose their time with stupid research just for my "paranoid visions" :)))))

Thanks again! ;)



#8 buddy215

buddy215

  • Moderator
  • 13,317 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:01:30 PM

Posted 21 February 2016 - 03:14 PM

Most if not all the ads you are mentioning can be blocked using Adblock Plus. Simply right click on the ad and choose to block it using

Adblock Plus. I only see ads that I want to see....


“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#9 Stipl3x

Stipl3x
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:30 PM

Posted 22 February 2016 - 09:44 AM

Thanks

Good to know that thing

I really appreciate your tips and I think they are very useful ;) , but...unfortunately... all I want to know is that if it is possible to an ad to open itself or to infect you just by hovering the mouse over it without clicking on it. And I refer to ads from browser and ads from apps like Messenger. Just in theory, of course, and for my curiosity :)

But if you are not sure it's ok! ;)

I don't expect that someone could ask my stupid questions...because yeah...every day I have to face a lot questions like this inside my head :))) It seems that I don't have an occupation :D



#10 rp88

rp88

  • Members
  • 3,060 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:06:30 PM

Posted 22 February 2016 - 12:12 PM

You don't even need to hover over an advert in the browser* to be infected in some cases, the mere loading of the ad can be enough when certain exploit methods are used. my advice would be to run an ad blocker, a script blocker and an anti-exploit program. Noscript for firefox is a good scriptblocker, malwarebytes anti-exploit is a good anti-exploit program, both are free. The ad blocker will directly block adverts, the script blocker will block adverts as a side effect but primarily it will act to prevent the loading of anything which would make exploits possible, the anti-exploit program sits as a layer of defence behind these but infront of your antivirus and catches anything that looks to be trying to break free from the browser and take control of the rest of the system.

One other tip, make sure no plugins are set to be automatic, disable those you don't use, set the rest to "ask to activate"/"click to play" this will help further prevent video adverts and certain types of exploit, many rely on plugins but a few rely on the browser itself, which is why you want a script blocker.


*adverts in other programs are a whole lot more confusing, whether they can endanger you depends on the exact nature of the program they are displaying in.

Edited by rp88, 22 February 2016 - 12:12 PM.

Back on this site, for a while anyway, been so busy the last year.

My systems:2 laptops, intel i3 processors, windows 8.1 installed on the hard-drive and linux mint 17.3 MATE installed to USB

#11 Stipl3x

Stipl3x
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:30 PM

Posted 23 February 2016 - 09:21 AM

Thanks for your answer :D



#12 Stipl3x

Stipl3x
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:30 PM

Posted 23 February 2016 - 11:41 AM

I know it's a little off-topic

Can you please tell me how to stop notifications from mbae when I open the internet browser, but without affecting the program?

:)



#13 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,756 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:02:30 PM

Posted 23 February 2016 - 02:53 PM

Launch MBAE > click the Settings tab > uncheck "Show system tray notification tooltips".
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#14 Stipl3x

Stipl3x
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:30 PM

Posted 24 February 2016 - 09:41 AM

Thanks :D



#15 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,756 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:02:30 PM

Posted 24 February 2016 - 10:12 AM

You're welcome.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users