T
Tdoan14
Guest
how do you prevent stuff like gator, virtual bouncer, comet cursor, etc... from poping up in IE and asking if you want to install it?
Un4gIvEn1 and Krux may want to check those facts 
Its very hard to avoid alot of sites that use so called drive by ActiveX installers and why should you?
I'll give you a quick low down on a few options.
1) You could always just disable ActixeX but that leaves you without it even when you may want the control to run, for example windows update or flash.
2) You could always toggle ActiveX and Scripting on and off with 3rd party controls so you can pick when it runs then quickly turn it back off, ive posted them here before in a thread a page or two away. Useful for the savvy surfer.
3) Then you could setup zones, disable ActiveX in the internet zone, and trust sites that you want to use ActiveX, but that takes time and is a pain to manage. Somewhat helped by tools that let you setup to do just this however.
4) The best way is: With Spyware Blaster
It will set "kill bits" in the registry to stop knowen spyware installer controls from poping up and asking you to install them
Exactly what your looking for! Its very good, check it out:
http://www.wilderssecurity.net/spywareblaster.html
5) This does the same thing but is updated less frequently and is just based around a reg file:
http://www.spywareguide.com/blockfile.php
6) Checkout IESPYADS: This is a block list for IE and adds over 30,000 knowen spyware, adware, malware sites to the restricted zone in IE which will stop them from ever displaying content.
http://www.staff.uiuc.edu/~ehowes/main.htm
My advice is use IESPYAD and Spyware Blaster, they are the perfect pair together, of course both require IE.
Answers such as "don't go on the internet" simply dont cut it as you can now see
Its very hard to avoid alot of sites that use so called drive by ActiveX installers and why should you?I'll give you a quick low down on a few options.
1) You could always just disable ActixeX but that leaves you without it even when you may want the control to run, for example windows update or flash.
2) You could always toggle ActiveX and Scripting on and off with 3rd party controls so you can pick when it runs then quickly turn it back off, ive posted them here before in a thread a page or two away. Useful for the savvy surfer.
3) Then you could setup zones, disable ActiveX in the internet zone, and trust sites that you want to use ActiveX, but that takes time and is a pain to manage. Somewhat helped by tools that let you setup to do just this however.
4) The best way is: With Spyware Blaster
It will set "kill bits" in the registry to stop knowen spyware installer controls from poping up and asking you to install them
Exactly what your looking for! Its very good, check it out:
http://www.wilderssecurity.net/spywareblaster.html
5) This does the same thing but is updated less frequently and is just based around a reg file:
http://www.spywareguide.com/blockfile.php
6) Checkout IESPYADS: This is a block list for IE and adds over 30,000 knowen spyware, adware, malware sites to the restricted zone in IE which will stop them from ever displaying content.
http://www.staff.uiuc.edu/~ehowes/main.htm
My advice is use IESPYAD and Spyware Blaster, they are the perfect pair together, of course both require IE.
Answers such as "don't go on the internet" simply dont cut it as you can now see
J
jumpy
Guest
Thanks for the tips Enyo, how does Spyware blaster "set kill bits in the registry" exactly?
If you checkout the site and the forum it will tell you more but basically every ActiveX control has a ID (CLSID), such as {9F1C11AA-197B-4942-BA54-47A8489BB47F}.
Spyware blaster has a list of IDs knowen to be malware and will set the Compatibility Flags value in the registry (HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\ActiveX Compatibility) so that it windows cant execute that control.
Read this:
http://support.microsoft.com/defaul...port/kb/articles/q240/7/97.asp&NoWebContent=1
Spyware blaster has a list of IDs knowen to be malware and will set the Compatibility Flags value in the registry (HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\ActiveX Compatibility) so that it windows cant execute that control.
Read this:
http://support.microsoft.com/defaul...port/kb/articles/q240/7/97.asp&NoWebContent=1
R
Ramanuman
Guest
Cool tips, Enyo. Thanks.
Hey, I thought I'd hijack this thread and ask a somewhat related question. If you don't mind.
-I caught a bug today which keeps setting my IE (6.0) homepage back to ok-search.com, as well as adding a list of links to my Favorites folder. All the links are in bold, and are titled CHAT EVA, CHAT CINDY, CHAT.... All but one that appeared to be some porn sex engine.
I scanned with Norton 2003, Ad-Aware and Spybot, all updated, and found nothing.
Is it possible that simply viewing the pages, while deleting the links, kept causing it to happen over again ?
-Since there seemed to be no virus or bug, I figured it could be that... I started IE while blocking access through ZA, deleted the links and changed my homepage back to google. Then restarted with access.
It seems fine now...
(Weirdest thing is I haven't been to porn sites lately. Well, not since reinstalling... )
PS- I'M getting tired of this : 2 days ago, after a bug-free run of several years, I tried to run a little something that managed to disable my entire XP installation, even rendering reparation from the installation cd inoperable.
Now this, right when I'm finished formatting and reinstalling all my software.
Hey, I thought I'd hijack this thread and ask a somewhat related question. If you don't mind.
-I caught a bug today which keeps setting my IE (6.0) homepage back to ok-search.com, as well as adding a list of links to my Favorites folder. All the links are in bold, and are titled CHAT EVA, CHAT CINDY, CHAT.... All but one that appeared to be some porn sex engine.
I scanned with Norton 2003, Ad-Aware and Spybot, all updated, and found nothing.
Is it possible that simply viewing the pages, while deleting the links, kept causing it to happen over again ?
-Since there seemed to be no virus or bug, I figured it could be that...
I started IE while blocking access through ZA, deleted the links and changed my homepage back to google. Then restarted with access.It seems fine now...
(Weirdest thing is I haven't been to porn sites lately. Well, not since reinstalling...
)PS- I'M getting tired of this : 2 days ago, after a bug-free run of several years, I tried to run a little something that managed to disable my entire XP installation, even rendering reparation from the installation cd inoperable.
Now this, right when I'm finished formatting and reinstalling all my software.
Checkout:
http://www.spywareinfo.com/articles/hijacked/
You want to use Hijack This as your very first tool to check for malware causing problems with your browser.
http://www.tomcoyote.org/hjt/
Use the tools ive talked about above to prevent this from happening again.
ok-search.com is blocked by IESPYAD
http://www.spywareinfo.com/articles/hijacked/
You want to use Hijack This as your very first tool to check for malware causing problems with your browser.
http://www.tomcoyote.org/hjt/
Use the tools ive talked about above to prevent this from happening again.
ok-search.com is blocked by IESPYAD
R
Ramanuman
Guest
Hey, thanks Enyo.
Nice to be meeting you, btw.
Nice to be meeting you, btw.
R
Ramanuman
Guest
(Woah, it shows that I haven't posted on a forum for a while. I just realized I'd completely screwed up last night's post.)
Hey Damnyank, remember me ?
Hey Damnyank, remember me ?
Originally posted by muzikool
Enyo, thanks for the link to IE-SPYAD! I was hoping to find some info on stopping malware, and I definitely found the right thread. Props to the Search feature too!
Make sure you bookmark the IESPYAD home its updated atleast weekly
Its a fab tool glad you like it.damnyank,
Read through the above thread. Wow!
Enyo, can I hire you to sit guard on my network??? lol. I have a space just above the firewall that would suit. Very comfortable
As already mentioned, this is one helluvah tip. Good Job m8.
IESPYAD really does rock. Once again, thanks for sharing this !!!!
Enyo, can I hire you to sit guard on my network??? lol. I have a space just above the firewall that would suit. Very comfortable
As already mentioned, this is one helluvah tip. Good Job m8.
IESPYAD really does rock. Once again, thanks for sharing this !!!!
Members online
No members online now.
Affiliates
Latest profile posts
Xie wrote on Electronic Punk's profile.
Impressed you have kept this alive this long EP! So many sites have come and gone.
Just did some crude math and I apparently joined almost 18yrs ago, how is that possible???
Just did some crude math and I apparently joined almost 18yrs ago, how is that possible???
Electronic Punk wrote on Sazar's profile.
Rest in peace my friend, been trying to find you and finally did in the worst way imaginable.