legitreviews.com

[VirtualLarry]

I searched for A10-4600M, and was led to a page on legitreviews.com.

Now when I attempt to close the page, it brings up a dialog box asking me if I really want to leave the page. I REALLY DISLIKE those "page trap" dialogs.

IMHO, no legit web site would ever use those. Thus, "Legit"reviews isn't so legit in my book.

http://www.legitreviews.com/article/1931/1/

Edit: MAYBE HACKED. DO NOT CLICK.

Edit: Reported to be fixed?

[inf64]

It's legit. They probably just don't want you to leave without clicking on some ads I guess . Don't worry about it.

[Idontcare]

I think they've been hacked:



^ that is what I get when I go to your link.

I don't know what that toolkit does, but Norton blocked it and I was able to close the page without getting the popup you got. You may be infected since you got the pop-up.

[Jaydip]

No such issue here

[inf64]

Wow IDC,good thing I haven't clicked on it :O. My AVG free might have failed for the 1st time,who knows

[VirtualLarry]

Ok, that's a little scary, IDC. I don't run an AV on this box. Is Waterfox 13.0 vulnerable? Flash Player (dunno what version I'm running)?

Any way to know how to check for infection?

http://www.symantec.com/security_res...jsp?asid=24092

Symantec claims you should download and run their "Norton Power Eraser", which I did, and it came up clean, except for "Hosts", but I know I modified my hosts file manually, so that's not a problem.

[ShintaiDK]

Quote:

Originally Posted by VirtualLarry

Ok, that's a little scary, IDC. I don't run an AV on this box. Is Waterfox 13.0 vulnerable? Flash Player (dunno what version I'm running)?

Any way to know how to check for infection?

MS Security essentials is free.

[Zstream]

Every now and then I get an ad from Anandtech that takes up the entire page.... *shrug*

[Jaydip]

I find this quite good http://www.malwarebytes.org/

[bigystyle84]

Chrome warns me of malware when I click the link....

[Idontcare]

Quote:

Originally Posted by VirtualLarry

Ok, that's a little scary, IDC. I don't run an AV on this box. Is Waterfox 13.0 vulnerable? Flash Player (dunno what version I'm running)?

Any way to know how to check for infection?

http://www.symantec.com/security_res...jsp?asid=24092

Symantec claims you should download and run their "Norton Power Eraser", which I did, and it came up clean, except for "Hosts", but I know I modified my hosts file manually, so that's not a problem.

You did exactly what I would do (download the free cleaner and give it a go), if it came up clean then I would personally conclude my system was clean.

You will know if it isn't clean if you start getting browser hijacks (redirects).

The other one you could try is superantispyware which a free trial for their pro edition, install that just to give your system a once-over.

When I was visiting some, uh, questionable websites it was able to find stuff that was causing browser hijacks that Norton wasn't able to find. Just sayen Surfing the web is like being in college and it is the weekend, protection is key.

[AdamK47]

Whenever I come across one of those dialog prompts I immediately kill the browser process. Any input from a dialog could be inviting trouble.

[Idontcare]

Quote:

Originally Posted by AdamK47

Whenever I come across one of those dialog prompts I immediately kill the browser process. Any input from a dialog could be inviting trouble.

I'm of the exact same school of thought. Just because the dialogue boxes are labeled "cancel" or "ok" doesn't mean you aren't actually agreeing to "go ahead and install your root-kit, I accept".

The label on the button and the action that comes from clicking the button are not required to be the same, you just hope they are.

Instead, pull open task manager and deep-6 the PID for the browser itself.

[Majic 7]

Took a chance on my new install of Widows 8 and clicked on the link. No pop up, no warning from defender or Malwarebytes Pro. I do have every security option except in private browsing ticked. I just had to see if 8 and IE10 does make a difference. Scanned with both Defender and MB Pro and nothing showed up. I finally have something that uses 8 threads, Defender was going over 80% on all threads occasionally, usually about 50%.

[kowalabearhugs]

I run AdBlocker, Ghostery and NoScript. Pages load much faster and I maintain a lil more privacy. Many popups are javascript based - NoScript simply removes these scripts sans the items in my whitelist. Temporary and permanent whitelisting is available.

[kaos kid]

It was an Ad Server exploit. They have deleted the old Ad Server and Database and have installed new. All should be fine now.

[blastingcap]

In the future you guys may want to contact infected sites ASAP alerting them of problems, so fewer people will get infected.

[kaos kid]

I just ran "virustotal" scan for "LegitReviews.com"and it came up clean 0/31

So feel free to go back and check out the reviews!

[Idontcare]

Quote:

Originally Posted by VirtualLarry

Edit: Reported to be fixed?

I don't get the norton warning now when I visit their site or your link in the OP. Looks like they fixed it

And hopefully they suffer no long-term effects in terms of negative publicity because of the ad breach, legitreviews is legit Vigilance is key though, this is what being a community is all about, so I'm glad to see it came up for discussion versus no one bothering to warn each other of the situation

[Aikouka]

I recall Anandtech having at least one malevolent ad in its rotation before. Most sites use third party ad rotation services, which appear to not be infallible.

[podspi]

Quote:

Originally Posted by Zstream

Every now and then I get an ad from Anandtech that takes up the entire page.... *shrug*

This has been driving me nuts lately. Is there anywhere we can complain about these, since I assume AT isn't serving these on purpose?

[ViRGE]

Quote:

Originally Posted by Aikouka

I recall Anandtech having at least one malevolent ad in its rotation before. Most sites use third party ad rotation services, which appear to not be infallible.

AnandTech has had worse than that. They had their ad servers hacked in 2010.