Solved

Fake Microsoft or other Tech Support pop up

Posted on 2016-09-24
13
68 Views
Last Modified: 2016-10-14
I have customers that keep getting fake tech support pop up adds that hijack the browser.
These can be from Microsoft, Norton, Comcast, etc.
Is there a program that is effective at blocking these hijacks and not break
the bank?  Free ones are always good, but don't like the upgrades they try to get you to
do.  So if there is a good paid program, I think they would like it being add free.
Thanks.
0
Comment
Question by:Heath Calhoun
  • 3
  • 2
  • 2
  • +6
13 Comments
 
LVL 37

Assisted Solution

by:bbao
bbao earned 35 total points (awarded by participants)
ID: 41814257
a quick way to determine if the computer has been hijacked or just the browser. on Windows, if you close all browser windows, will you see any new popups?
0
 

Author Comment

by:Heath Calhoun
ID: 41814283
sometimes able to get rid of them that way others not.
some get rid by clearing temp folder.
it varies.
0
 

Author Comment

by:Heath Calhoun
ID: 41814284
if I can find a software program that will block, then that is the best route.
most my customers over 60.
0
Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

 
LVL 20

Accepted Solution

by:
n2fc earned 120 total points (awarded by participants)
ID: 41814299
If you use the Google Chrome browser, use the UBlock (Origin) extension... I found it to be the most effective...
0
 
LVL 20

Assisted Solution

by:n2fc
n2fc earned 120 total points (awarded by participants)
ID: 41814303
Another thing to add is a program called unchecky...    
https://unchecky.com/

It unchecks most add-ins when installing freeware...
0
 
LVL 20

Expert Comment

by:n2fc
ID: 41814306
0
 
LVL 92

Assisted Solution

by:nobus
nobus earned 50 total points (awarded by participants)
ID: 41814392
you can try adaware : http://www.lavasoft.com/products/ad_aware_free.php
if that satisfies you - you can use the pro version for your customers
0
 
LVL 48

Assisted Solution

by:dbrunton
dbrunton earned 53 total points (awarded by participants)
ID: 41814397
If they are getting these popups it is quite possible they are already infected.

Run Adwcleaner  http://www.bleepingcomputer.com/download/adwcleaner/ or preferabley MalwareBytes  https://www.malwarebytes.com/ over the system.
0
 
LVL 23

Assisted Solution

by:Eirman
Eirman earned 53 total points (awarded by participants)
ID: 41814601
In addition to scanning with malwarebytes to remove malware,
I recommend that you take a 30 day trial of http://www.surfright.nl/en/hitmanpro

When you have cleaned out all the malware, install this really excellent free product
https://www.foolishit.com/cryptoprevent-malware-prevention/
Better still, pay the $15 for the self-updating version.
The $15 is a once-off payment - (no annual or upgrade fees).

Also, make sure that your users don't normally run their PC with admin rights.
0
 
LVL 62

Assisted Solution

by:btan
btan earned 83 total points (awarded by participants)
ID: 41814706
If on Windows, can give EMET a try which is from Microsoft themselves that is on look out for exploitation attempt. Another is MalwareBytes Anti-Exploit which specifically oversight tampers or attempt to install malicious browser adds-on. Alternatively, Spybot will be the proxy of the machine - meaning all traffic to the Internet is to go through its inspection. It checks for malicious websites and cookies. Minimally, the extension or pop up through drive by download can be reduced. Application whitelisting is also the layered protection to allow only authorised software and Windows has applocker - Cryptoprevent and SecureAplus are in the same scope of this oversight .

There is no fool proof as there are known evasive means to bypass the defences and the worst are zero days which exploit kit uses at time - but that will be very a targeted attack. Keep your software (like Office, player and browser etc) patched readily - do not ignore the regular update and AV (and other security) scan ..
1
 
LVL 9

Assisted Solution

by:davidanders
davidanders earned 53 total points (awarded by participants)
ID: 41814993
The browser can be hijacked, and the above advice can solve the problem.
I prefer Malwarebytes and Superantispyware, also CCleaner to clean browser caches and history.
http://mywot.com (installed in each browser) has been effective for many of my clients.
The source of the popup can be a bad website, an infected website, and infected ads on websites.
0
 
LVL 29

Assisted Solution

by:serialband
serialband earned 53 total points (awarded by participants)
ID: 41815062
Adblockers are the first line of defense now.  n2fc suggested one.  Adblock plus allows "acceptable" ads.  The ad networks are just shooting themselves in the foot by allowing malicious ads on them.

Follow it with any of the free a AntiVirus scanners.  Just do that, and much of your problems will go away.

If you don't want to install adblock plus, turn off scripting.
0
 
LVL 62

Expert Comment

by:btan
ID: 41843339
As per the options suggested.
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are a web developer, you would be aware of the <iframe> tag in HTML. The <iframe> stands for inline frame and is used to embed another document within the current HTML document. The embedded document could be even another website.
In this article, I will show you HOW TO: Perform a Physical to Virtual (P2V) Conversion the easy way from a computer backup (image).
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
The Bounty Board allows you to request an article or video on any technical topic, or fulfill a bounty request to earn points. Watch this video to learn how to use the Bounty Board to get the content you want, earn points, and browse submitted bount…

825 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question