Solved

Fake Microsoft or other Tech Support pop up

Posted on 2016-09-24
13
57 Views
Last Modified: 2016-10-14
I have customers that keep getting fake tech support pop up adds that hijack the browser.
These can be from Microsoft, Norton, Comcast, etc.
Is there a program that is effective at blocking these hijacks and not break
the bank?  Free ones are always good, but don't like the upgrades they try to get you to
do.  So if there is a good paid program, I think they would like it being add free.
Thanks.
0
Comment
Question by:Heath Calhoun
  • 3
  • 2
  • 2
  • +6
13 Comments
 
LVL 37

Assisted Solution

by:Bing CISM / CISSP
Bing CISM / CISSP earned 35 total points (awarded by participants)
ID: 41814257
a quick way to determine if the computer has been hijacked or just the browser. on Windows, if you close all browser windows, will you see any new popups?
0
 

Author Comment

by:Heath Calhoun
ID: 41814283
sometimes able to get rid of them that way others not.
some get rid by clearing temp folder.
it varies.
0
 

Author Comment

by:Heath Calhoun
ID: 41814284
if I can find a software program that will block, then that is the best route.
most my customers over 60.
0
 
LVL 19

Accepted Solution

by:
n2fc earned 120 total points (awarded by participants)
ID: 41814299
If you use the Google Chrome browser, use the UBlock (Origin) extension... I found it to be the most effective...
0
 
LVL 19

Assisted Solution

by:n2fc
n2fc earned 120 total points (awarded by participants)
ID: 41814303
Another thing to add is a program called unchecky...    
https://unchecky.com/

It unchecks most add-ins when installing freeware...
0
 
LVL 19

Expert Comment

by:n2fc
ID: 41814306
0
What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 
LVL 91

Assisted Solution

by:nobus
nobus earned 50 total points (awarded by participants)
ID: 41814392
you can try adaware : http://www.lavasoft.com/products/ad_aware_free.php
if that satisfies you - you can use the pro version for your customers
0
 
LVL 47

Assisted Solution

by:dbrunton
dbrunton earned 53 total points (awarded by participants)
ID: 41814397
If they are getting these popups it is quite possible they are already infected.

Run Adwcleaner  http://www.bleepingcomputer.com/download/adwcleaner/ or preferabley MalwareBytes  https://www.malwarebytes.com/ over the system.
0
 
LVL 23

Assisted Solution

by:Eirman
Eirman earned 53 total points (awarded by participants)
ID: 41814601
In addition to scanning with malwarebytes to remove malware,
I recommend that you take a 30 day trial of http://www.surfright.nl/en/hitmanpro

When you have cleaned out all the malware, install this really excellent free product
https://www.foolishit.com/cryptoprevent-malware-prevention/
Better still, pay the $15 for the self-updating version.
The $15 is a once-off payment - (no annual or upgrade fees).

Also, make sure that your users don't normally run their PC with admin rights.
0
 
LVL 61

Assisted Solution

by:btan
btan earned 83 total points (awarded by participants)
ID: 41814706
If on Windows, can give EMET a try which is from Microsoft themselves that is on look out for exploitation attempt. Another is MalwareBytes Anti-Exploit which specifically oversight tampers or attempt to install malicious browser adds-on. Alternatively, Spybot will be the proxy of the machine - meaning all traffic to the Internet is to go through its inspection. It checks for malicious websites and cookies. Minimally, the extension or pop up through drive by download can be reduced. Application whitelisting is also the layered protection to allow only authorised software and Windows has applocker - Cryptoprevent and SecureAplus are in the same scope of this oversight .

There is no fool proof as there are known evasive means to bypass the defences and the worst are zero days which exploit kit uses at time - but that will be very a targeted attack. Keep your software (like Office, player and browser etc) patched readily - do not ignore the regular update and AV (and other security) scan ..
1
 
LVL 8

Assisted Solution

by:davidanders
davidanders earned 53 total points (awarded by participants)
ID: 41814993
The browser can be hijacked, and the above advice can solve the problem.
I prefer Malwarebytes and Superantispyware, also CCleaner to clean browser caches and history.
http://mywot.com (installed in each browser) has been effective for many of my clients.
The source of the popup can be a bad website, an infected website, and infected ads on websites.
0
 
LVL 27

Assisted Solution

by:serialband
serialband earned 53 total points (awarded by participants)
ID: 41815062
Adblockers are the first line of defense now.  n2fc suggested one.  Adblock plus allows "acceptable" ads.  The ad networks are just shooting themselves in the foot by allowing malicious ads on them.

Follow it with any of the free a AntiVirus scanners.  Just do that, and much of your problems will go away.

If you don't want to install adblock plus, turn off scripting.
0
 
LVL 61

Expert Comment

by:btan
ID: 41843339
As per the options suggested.
0

Featured Post

Are end users causing IT problems again?

You’ve taken the time to design and update all your end user’s email signatures, only to find out they’re messing up the HTML, changing the font and ruining the imagery. What can you do to prevent this? Find out how you can save your signatures from end users today.

Join & Write a Comment

Suggested Solutions

This story has been written with permission from the scammed victim, a valued client of mine – identity protected by request.
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
The Bounty Board allows you to request an article or video on any technical topic, or fulfill a bounty request to earn points. Watch this video to learn how to use the Bounty Board to get the content you want, earn points, and browse submitted bount…
Shows how to create a shortcut to site-search Experts Exchange using Google in the Chrome browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch the Search Engine Menu: In chrome, via you…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now