InternetGameBox.com - Nasty Ad Software Installation

[HairyCornflake]

Tweet

Word of warning for anyone who has kids who like downloading *free* games - avoid the above.

It appears my Daughter has most kindly installed some games software from this lot that also installs, and I quote "One of the advantages which the Component provides to the User, and which allows the Provider to improve the quality of the services, is the ability to show on the User's computer advertising messages or other information from the Provider or third parties with whom the Provider has concluded relevant agreements, for the purposes of explaining the Provider's services and their correct use, or such other services, promotions and offers that may interest the User on the basis of the User's internet use (e.g., web pages visited, keywords used in search engines)"

It installs an invisible component on your pc that doesn't even show up when you choose 'show all hidden files' etc etc. It obviously detects what you've been surfing and offers 'relevant ads' at appropriate times. To be honest, it's not over-kill - but it is a nuisance and I'm not happy it sitting on one of my PC's that I also work at.

I've tried AVG, Spybot, Trojan Remover, Bazooka Scanner and F-Secure BlackLight (which came recommended) - with no success whatsoever. Although you can email them and receive the uninstall software (which apparently doesn't work) looks like a fresh install is needed here.

Is there any mileage logging the Affiliate's ID and forwarding to the network? Although there are terms and conditions, doesn't this constitute unethical software since it can't be removed (or even detected) by conventional methods.

BTW - anyone have a cure for this please?

[accelerator]

Regarding the Aff Id, you might as well try and see what they say, because this is obviously unethical software. There have been initiatives on spyware before, how much interest the networks take varies. For those interested:

Ben Edelman - Home

Regarding preventing the kids putting spyware on, given the low prices of computers these days, could you get one just for them? Then use some of the new parental controls features (in Vista I believe) to lock it down and restrict the websites they can visit, plus the usual pop-up blockers etc.

Rgds

Accelerator

[HairyCornflake]

Regarding the Aff Id, you might as well try and see what they say, because this is obviously unethical software. There have been initiatives on spyware before, how much interest the networks take varies.

buy.at and Pete Wilson have personally enquired and are obviously taking a proactive approach to this problem! I'm sure the other Networks have investigated further....

With abit of investigation I believe I've gotten rid of this software.

[moredial]

If you can find out the url being called to download the ads, just add the domain to your hosts file and point the IP address to 127.0.0.1.
May as well add internetgamebox.com at the same time and any other sites that you want to stop your daughter from visiting in the future.

Use NotePad to edit the hosts file and remember to rename it back to hosts (without any extension) after saving.

The hosts file used to be under the /windows directory - I assume it is in the same place for Vista.

[John Jupp]

I normally use a combination of ad aware and ontrack internet cleanup followed by replacing files for windows. When I get a pc for the first time I partition the drive and make a complete backup copy of the operating system, so if I have to delete a shared file that is system critical, I just go into the unaffected drive and copy one over. Of course all good peeps use something like Ghost as well (if I can be bothered to remember)

[HairyCornflake]

If you can find out the url being called to download the ads, just add the domain to your hosts file and point the IP address to 127.0.0.1.
May as well add internetgamebox.com at the same time and any other sites that you want to stop your daughter from visiting in the future.

Use NotePad to edit the hosts file and remember to rename it back to hosts (without any extension) after saving.

The hosts file used to be under the /windows directory - I assume it is in the same place for Vista.

Cheers, I'm sure Buy.at will expose the offending affiliates.

I suppose the stance I'm taking (on this pc) is that of someone who is your average surfer with average family with average virus protection.

Take your average pc user who has been infected. Would they have the savvy to reinstall the OS or would they just carry on? This will impact on affiliate's earnings and should be investigated at every opportunity.

[moredial]

The offending affiliates may not even realise that they are the cause of the problem. There is so much malware hiding in ads and banners that are called by javascript that it is almost impossible to keep up with who the offending parties are.

A contact of mine who earns from banner views is forever reporting 'dodgy scripts' to the advertising agencies. Each time his rankings drops he wonders if it is because one of the ads he displays is doing something it should not be doing. Google has a separate script which searches out malware scripts and warns in the SERPs that the page is infected. I have never seen this but then I don't usually search for adult, video or games content which seem to be the most likely sites to be affected. Although the Italian sites were tax and cars, so no one is safe.