Spyware alert when opening Coasterbuzz?

I don't know if there's anything to this, but a couple of minutes ago I opened Coasterbuzz and a second later I got an outgoing connection alert. asdf.exe and sdfg.exe in my C:\ root were trying to get in the net from my computer. The files were created the very minute I came to Coasterbuzz and I didn't open any other sites at the same time.

I'm not claiming that Coasterbuzz is infecting its visitors with spyware, but the fact that the connection alert and the file dates were simultaneous with me opening Coasterbuzz is too big of a coincidence for me not to report it. If one of the ads on page one is really spreading stuff like this, I'd think you would want to know about it as soon as possible.

It's coincidence. It has nothing to do with the site.

Jeff - Editor - CoasterBuzz.com - My Blog

I also find that the hardrive on my PC starts to thrash away whenever I access Coasterbuzz, closely followed by the inevitable barrage of pop-ups (until I log in, that is).

Haven't received any warnings from my anti-virus software and the anti-adware doesn't detect anything when I run it, but it is still somewhat disconcerting nonetheless.

You should build a waterpark, Jeff. Then you wouldn't have to have ads at all.

It's not coincidence Jeff.I had the same thing happen on my old PC back in march (why do you think I was posting only sporadically over the past 3 months?)& I ended up getting it from this site as well as screamscape.

The aol spyzapper & firewalls on my new system seem to be blocking it however & it prohibits access to sites that definitely have it...whenever I try accessing screamscape IE gives an error saying the site can't be opened & aborts the attempt.

No, it is coincidence. I don't think you understand how spyware gets installed. It comes bundled in all kinds of downloadable software, including P2P clients. You have to install it to get it. Once installed, it activates as soon as you start using your browser (IE) regardless of the sites you go to.

You could get it from Web content, but only if you explicitly allow it or you're using an ancient version of Internet Explorer without patches.

That said, the ad firms I use, Burst Media, Casale and FastClick, do not serve said content.

Also know that a lot of "security" software packages do asinine things like block the referrer headers in HTTP requests (the info that says what the previous page was that a link was followed from), blocks perfectly valid and safe Javascript, and in some cases even prevents Java applets from running (really stupid since the runtime asks you first if it's OK that it's doing something naughty).

Know the facts before you start tossing around accusations.

Jeff - Editor - CoasterBuzz.com - My Blog

I, for one, have nevr had a problem.. and I visit this site daily, and post quite often as well. I generally only login as a member when I have something to post.

Guess who's back? Back Again? James K's back. Tell a friend.

When I run my spyware software, I have to delete spyware from Burst Media, Casale, and FastClick every time (Thanks for the info, Jeff). I should admit that it is considered a low priority though.

I will also admit that I do not know enough about this stuff to blatently accuse Jeff of useing adverts that install spyware. For all I know this "spyware" my software detects could be very harmless, but maybe those ad firms are lieing to Jeff when they claim to not have spyware.

...Maybe I'm just being paranoid, like usuial.

That isn't spyware from those places. They're cookies.

Software that checks for Spyware is notoriously paranoid.

All you're doing by deleting those cookies is not letting the ad companies know you've already seen a certain ad (like a pop-up which is set to show to a user every X number of hours) - which in turn makes them send more pop-ups your way.

Ironic, huh?

coasterimage - lordgonchar

Nope, Gonch. I delete my cookies before I use my spyware software software. I am pretty sure that hese are found in other places other than Temporary Internet Files. I'll look more closely the next time I do a spyware scan.

When my software considers the "spyware" to be of a low priority, I won't panic. That's not why I check for spyware.

I use both ad-aware and spybot and have never found anything from Burst, Casale or Fastclick that wasn't as simple as the program pointing out a cookie.

I'm also pretty sure cookies are stored in their own folder rather then the TIF folder. (for example in XP they're in "C>Documents and Settings>[folder named whatever user name you use on your PC]>Cookies") - I don't remember the path on older versions of Windows.

Definitely take a closer look next time. I'm curious. :)

coasterimage - lordgonchar

You know what I don't understand?

I have two computers in my household that has no problems with spyware at all. Yes we get the annoying pop-ups here and there and its normal to get those. Now we surf a bunch of forum sites, news sites, and other stuff.

When I'm at work, the clients that have the problems with are the ones that are surfing sites that they aren't supposed to, or they are installing P2P programs that they aren't supposed to.

So here's my advice...

LAY OFF THE PR0N AND HAX0RSS SITES!!!111eleventyone!

Oh and install Windows XP Service Pack 2

~Rob Willi

And switch to Firefox.

That's great advice, Rob.

In general, the less credible the sites you visit, the more chance of crap.

I agree. I never even used anti-virus software from the time I first got online in 1997 until just two years ago. I ended up getting burned by an infected attachment my aunt sent me of all things. I've never found anything that qualifies as "Spyware" on my PC that I didn't want there.

Maybe the Spyware killer progs should be known as "Scareware" ;)

I'm not real big on the Firefox thing (as uncool as that is to say). Too used to IE, I suppose. Plus, once (if?) FireFox gets enough of a user base to make it a viable target for the less savory, I think you'll start to see the same 'security' issues show up. The nice side is that I'd also expect the fixes to come much faster.

coasterimage - lordgonchar

I visit coasterbuzz everyday, and I do not pay. I have never had any problems with this site.

Pittsburgh, City of Champions!
Steelers + Penguins
2009 What a great year!

Lord Gonchar said:
Maybe the Spyware killer progs should be known as "Scareware" ;)

Are you trying to invade my signature line? LOL!

Note: Spyware, once installed, will cause popups either upon connecting to the internet OR upon starting up a browser session...has *nothing* to do with what sites you are CURRENTLY surfing.

Some other people have gotten apparently the same trojan(?) in the last few days with no idea of where they got it - one guy thinks it came to him from TheOnion and other just got it when they weren't doing anything suspicious. One of the links below links it to a couple of security issues of Firefox 1.0.3, which I was still using when I encountered this thing.

http://forums.spywareinfo.com/lofiversion/index.php/t54765.html
http://www.dslreports.com/forum/remark,14196120
http://www.pcreview.co.uk/forums/showthread.php?t=2094793
http://forum.avast.com/index.php?topic=15817.0

I'm a little confused about how it got to my comp. But as it seems to be a bew threat, its behaviour should become better known in the next few days.

*** Edited 8/24/2005 9:07:14 PM UTC by Drift***

rollergator said:
Are you trying to invade my signature line? LOL!

(sticking flag in ground)"I claim this signature in the name of England!"
"What!? But you can't, we already live here!"
"Yes, but do you have a flag?"

coasterimage - lordgonchar

This thread made me run spybot real quick.

Really, I don't know why, I just got the urge...

Chattanooga needs a [B][I]ITG2[/I][/B] Machine!

Trust me that's how my old PC got it....the pop ups would download the software to the desktop & that's how it automaticlly instaled itself.

At least I'm using XP now whereas my old system had win95,same old IE5.0 though.