Overclock.net › Forums › Industry News › Software News › [AT] How Antivirus Can Open You to Attacks That Otherwise Wouldn’t Be Possible
New Posts  All Forums:Forum Nav:

[AT] How Antivirus Can Open You to Attacks That Otherwise Wouldn’t Be Possible - Page 2

post #11 of 22
Quote:
Originally Posted by battlenut View Post

I am pretty sure man kind has proven this to be wrong. LOL
X-Men's Apocalypse concurs. doh.gif
post #12 of 22
Quote:
Originally Posted by IMI4tth3w View Post

How do you guys browse the web with noscript? I've tried using it and it literally can't even open a single web page. So i had to turn it off. Sure you can enable it for a website you "trust" but then why have it at all at that point?

Malwarebytes seems to have done me well over the years. Only wish i could have gotten more lifetime subscriptions back when i still had the chance.

 

Exactly what ToTheSun! said. It takes a bit to set up, but you do it one script at a time. Eg, here on OCN I have huddler, overclock.net, yahooapis, google tag services, and google analytics allowed. That's it. Often, you'll only need one script for sites to funtion. Some sites like instagram that takes 50 someodd scripts, probably aren't worth viewing.

 

Also, I run 2 browsers. One with noscript, and one that is a compatability browser, for when I'm shopping, or doing school stuff and I don't want noscript stopping something important.

2nd Rig
(16 items)
 
  
CPUMotherboardGraphicsGraphics
[Intel] 2500k [4.5ghz] [1.3 volts] [AsRock] P67 Extreme 6 [Sapphire] 6950 Toxic [Unlocked to 6970 spec] Powercolor reference 6950 [Unlocked to 6970 spec] 
RAMRAMHard DriveHard Drive
[Samsung] Low voltage memory [@1866 mHz 9-10-9-28] [GSkill] Sniper 1866 9-10-9-28 1.5V [Corsair] 120gb Force GT WD 500GB 
Hard DriveCoolingOSMonitor
2x Seagate Crapstellation ES 2TB [Raid 1] [Coolermaster] V8 Windows 7 [Gateway] FDH2402 
KeyboardPowerCaseMouse
[CM Storm] QuickFire TK [XFX] Core Edition PRO850W [In Win] Dragon Rider Logitech G502 w/ stupid LEDs 
  hide details  
Reply
2nd Rig
(16 items)
 
  
CPUMotherboardGraphicsGraphics
[Intel] 2500k [4.5ghz] [1.3 volts] [AsRock] P67 Extreme 6 [Sapphire] 6950 Toxic [Unlocked to 6970 spec] Powercolor reference 6950 [Unlocked to 6970 spec] 
RAMRAMHard DriveHard Drive
[Samsung] Low voltage memory [@1866 mHz 9-10-9-28] [GSkill] Sniper 1866 9-10-9-28 1.5V [Corsair] 120gb Force GT WD 500GB 
Hard DriveCoolingOSMonitor
2x Seagate Crapstellation ES 2TB [Raid 1] [Coolermaster] V8 Windows 7 [Gateway] FDH2402 
KeyboardPowerCaseMouse
[CM Storm] QuickFire TK [XFX] Core Edition PRO850W [In Win] Dragon Rider Logitech G502 w/ stupid LEDs 
  hide details  
Reply
post #13 of 22
Noscript needs an update for Firefox 57
post #14 of 22
Quote:
Originally Posted by frickfrock999 View Post

So if you can't trust your own AV program anymore, what can you trust?
Your banker, obviously wink.gif
post #15 of 22
Quote:
Originally Posted by ToTheSun! View Post

Because you can trust only the domains needed to display the content you want. It's not the domains on which the site you usually want to visit is that will infect you.

To me, the question is, conversely, how do YOU navigate the web withOUT noscript or scriptsafe (for Chrome)?

If you set either up well enough and know how to use them, it'll keep you much safer than MalwareBytes. Prevention > treatment.

Malwarebytes + AdGuard Premium. tongue.gif

But yes I can agree that Malwarebytes alone is simply not enough, especially when connecting to certain Russian sites shall we say. wink.gif
Quote:
Originally Posted by IMI4tth3w View Post

How do you guys browse the web with noscript? I've tried using it and it literally can't even open a single web page. So i had to turn it off. Sure you can enable it for a website you "trust" but then why have it at all at that point?

Malwarebytes seems to have done me well over the years. Only wish i could have gotten more lifetime subscriptions back when i still had the chance.

They can still be found on eBay if you're willing to pay the price. (e.g. here's one)
Edited by magnek - 11/10/17 at 8:05pm
post #16 of 22
Quote:
Originally Posted by AlphaC View Post

Noscript needs an update for Firefox 57

Why else am I still on 56? wink.gif
Triumvirate
(20 items)
 
Osmium
(8 items)
 
For Sale: [FS] Z97 system: Xeon and RAM
$160 (USD) or best offer
CPUMotherboardGraphicsGraphics
i7-5775C ASUS Sabertooth Z97 Mark 2 Sapphire RX 480 (reference) MSI Low-Profile 750Ti 
RAMHard DriveHard DriveHard Drive
Corsair Dominator Platinum - 2x8GB Crucial M500 - 960GB Samsung 840 - 250GB WD Scorpio Blue - 1TB 
Hard DriveCoolingCoolingOS
ADATA SP900 - 64GB Scythe BIG Shuriken 2 Rev. B PNY Quadro 600 blower Windows 10 
MonitorMonitorMonitorKeyboard
ASUS VE247H - 1080p Gateway FPD1960 - 1280x1024 Samsung S20D300 - 900p, portrait Rosewill RK9000I - Cherry MX Blue 
PowerCaseMouseOther
Rosewill HIVE 650W Riotoro CR1080 SteelSeries Rival 100 CyberPower 1500PFCLCD 
CPUMotherboardRAMHard Drive
AMD A10-7870K ASRock FM2A88X-ITX+ G.Skill Ripjaws X - 2x4GB @ 2400MT/s Samsung 840 120GB 
CoolingOSPowerCase
Evercool EC-HPS-810CP Windows 7 Pro 64-bit PicoPSU-120-WI-25 Mini-Box M350 
  hide details  
Reply
Triumvirate
(20 items)
 
Osmium
(8 items)
 
For Sale: [FS] Z97 system: Xeon and RAM
$160 (USD) or best offer
CPUMotherboardGraphicsGraphics
i7-5775C ASUS Sabertooth Z97 Mark 2 Sapphire RX 480 (reference) MSI Low-Profile 750Ti 
RAMHard DriveHard DriveHard Drive
Corsair Dominator Platinum - 2x8GB Crucial M500 - 960GB Samsung 840 - 250GB WD Scorpio Blue - 1TB 
Hard DriveCoolingCoolingOS
ADATA SP900 - 64GB Scythe BIG Shuriken 2 Rev. B PNY Quadro 600 blower Windows 10 
MonitorMonitorMonitorKeyboard
ASUS VE247H - 1080p Gateway FPD1960 - 1280x1024 Samsung S20D300 - 900p, portrait Rosewill RK9000I - Cherry MX Blue 
PowerCaseMouseOther
Rosewill HIVE 650W Riotoro CR1080 SteelSeries Rival 100 CyberPower 1500PFCLCD 
CPUMotherboardRAMHard Drive
AMD A10-7870K ASRock FM2A88X-ITX+ G.Skill Ripjaws X - 2x4GB @ 2400MT/s Samsung 840 120GB 
CoolingOSPowerCase
Evercool EC-HPS-810CP Windows 7 Pro 64-bit PicoPSU-120-WI-25 Mini-Box M350 
  hide details  
Reply
post #17 of 22
Quote:
Originally Posted by IMI4tth3w View Post

How do you guys browse the web with noscript? I've tried using it and it literally can't even open a single web page. So i had to turn it off. Sure you can enable it for a website you "trust" but then why have it at all at that point?

Malwarebytes seems to have done me well over the years. Only wish i could have gotten more lifetime subscriptions back when i still had the chance.

If I get to a website that doesn't function with noscript running I question whether I really want to see whatever their website shows anyways. If the answer is yes then I'll temporarily allow the main topsite in question. If it still doesn't function after that then I seriously question whether they're worth my time. If the scum want to risk my computer all so they can harvest personal data about me and shove lies and ads in my face that I'm not going to fall for anyways then they can eat dirt and I don't need to see their garbage website anyways. If I'm trying to buy a product and they can't even make their website function correctly without a billion scripts running then I don't want their trash product anyways.

Websites like newegg are a good example. You can get most functionality by just allowing newegg.com (.ca), but there are a few extra scripts in there to allow things like pictures of products or the review blurbs. For a site I really want to check out and I know is probably safe like newegg I'll grant allowances to different scripts until the website functions correctly. But I still don't see a need to allow garbage like adsense or whatever. Or amazon, allowing amazon.ca works fine, but if I want to get the mouseover closeup view of products there's another script in there that needs to be allowed.

A major website like amazon can have like 15 or 20 different scripts all told, but you only need to allow a handful to get the website to function. It can be a chore to dig through them all to find the ones that you need but so be it.

And for things like doing job related orientations online at places like shells website where having noscript running will just screw everything up I have a clean and basic chrome that I can fire up without any addons, that I use for very specific and limited instances where I "know" I'm safe.
post #18 of 22
Quote:
Originally Posted by SpankyMcFlych View Post


If I get to a website that doesn't function with noscript running I question whether I really want to see whatever their website shows anyways. If the answer is yes then I'll temporarily allow the main topsite in question. If it still doesn't function after that then I seriously question whether they're worth my time. If the scum want to risk my computer all so they can harvest personal data about me and shove lies and ads in my face that I'm not going to fall for anyways then they can eat dirt and I don't need to see their garbage website anyways. If I'm trying to buy a product and they can't even make their website function correctly without a billion scripts running then I don't want their trash product anyways.

Websites like newegg are a good example. You can get most functionality by just allowing newegg.com (.ca), but there are a few extra scripts in there to allow things like pictures of products or the review blurbs. For a site I really want to check out and I know is probably safe like newegg I'll grant allowances to different scripts until the website functions correctly. But I still don't see a need to allow garbage like adsense or whatever. Or amazon, allowing amazon.ca works fine, but if I want to get the mouseover closeup view of products there's another script in there that needs to be allowed.

A major website like amazon can have like 15 or 20 different scripts all told, but you only need to allow a handful to get the website to function. It can be a chore to dig through them all to find the ones that you need but so be it.

And for things like doing job related orientations online at places like shells website where having noscript running will just screw everything up I have a clean and basic chrome that I can fire up without any addons, that I use for very specific and limited instances where I "know" I'm safe.

 

Holy crap. My thought process is 100% the same, I just didn't want to write it all out. Thank you for saving me the effort.

 

Forbes is a perfect example of garbage not worth viewing.

 

Same on the Chrome too.

2nd Rig
(16 items)
 
  
CPUMotherboardGraphicsGraphics
[Intel] 2500k [4.5ghz] [1.3 volts] [AsRock] P67 Extreme 6 [Sapphire] 6950 Toxic [Unlocked to 6970 spec] Powercolor reference 6950 [Unlocked to 6970 spec] 
RAMRAMHard DriveHard Drive
[Samsung] Low voltage memory [@1866 mHz 9-10-9-28] [GSkill] Sniper 1866 9-10-9-28 1.5V [Corsair] 120gb Force GT WD 500GB 
Hard DriveCoolingOSMonitor
2x Seagate Crapstellation ES 2TB [Raid 1] [Coolermaster] V8 Windows 7 [Gateway] FDH2402 
KeyboardPowerCaseMouse
[CM Storm] QuickFire TK [XFX] Core Edition PRO850W [In Win] Dragon Rider Logitech G502 w/ stupid LEDs 
  hide details  
Reply
2nd Rig
(16 items)
 
  
CPUMotherboardGraphicsGraphics
[Intel] 2500k [4.5ghz] [1.3 volts] [AsRock] P67 Extreme 6 [Sapphire] 6950 Toxic [Unlocked to 6970 spec] Powercolor reference 6950 [Unlocked to 6970 spec] 
RAMRAMHard DriveHard Drive
[Samsung] Low voltage memory [@1866 mHz 9-10-9-28] [GSkill] Sniper 1866 9-10-9-28 1.5V [Corsair] 120gb Force GT WD 500GB 
Hard DriveCoolingOSMonitor
2x Seagate Crapstellation ES 2TB [Raid 1] [Coolermaster] V8 Windows 7 [Gateway] FDH2402 
KeyboardPowerCaseMouse
[CM Storm] QuickFire TK [XFX] Core Edition PRO850W [In Win] Dragon Rider Logitech G502 w/ stupid LEDs 
  hide details  
Reply
post #19 of 22
Holy hell Forbes is nigh unviewable without an adblocker of some sort. It's the poster child for why adblockers exist in the first place. ExtremeTech is another good example of ads gone haywire.

That said AdGuard does a wonderful job of keeping them all at bay and making the sites readable again.
post #20 of 22
the ads scripts are mostly for detecting that the ones viewing it are users instead of bot scripts to ramp up viewing count.
but sometimes dubious ads provider also side-loads other scripts to get the ads more "obvious".
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Software News
Overclock.net › Forums › Industry News › Software News › [AT] How Antivirus Can Open You to Attacks That Otherwise Wouldn’t Be Possible