Odd Virus/Spyware Issue

grumpycrab · 20 January at 8:48PM

ChilliBob said:

grumpycrab said:

Cheers, yes, that site was there in the notifications. Also, Chrome had picked up it sent shed loads of notifications too.

Quite surprised it wasn't flagged as malicious in any way on Virus Tools - whilst admidditly it doesn't appear to have left say a trojan, or altered registry or left spywyare - if I believe MBam, it's clearly dodgy, and I'm sure if one of the popups were clicked on some other kind of nastyness would be unleashed!

I've seen this lots. Anyone know how browsers allow this to happen AND no tools (as far as I'm aware) pick it up?

ChilliBob · 20 January at 9:20PM

It's the first time I've seen it in a *very* long time to be honest. I sort of thought that kind of thing was behind 'regular' users - only those actively looking at proper sketchy stuff - not Minecraft Colouring lol. I've got the MBam extension for Chrome and Edge on his machine now, hopefully that will help, if/when I decide to allow more websites!

grumpycrab · 20 January at 11:30PM

I googled (again) this issue and its still a user problem "You visit a malicious or compromised website, or click a bad ad, which then triggers web push notifications."
BUT I cannot find mention of any tool that traps this user "inquisitiveness". I know there are URL checkers, eg mcafee webadvisor, so I think the main culprit is clicking a "bad ad". But surely, even MS basic virus/spam protection can detect the bad ads?

Vitor · 21 January at 8:41AM

Could be useful to set the home router to default to a filtering DNS like Cloudflare or Quad9 which will not resolve known compromised URLs and sources of malware.

And add UBlock Origin to the web browser.

ChilliBob · 21 January at 8:44AM

grumpycrab said:

I googled (again) this issue and its still a user problem "You visit a malicious or compromised website, or click a bad ad, which then triggers web push notifications."
BUT I cannot find mention of any tool that traps this user "inquisitiveness". I know there are URL checkers, eg mcafee webadvisor, so I think the main culprit is clicking a "bad ad". But surely, even MS basic virus/spam protection can detect the bad ads?

Yeah, that makes sense, many things that can go wrong with a computer are user generated! I wonder if he'd clicked on anything if it would have kicked any AV/Malware products into action or not. Thankfully we didn't find out.

ChilliBob · 21 January at 8:45AM

Vitor said:

Could be useful to set the home router to default to a filtering DNS like Cloudflare or Quad9 which will not resolve known compromised URLs and sources of malware

I had thought about this before, but wasn't sure how you'd get around it if something was blocked and you wanted to access it - also, based on other websites not filtering out this website, I suspect it would have slipped through.

Vitor · 21 January at 8:51AM

I run Adguard Home on an Asus router flashed with wrt. It sinks about 30% of all URL requests, mostly telemetry from devices 'phoning home' as well as ads.

ChilliBob · 21 January at 8:54AM

As a test, and because it's easy, I've set my laptop to Cloudflare families with malware protection, see how it works out for me for a bit before I change on the router

ChilliBob · 21 January at 8:54AM

Vitor said:

I run Adguard Home on an Asus router flashed with wrt. It sinks about 30% of all URL requests, mostly telemetry from devices 'phoning home' as well as ads.

I'll look into that, not something I've heard of.

Newcad · 21 January at 9:55AM

As well as running a scan with Adwcleaner already suggested above I would also add the FREE "Malwarebytes Browser Guard" extension to the browser(s) in use for ongoing protection:
https://www.malwarebytes.com/browserguard

Odd Virus/Spyware Issue

Comments

Confirm your email address to Create Threads and Reply

🚀 Getting Started

Categories

Is this how you want to be seen?

Get our FREE Weekly email full of deals & guides - and it’s spam-free