Plugrush popunder malware
 

Sick and tired of malware infected popunders loaded by plugrush. It is a great way to ruin a good site.

You would think they would have support accessible 24 hours a day so when a webmaster notices something wrong they could contact and have it dealt with straight away. But no, support is always 'offline', and will usually take hours before anything is done. Affecting every visitor to your site who will probably never visit again.

You would think we could login and disable a specific advertiser ourselves, but no.

Big fuck off to the advertiser antivirus.com-alerts.org loading malware infested popunders courtesy of plugrush on your sites.

what a fucking joke. anyone who puts that shit on their site is an absolute fucking moron

Yes tech is definately not their strong side,for example noticed they have option to have mobile verification but sms sending it's not working no matter what.

One hour since ticket submitted, still no response.

Does google report your site as infected when it's from a popunder?

Well I got reply from plugrush 2 hours and 10 minutes later.

5 minutes ago I put plugrush popunder code back on site.

Guess what happened?

Yes, more malware, this time for amatorlanyok.com.

Support as usual is offline.

That's an pretty good response time for an advertisement company contacted outside of their office opening hours. I don't think you'll find many ad companies that can match that.

Oh look at the clueless panda in this thread :1orglaugh

I have mixed feelings about Plugrush and malware in the last year (it was a problem last year too).

Positive:

-They made some changes to make it harder for the assholes.

Negative:

-The stupid malware report requires people to log in to report malware. What is the damn sense in that?

-Why can't we disable certain domains ourselves manually or go whitelist only?

-I notice a relationship between malware and surging cpm rates. One might think Plugrush makes A LOT of money from these malware advertisers so maybe they don't try as hard as they could - just enough to be able to placate publishers?

-Shouldn't publishers get compensated when you guys fuck up and put viruses on our sites? At the very least you ought to be refunding your commission/percentage take to us for the day. It's not so much the money but the principle of it. Why should you get your cut when you're loading the fucking FBI virus on our sites and not giving us the tools needed to protect ourselves pro actively?

I need to add under NEGATIVE:

-No way to track what popunders are being served on your site. This makes identifying the shit based on user reports tougher.

The cpm rates are so low now, I think I am just going to stop using the pop-unders. It's just not worth it anymore, especially when I get infected a few times myself and spend hours cleaning up and recovering from the shit.

It's Friday again, more malware from plugrush, this time the fbi/police thing which tries to get you to pay fine.

It hijacks your PC, it will be there when I restart, which is a major pain in the ass.

2 hours ago I reported this to plugrush...

18 hours later and still no response from plugrush.

Pity all the sites loading their fbi/police malware popunders.

I am still trying to fix my computer, the malware disabled my antivirus protection and did who knows what.

The hackers must love it when plugrush stop work for the day, time to switch on the malware redirects!

And yeah, there is a definite correlation between increased popunder earnings and malware.

Guess why ?

http://m.gfy.com/showthread.php?t=1120967

Ad rates skyrocket when the malware droppers hit. This always made me wonder if some look the other way. Maybe that is part of the problem -- that plugrush isn't having to incur any of the burden when these scumbags drop malware using their ad platform?

Maybe we all need to put notices prominent on our sites. Something like:

"Ads provided by a third party known as Plugrush and are nto under our direct control. For malware complaints and requests for compensation or legal inquiries due to malware please contact Plugrush, address here, phone number here"

Let them field a couple thousand calls a day and have people trying to sue them and I bet somehow things change faster. :)

why still use them if they dont respond to malware? sounds like a easy answer.

What rates are you getting?

Part of reply from plugrush last weekend:

My malware report is now 1 day and 1 hour old.

I have sent message via icq and via the skype account.

There is not much more I can do.

I am starting to believe they like the extra money malware generates.

That is what I was afraid of. :(

It has been 1 day and 22 hours since I reported the popunder malware to plugrush.

Still no reply.

Do they care?

it's monday so hopefully you can get an answer today.

Hi everyone. Thx for all the feedback in regards to what we can do to improve. We take malware complaints very seriously. There is no reason for us to want to destroy our reputation by allowing people to spread malware. If we allow advertisers to spread malware, it hurts our business, and we lose publishers. Sorry that we haven't been very active on the forums the last week. It's been hectic with traveling for the conventions in Amsterdam and Budapest.
We are working on improving automatic detection methods, and I will personally make sure we make the malware report tool available without being logged in.
I will also discuss whether it's possible to let advertisers search and disable individual campaigns themselves. I think it can be done. we'll see.

As for the campaign in question with antivirus.com-alerts.org. We have disabled the campaign although it did not spread malware. I agree it's incredibly annoying and missleading to the surfers. But the reality of it was that the campaign was promoting and trying to get people to install AVG antivirus via their affiliate program, and AVG is not malware. So although very sneaky and missleading, it was not actually malware. We have disabled the campaign regardless though.

And please continue to contact us via our ticket system. it's usually where we have the best response time.

antivirus.com-alerts.org screenshot:
http://thumbnails107.imagebam.com/27...c278916489.jpg

This HAS to be done. Or maybe domain filter would be even better! :thumbsup

i was geting the "fake police report" one on saturday,is this the same?

And this is the malware I reported on Friday, 2 days 16 hours ago. Still no reply.

http://thumbnails107.imagebam.com/27...c278916489.jpg http://thumbnails103.imagebam.com/27...6278917781.jpg

This one disables your antivirus, edits your registry and does other things.

Four times last week I reported malware to plugrush, I have a screenshot of each for proof.

That malware seems to have a lot of "geo"versions,it was in news several times how it's spreading in my country but seems authors were not catched yet which is sort of strange as according to one my friend who got it he said how to make a payment you need to pay on paypal account which should be enough ground to commit further investigation.

Shouldn't it be Plugrush that should be checking 24/7 that it's sponsors are not throwing out malware, instead of Plugrush asking it's affiliates to do their work for them?

I think they monitor but sometimes not all could be caught on time. If others contribute, that makes it better.

I do hope they pick-it-up. Great system if it did not have the said issues.

I agree that we should submit malwar/virus finds as much as possible to help keep the system clean. With as much traffic as they can potentially move with their very nice system/interface, I can easily see why they would get flooded with improper users/people submitting crap. Which of course, only works against the primary goal of the system and while doing so hindering its use for real users.

plugrush is fantastic

its just a shame a few spoil it by putting malware on there sites

I would realy like to see the ROI's of those guys pushing mallware :p

Oh sweet fuck plugrush & malware isn't anything new LOL

It's been like this from day#1, wake the fuck up