Windows 10: hey guys i got hit with a drive by download norton says it blocked it? Solved

Page 2 of 3 FirstFirst 123 LastLast
  1.    16 Dec 2017 #11

    Hadn't seen this one before I read the post, so last night I went on a few well known torrent sites and found it mostly in the XXX section on all of them. Depending on the browser I was using it got stopped by Adguard, Script blockers/Tampermonkey or Malwarebytes Pro. It looks like it'll only run in the browser while on those sites so if someone does go to sites like that I'd suggest some script blocking extensions.


    Update: Hmm, I'm noticing higher than normal CPU usage on some pages on Reddit this morning. I'll have to check later on my desktop cause I can't find anything using the laptop. With ad revenue decreasing because of everybody using ad blockers, more and more Sites are trying to make money by mining and it's just possible ?
    Last edited by Bat 1; 16 Dec 2017 at 09:46.
      My ComputerSystem Spec


  2. Posts : 602
    Windows 10 Home x64 Version 1803 (OS Build 17134.48)
       16 Dec 2017 #12

    Interesting. I wasn't on one of "those" sites (too old to fool with that) but was going with a link from another forum when MBAM caught it.
      My ComputersSystem Spec


  3. Posts : 19,855
    Win 7 32, Win 7 64 Pro, Win 8.1 64 Pro, Win 10 64 Education Edition
       16 Dec 2017 #13

    There's been a lot of cryptomining lately, involving some movie sites as well as regular sites.

    500 million PCs are being used for stealth cryptocurrency mining online | ZDNet

    AdGuard says the use of this kind of software combined with secrecy, dubbed "cryptojacking," is in full swing on video streaming and ripper websites including openload, Streamango, Rapidvideo, and OnlineVideoConverter.
    Almost one billion video stream users exposed to secret cryptocurrency mining | ZDNet
      My ComputerSystem Spec

  4.    16 Dec 2017 #14

    Even though it's mostly done on "those" kind of sites, you know it's really out of hand when it's being done on a Premiere Service that you're paying for. https://www.theverge.com/2017/9/26/1...onero-coinhive
      My ComputerSystem Spec

  5.    16 Dec 2017 #15

    Bat 1 said: View Post
    Even though it's mostly done on "those" kind of sites, you know it's really out of hand when it's being done on a Premiere Service that you're paying for. https://www.theverge.com/2017/9/26/1...onero-coinhive
    Showtime? Yeah, that's ridiculous!
      My ComputerSystem Spec

  6.    16 Dec 2017 #16

    Cliff S said: View Post
    Add these to your Hosts file( C:\Windows\System32\drivers\etc )

    # Anti-WebMiner Start 1.3 43018
    0.0.0.0 2giga.link
    0.0.0.0 azvjudwr.info
    0.0.0.0 cnhv.co
    0.0.0.0 coinhive.com
    0.0.0.0 coin-hive.com
    0.0.0.0 crypto-loot.com
    0.0.0.0 edgeno.de
    0.0.0.0 gus.host
    0.0.0.0 jroqvbvw.info
    0.0.0.0 jsecoin.com
    0.0.0.0 jyhfuqoh.info
    0.0.0.0 kdowqlpt.info
    0.0.0.0 listat.biz
    0.0.0.0 lmodr.biz
    0.0.0.0 mataharirama.xyz
    0.0.0.0 minecrunch.co
    0.0.0.0 minemytraffic.com
    0.0.0.0 miner.pr0gramm.com
    0.0.0.0 ppoi.org
    0.0.0.0 reasedoper.pw
    0.0.0.0 xbasfbno.info
    # Anti-WebMiner End
    How do you edit the host file ?? and does that block drive by stuff if it does i'm down for this 100% also what are som e extensions i can add to like firefox and google chrome ??
      My ComputerSystem Spec

  7.    16 Dec 2017 #17

    Cliff S said: View Post

    have you used this one is it any good i gather these are better then adding browser extensions??
      My ComputerSystem Spec


  • Posts : 20,256
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu
       16 Dec 2017 #18

    Tonyb said: View Post
    have you used this one is it any good i gather these are better then adding browser extensions??
    All that does is automate the host file update process.

    To do it manually, you need to first open Notepad as an admin.
    The click "file" and select "open".
    change from text documents(.txt) to All Files
    search for the host file in the above address, or just paste this in the box requesting File Name: C:\Windows\System32\drivers\etc
    Click image for larger version. 

Name:	Image 001.png 
Views:	3 
Size:	49.8 KB 
ID:	168483

    Select hosts(the one with a blank sheet of paper icon:
    Click image for larger version. 

Name:	Image 002.png 
Views:	3 
Size:	33.1 KB 
ID:	168484

    Now that it is opened with admin privileges, you can make additions and changes:
    Click image for larger version. 

Name:	Image 003.png 
Views:	3 
Size:	42.2 KB 
ID:	168486

    Then remember to Save, then close it.
    No restart is needed.
    All it does is block those specific websites from your system.

    This is also great for child protection as kids know how to use and turn off add blockers, but most anyhow, have no idea about the host file.
      My ComputersSystem Spec

  •    16 Dec 2017 #19

    oh ok so the ones you posted are pretty much the same as his stuff so its pretty much simpler to just do it yourself instead of a program, unless the program does auto updates and so forth??
      My ComputerSystem Spec


  • Posts : 20,256
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu
       16 Dec 2017 #20

    Tonyb said: View Post
    oh ok so the ones you posted are pretty much the same as his stuff so its pretty much simpler to just do it yourself instead of a program, unless the program does auto updates and so forth??
    I prefer to do it myself.
      My ComputersSystem Spec


  •  
    Page 2 of 3 FirstFirst 123 LastLast

    Related Threads
    Security Question: Reinstalled Norton, but deleted One Drive in AntiVirus, Firewalls and System Security
    Norton had to reinstall my security on this newer pc, but they had to delete Defender, & One Drive first in order to do it? Was this a good idea? The other pc was full of malware, which Norton does not address.
    Hi All, I have a new HP laptop win 10 installed and I like it very much but I have an issues with One Drive . I use my WiFi connection at home for browsing and usual stuff which is fine and One Drive uploads to the cloud with no issues and of...
    Try them free for 30 days. Norton Security ask an email and a password to send the product key validation. Also, you need the email and the password to complete the installation. Norton Utilities won't ask anything. You'll be ask to reboot:...
    Our Sites
    Site Links
    About Us
    Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

    Designer Media Ltd
    All times are GMT -5. The time now is 12:56.
    Find Us