Ad on PDGA Website

Non-Disc Golf Stuff

Moderators: Timko, Solty, Frank Delicious, Blake_T, Fritz, Booter

Re: Ad on PDGA Website

Postby Parks » Wed Apr 13, 2011 12:29 am

Google is showing it too.

Anyone know who runs the PDGA site? Is it possible that it is compromised?
We're at our best when it's from our hips
Parks
1000 Rated Poster
User avatar
 
Posts: 1783
Joined: Fri May 11, 2007 10:42 pm
Location: Spokane, WA

Re: Ad on PDGA Website

Postby BLURR » Wed Apr 13, 2011 7:31 am

Parks wrote:Google is showing it too.

Anyone know who runs the PDGA site? Is it possible that it is compromised?


I think Dave Gentry helps run the site. Unfortunately I do not have his email address. I would guess that they sold an ad spot to somebody that has put some "bad code" in their little flash/flex based ad. But it could be like Parks stated, the site could be fully compromised.
If the object of disc golf were to hit trees, I'd be 1100 rated.
BLURR
Plastic Fondler
User avatar
 
Posts: 2611
Joined: Sun Jun 24, 2007 9:14 pm
Location: Des Moines, IA
Favorite Disc: Comet

Re: Ad on PDGA Website

Postby ferretdance03 » Wed Apr 13, 2011 7:38 am

This was posted on a local board by someone geekier than I:

d2 wrote:I posted this in Babble, but realized this is pretty big so I am also posting this here to get better coverage:

Google Chrome & Firefox can no longer be used to effectively visit PDGA->discussions. Chrome & Firefox report the following:
Google wrote:Of the 138 pages we tested on the site over the past 90 days, 26 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2011-04-11, and the last time suspicious content was found on this site was on 2011-04-10.
Malicious software includes 7 trojan(s). Successful infection resulted in an average of 1 new process(es) on the target machine.


I went to the site this morning with IE in a clean Virtual Machine that I plan to revert back to clean, and got the following:
IE wrote:Internet Explorer has closed this webpage to help protect your computer. A malfunctioning or malicious add-on has caused Internet Explorer to close this webpage.


This tells me that effective today, the PDGA site is still delivering zero day malware!

19% of the PDGA discussion pages that get served deliver zero-day malware:
If you viewed 10 messages on the discussion board with Internet Explorer (32 bit), then you have an 88% chance of currently owning an infected computer.
After 37 messages, then the odds statistically round to 100%.

Your computer is NOT safe even if you are running anti-virus software!


d2 wrote:I was just on the PDGA site, and it is still delivering malware! Do not goto the PDGA site unless you really know what you are doing with computer security!
Here is an informative reply:

Kette_Master wrote:So, is there an issue with pdga.com being a malware distributor?


Well, I have an issue with visiting a web site that delivers malware ;).

When Google states "79 page(s) resulted in malicious software being downloaded and installed without user consent. ", they obviously mean that malware was installed due to content distrubuted directly or indirectly from the site! I would LOVE to know what browsers were actually affected.

Personally, I plan to no longer use the PDGA to pre-register for any tournaments. I have not figured out how I will register for the PDGA next year; because I do not trust the PDGA with my credit card information.

I agree that "MOST LIKELY" the PDGA is using a "third rate" ad server company. I suspect that this company is trying to vet ads that it delivers to ensure that they are malware free; however, that job is really difficult! My guess is Google is doing a better job of vetting the ads. However, that is a guess. AFAIK, the PDGA may not even be capable of accessing their security risks.

I thought that perhaps the PDGA would immediately terminate the ad content based on being called out. However, my system is still getting zero day thrown at it. I hope that they at least look into the legal requirements of reporting security breaches.

BTW, if you think your anti-virus program is keeping you safe, then you would be wrong.

You should also be aware that in the past many people knew immediately when they had malware installed due to browser redirects or "Fake Anti-Virus" software getting installed. However, there is a big shift to "silent malware" that just steals your personal data.
ferretdance03
1000 Rated Poster
User avatar
 
Posts: 1877
Joined: Tue Sep 07, 2004 11:55 am
Location: PA*sevenoneseven
Favorite Disc: glow wizard

Re: Ad on PDGA Website

Postby BLURR » Wed Apr 13, 2011 1:03 pm

If you are worried, you can try out a program called Malwarebytes. Does a pretty good job of cleaning up some of those pesky unsolicited programs.
If the object of disc golf were to hit trees, I'd be 1100 rated.
BLURR
Plastic Fondler
User avatar
 
Posts: 2611
Joined: Sun Jun 24, 2007 9:14 pm
Location: Des Moines, IA
Favorite Disc: Comet

Re: Ad on PDGA Website

Postby Parks » Wed Apr 13, 2011 6:41 pm

Or be thorough and run anti-malware tools from a UBCD4WIN boot cd or something similar, and then also run something like Malwarebytes when you boot back into your OS to catch anything it missed that loads into memory.

The only problem I have with stuff like Malwarebytes is that it detects malware loaded into memory, but if a program is loaded into memory then it can have low-level control and hide itself from Malwarebytes. However, some stuff might be missed by a pre-installation environment like UBCD4WIN uses because it can only pick stuff up off your storage, so you should run it to make sure.
We're at our best when it's from our hips
Parks
1000 Rated Poster
User avatar
 
Posts: 1783
Joined: Fri May 11, 2007 10:42 pm
Location: Spokane, WA

Re: Ad on PDGA Website

Postby JimW » Thu Apr 14, 2011 12:30 am

PDGA.com: Now transmitting even more viruses than Frank D's "sleepovers"
discspeed wrote:We're not owls


The core of my game is throwing pink stuff really straight
JimW
1000 Rated Poster
User avatar
 
Posts: 1381
Joined: Wed Feb 25, 2009 11:08 pm
Location: Seminole, FL
Favorite Disc: Whatever

Re: Ad on PDGA Website

Postby BLURR » Thu Apr 14, 2011 7:16 am

You can also download Avast AVS(I have been using the free version on one of my home pc's for close to 18 months now). Avast will do a boot/memory scan after it first installs. Amazing some of the stuff it picks up. You can also have it do a boot/memory scan everytime your system reboots.

UBCD4WIN is also a good recommendation from Parks...
If the object of disc golf were to hit trees, I'd be 1100 rated.
BLURR
Plastic Fondler
User avatar
 
Posts: 2611
Joined: Sun Jun 24, 2007 9:14 pm
Location: Des Moines, IA
Favorite Disc: Comet

Re: Ad on PDGA Website

Postby Parks » Thu Apr 14, 2011 5:37 pm

Really any AV/anti-malware that can get in before much else loads is going to be good. I just pointed out UBCD4WIN because its free and easy to use.
We're at our best when it's from our hips
Parks
1000 Rated Poster
User avatar
 
Posts: 1783
Joined: Fri May 11, 2007 10:42 pm
Location: Spokane, WA

Re: Ad on PDGA Website

Postby JR » Fri Apr 22, 2011 3:30 am

Is the site ok now? I haven't visited that site since i heard of the problems. Might as well registrate for the forums now that i'm a member.
Flat shots need running on the center line of the tee and planting each step on the center line. Anhyzer needs running from rear right to front left with the plant step hitting the ground to the left of the line you're running on. Hyzer is the mirror of that.
JR
Scandinavian Video Mafia
User avatar
 
Posts: 11249
Joined: Sun Mar 18, 2007 6:07 am
Location: Finland, sea level
Favorite Disc: About to ace

Re: Ad on PDGA Website

Postby Disc Golf Live » Fri Apr 22, 2011 6:41 am

The mess has been cleaned up, JR. It seems safe enough.

Joe
Joe Wander
Producer and Editor
Disc Golf Live video magazine
www.discgolflive.com
Bringing DG to TV, one community at a time
Disc Golf Live
Tree Magnet
 
Posts: 203
Joined: Thu Oct 14, 2004 6:52 am

Previous

Return to Off-Topic, Miscellaneous, etc.

Who is online

Users browsing this forum: MSNbot Media and 1 guest