Results 1 to 15 of 15
  1. #1
    Drewbert is offline Public Member
    Join Date
    April 2003
    Location
    Mexico
    Posts
    19
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default What I do to help counteract Scumware

    OK. My first post. I don't do a lot of casino stuff, but a friend recommended this board when I mentioned I was loking for sportsbook sponsors.

    Anyway, on my main site, I've inserted the javascript code found at http://www.doxdesk.com/software/js/parasite.html on my most viewed page.

    This adds nothing to the page UNLESS the javascript code detects a parasite on the persons browser. If it does, it posts a warning about that particular scumware, and a link to where they can find instructions to remove it.

    Here's 1 hours worth of stats, 6 to 7pm on a Saturday:

    1278 unique surfers visited the site
    1132 of those were using MS IE
    1089 of those were using MS IE on Windows

    786 BHO instances reported (most surfers, if they had parasites, had more than one)

    Instances found, BHO name

    89 BDE (that's 8% of the people using MSIE/Win! - 3d media popup adverts)
    72 NewDotNet (DNS extension)
    54 NetworkEssentials (delivers targetted pop-up's)
    50 HuntBar (23 are HuntBar/Link - typically used to hijack affiliate fees from merchant sites)
    47 MoneyTree (porn site dialler)
    43 IEAccess (porn site dialler)
    28 IPInsight (form entry logger/spy)
    26 MySearch (search hijacker)
    23 HotBar (dynamically adds toolbar buttons to competitors' sites)
    21 CometCursor (dynamically delivers competing advertisements)
    21 IGetNet (hijacks MSN/Netscape search queries)
    20 lop
    20 RapidBlaster
    19 Comload
    19 OnlineDialer
    17 FavoriteMan
    15 webHancer
    14 CnsMin
    13 BargainBuddy
    13 Transponder
    12 CommonName
    11 FreeScratchAndWin
    11 TopText
    10 SaveNow
    10 UCmore
    10 Xupiter
    9 WurldMedia
    9 DialerOffline
    8 DownloadReceiver
    8 Onflow
    7 SubSearch
    6 TinyBar
    6 InetSpeak
    6 StarDialer
    5 StripPlayer
    5 Gator
    3 BrowserToolbar
    2 DailyWinner
    2 AdultLinks
    2 ezCyberSearch
    2 NetPal
    2 SideStep
    2 Srng
    1 AccessPlugin
    1 Aornum
    1 BrowserAid
    1 DialerActiveX
    1 eXactSearch
    1 FlashTrack
    1 IEPlugin
    1 InternetWasher
    1 MasterDialer
    1 NewtonKnows
    1 NowBox
    1 SearchAndBrowse
    1 SearchExplorer
    1 XDialer

    Descriptions of all these parasites can be found at http://www.doxdesk.com/parasite/

    If everyone slapped that little javascript code on their websites, joe average surfer would find out he had parasites a lot quicker, and hopefully remove them and return the revenue potential to the people that deserve it - the site owners!
    Captain Stupid

  2. #2
    Pam712's Avatar
    Pam712 is offline Assistant Manager
    Join Date
    February 2002
    Location
    England
    Posts
    2,437
    Thanks
    42
    Thanked 42 Times in 24 Posts

    Default

    Welcome to the board Drewbert and thanks for a great first post

    Yes educating your visitors about the spyware/parasiteware which may be installed on their computer is one of the most important things you can do to counteract scumware. Im not familiar with that particular script but I guess it points infected visitors to a removal program such as Adaware which helps them to clean up their system.

    I run Adaware on a regular basis and I never fail to be amazed at the amount of scumware which manages to sneak itself onto my system - and I consider myself an educated user! It is truly a minefield out there but education is our best line of defence

    Pam

  3. #3
    Dominique's Avatar
    Dominique is offline Private Member
    Join Date
    March 2002
    Location
    The Boonies
    Posts
    4,777
    Thanks
    452
    Thanked 724 Times in 299 Posts

    Default

    Thank you Drewbert!

    I will install this for sure.

    That one piece of code is all that is needed?

  4. #4
    VPJunkie is offline Private Member
    Join Date
    December 1969
    Posts
    21,916
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default

    WOW!! :eeek: THANK YOU for that post - what great information that is!!

  5. #5
    Joel is offline Public Member
    Join Date
    December 2002
    Location
    Melbourne - Australia
    Posts
    566
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default

    Drewbert,

    Hey great post thanks for taking the time to look us up, and to then post this info

    I do have one question though.

    Where do I run the script from in

    Code:
    Between the <head>tags</head> 
    
    or 
    
    can I place it in a table, thus if a bug is found, it writes the
    message to the surfer in the table?
    
    or can I place it in an <iframe>tag</iframe>


    Take it easy



    Joel
    http://www.casinolinkback.com - the easy way to SEO popularity
    ---
    http://www.showme-the-money.com
    http://www.bonuscasinocash.com
    ---
    What if the hokey-pokey really IS what it's all about?
    ---

  6. #6
    Drewbert is offline Public Member
    Join Date
    April 2003
    Location
    Mexico
    Posts
    19
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default Too easy

    >That one piece of code is all that is needed?

    Yup.

    And the links that appear if a surfer is infected just go to web pages to telling them exactly how to manually remove the software from their computer. No extra programs or downloads are required.

    Here's an email from a happy customer from my site:

    "I would just like to drop an email to thank your website, i stumbled upon it by accident but as a result found that my computer was riddled by parasites which i have been able to eliminate.

    Again, many thanks,"

    Together, we CAN make a difference. :^)

    You have to be careful when recommending software that cleans up parasites. Some of them have it in for cookies as well, which ruins affiliates who use places like Commission Junction and Befree for revenue streams.

    Also, many adblocker programs (that block banner adverts from appearing) do it in such a way that - currently - break all links (even text links) going to Commission Junction and many other advertising systems.

    You may well find some casino systems being blocked this way. I can delve further into this if you are interested.
    Captain Stupid

  7. #7
    Dominique's Avatar
    Dominique is offline Private Member
    Join Date
    March 2002
    Location
    The Boonies
    Posts
    4,777
    Thanks
    452
    Thanked 724 Times in 299 Posts

    Default

    That would surely be extremely interesting!

    Do you know of any sportsbooks being blocked like that?

  8. #8
    Spearmaster is offline In Memoriam, 1964-2010
    Join Date
    November 2002
    Posts
    1,993
    Thanks
    47
    Thanked 141 Times in 70 Posts

    Default

    Great timing LOL - just today I literally went to download the script (having not seen your post yet) - and at the same time searched for a script to detect ad blockers (nothing good, all either encrypted and require connection to their servers).

    What a strange mix - trying to prevent ads (Gators) and yet make sure ads appear (preventing ad blockers)... and yet neither suit my purposes at this time.

    With the doxdesk script, I am going to be looking for only Gator installations and trying to develop something that will prevent Gator pops.

    For the anti-ad blockers, the ones I found are not good because they prevent access to the site - which is not what I want to do - what I want to do is get the ad delivered

    Your stats are tremendous - I am shocked that only 5 Gator installations were detected...

    NewDotNet is nothing to worry about, it helps to recognize the .game, .chat, .club and other New Net extensions... (I own nine) - the only thing it does is redirect you to a search page when you try to access a domain that does not exist.

    I would be very interested if you manage to find or write a script which can detect ad blockers.

    BTW, welcome to GPWA!

    Joel - you can add the script, or the link to it, anywhere on your pages. According to Doxdesk:

    Code:
    To add the script to a page, include code like the following (which assumes a direct link to the script at my site) in your HTML at the point in the page you want the warnings to appear: 
    
    <script type="text/javascript" src="http://www.doxdesk.com/file/software/js/parasite.js"></script>

  9. #9
    Drewbert is offline Public Member
    Join Date
    April 2003
    Location
    Mexico
    Posts
    19
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default Location, location, location

    Joel,

    It won't work if you stick it in the header.

    In a table is fine. Not sure about an iframe, but that shouldn't cause any problems.

    OK, time to type up the post on adblockers...
    Captain Stupid

  10. #10
    Drewbert is offline Public Member
    Join Date
    April 2003
    Location
    Mexico
    Posts
    19
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default

    I am shocked that only 5 Gator installations were detected...
    Unfortunately, it will only detect a half-installed gator. Once gator is completely installed, the javascript can't detect it. :^(

    But the parasite that was found the most was BDE - that is apparently installed by Kazaa, which also installs a version of TopMoxie which is a big commission-diversion system.

    There are lists out there of what sponsors/merchants that scumware like TopMoxie and Gator divert commissions from. I need to have a hunt around.
    Captain Stupid

  11. #11
    Spearmaster is offline In Memoriam, 1964-2010
    Join Date
    November 2002
    Posts
    1,993
    Thanks
    47
    Thanked 141 Times in 70 Posts

    Default

    Actually, it worked fine in a header, or at least it did on my test page which had nothing but the header.

    The problem with that is that the detection message will show up wherever the script is installed.

    My advice is to do one of two things: install it wherever you want the message to display, or modify the script by removing the last few lines:

    Code:
    /*@cc_on
    @if (@_jscript_version>4)
      try { parasite_write(); }
      catch (e) { parasite_wscript(); }
    @end @*/
    then putting the script in your header. Then, where you want to perform the check, you put in this code:

    Code:
    <script>parasite_write();</script>
    I don't think there will be many instances where parasite_wscript() is called, I think that's meant for other uses such as checking one's own computer.

    Unfortunately, it will only detect a half-installed gator. Once gator is completely installed, the javascript can't detect it. :^(
    Ah yes, I see that now Gotta have a look at my registry... surely if it can detect the installer DLLs, it can also detect Gator somehow...

    ... but wait a minute - I have Gator completely installed... and it detected it just fine...

  12. #12
    former member 2 is offline Public Member
    Join Date
    June 2002
    Posts
    1,530
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default

    welcome to the boards Drew.

    interesting stuff. Thx much.

  13. #13
    aces2 is offline Public Member
    Join Date
    April 2003
    Location
    Nashvlle, TN
    Posts
    8
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default

    Great info. Thank you
    Melvin A Oldaker
    Webmaster@acesgrandcasino.com
    Aces Online Casino Search Engine
    Oldaker Group of Companies
    http://www.acesgrandcasino.com

  14. #14
    Drewbert is offline Public Member
    Join Date
    April 2003
    Location
    Mexico
    Posts
    19
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default A bit of a laugh

    Just in case you haven;t seen this one already, an article from a couple of months ago where the scumware CEO's plead innocence, and sainthood...


    http://www.clickz.com/aff_mkt/aff_mk...le.php/1580691
    Captain Stupid

  15. #15
    VPJunkie is offline Private Member
    Join Date
    December 1969
    Posts
    21,916
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default

    Cool article, Drew - thank you! k: I want to go back and read all the articles in the series when I get a few more minutes.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •