LibraPremium
join:2003-08-06
USA
kudos:1 | Coupon Suzy - NO THANKS I've been seeing couponsuzy.com advertised on tv so I decided to look for a coupon. Not seeing any coupons I clicked on "help" and discovered you have to install a coupon printer .exe! They also install Active X or plug-ins and you need javascript running.
I only wanted a coupon  - I wouldn't touch this with a ten foot pole. I can't get over how they can advertise these things on tv, along with the latest malware to "clean" your computer!
Sincerely, Libra |
|
 antiphishingPhishing Scam TerminatorPremium
join:2004-06-09
Wilkes Barre, PA
kudos:2
 ·PenTeleData
 ·ProLog
| said by Libra:I've been seeing couponsuzy.com advertised on tv so I decided to look for a coupon. Not seeing any coupons I clicked on "help" and discovered you have to install a coupon printer .exe! They also install Active X or plug-ins and you need javascript running.
I only wanted a coupon - I wouldn't touch this with a ten foot pole. I can't get over how they can advertise these things on tv, along with the latest malware to "clean" your computer!
Sincerely, Libra
»Is installing a Coupon Printer safe?
--
Specializing in "takes downs" of phishing and advance fee scams
Send your Phishing/Advance fee scams to: phish@antihotmail.com
»www.phishtank.com
»www.fraudwatchers.org
»mozilla.com
|
|
|
|
LibraPremium
join:2003-08-06
USA
kudos:1 | Thank you so much for that link. I'm now reading it and am quite impressed to find ben edelman's comments and findings regarding this issue.
Sincerely, Libra |
|
 Dude111An Awesome DudePremium
join:2003-08-04
USA
kudos:10
 ·Time Warner VOIP
1 edit | reply to Libra
I found this thread where soneone had all kinds of trouble just for installing the program!
»www.windowsbbs.com/showthread.php?t=55437
However this site uses a java applet to print thier coupons
»smartsource.com/smartsource/inde···A6PWPEPO
Seems alot better! |
|
Mele20Premium
join:2001-06-05
Hilo, HI
kudos:4 | reply to Libra
Gee, the grocery store I do most of my shopping at has a big sign on the door stating that they do not accept internet coupons. I don't know any place here that does.
--
When governments fear people, there is liberty. When the people fear the government, there is tyranny. Thomas Jefferson |
|
| reply to Libra
Walmart does |
|
| Wouldn't touch Groupon with a 10ft pole either. It's in the hosts file.
Stores will accept their own internet coupons from their sites.
CS |
|
| reply to Libra
I'm with you, this seems like a potentially expensive way to save a buck.
I'll stick with the coupons in the Sunday paper, thanks. |
|
| reply to antiphishing
said by antiphishing:http://www.dslreports.com/forum/r20236965-Is-installing-a-Coupon-Printer-safe
Interesting thread. Thanks for posting it.
Curious, I went to the couponsuzy page, where I was greeted with a completely blank page and a box coded in by them notifying me, "This website requires JavaScript. Please enable JavaScript for this browser and click continue." BS to that. Hit the google cache to read it instead and found other pages on their site that were not coded to be blocked without javascript enabled.
I was only looking for said printer exe and didn't stay long. Uploaded that to various scanners. Here's VirusTotal's analysis:
said by »www.virustotal.com/file-scan/rep···94596366 :
File name: couponprinter.exe
Submission date: 2011-01-09 18:06:06 (UTC)
Current status: finished
Result: 4 /43 (9.3%)
[snip]
Command 5.2.11.5 - 2011.01.08 - - W32/MalwareF.EWMC
Comodo 7341 - 2011.01.09 - - Heur.Suspicious
F-Prot 4.6.2.117 - 2011.01.08 - - W32/MalwareF.EWMC
K7AntiVirus 9.75.3472 - 2011.01.07 - - Riskware
[snip]
Symantec reputation: Suspicious.Insight
-Jim |
|
| Edit: Looks like I cut off parts intended when pasting above.
Add this:
The couponprinter.exe I scanned/shown above has an MD5 Hash of: 82c2af1b8f4dde40301ef803c3e641a7
This is a different file that was scanned and shown in this previous post. - That (shown in post as: couponprinter.exe) which has an internal file name of "suf70_launch.exe" and an MD5 Hash of: faeaeff7bdf57cc69075d0ca01afc1c9 .
said by »www.virustotal.com/file-scan/rep···91476080 :
File name: 80ec40b449844036af4397ea6a83e6413b05fe1d None
Submission date: 2010-12-04 15:21:20 (UTC)
Current status: finished
Result: 2 /43 (4.7%)
[snip]
DrWeb 5.0.2.03300 - 2010.12.04 - - Adware.Coupons.34
Prevx 3.0 - 2010.12.04 - - High Risk Worm
[snip]
Prevx Info:http://info.prevx.com/aboutprogramtext.asp?PX5=41D4DF31507748EE0D5213089C472E0046BDBCCA
|
|
Dude111An Awesome DudePremium
join:2003-08-04
USA
kudos:10 Reviews:
·Time Warner VOIP
1 edit | reply to goalieskates
quote:
I'm with you, this seems like a potentially expensive way to save a buck.
Yes it seems very strange!!
The one i listed above only uses a java applet to send images to your printer and they give away over $80 in coupons!!
HOW CAN THEY DO THAT?? |
|
LibraPremium
join:2003-08-06
USA
kudos:1 | reply to Libra
Hi everyone!
I never printed an internet coupon for a supermarket before, but one supermarket has a sign it doesn't accept them. Since bringing this up, I went to the manufacturer's site to look for a coupon or a "contact us" link, but instead found a link for free coupons which also required the installation of that coupon printer! Every time I see that coupon Suzy ad on tv I get disgusted. It's running on Channel 2 (wcbs) during the daytime. Whenever I've seen those phony fix your computer ads they've been late at night on cable stations. I guess they're getting bolder.
Sincerely, Libra |
|
| Can't you do "print screen" and resize before printing?
CS |
|
 diskdruid
join:2002-09-08
Saint-Jean-Sur-Richelieu, QC
kudos:1 | or use the Capture tool in W7 ?
Can someone point me, please, to a link or page where it explains why everyone seems to be afraid (maybe not the right word) of javascript.
I do not know.
TIA |
|
 angussfPremium
join:2002-01-11
Tucson, AZ
kudos:3 | reply to Libra
If there is ever anything that I want to try out temporarily, I just install it in a throw-away VirtualBox VM. When I'm done, I delete the VM. |
|
 Doctor FourMy other vehicle is a TARDISPremium
join:2000-09-05
Dallas, TX | reply to diskdruid
said by diskdruid:Can someone point me, please, to a link or page where it explains why everyone seems to be afraid (maybe not the right word) of javascript.
I do not know.
I have no links or pages, but a lot of malware will use javascript to get its foot in the door, so to speak. And once it can load through that means, any unpatched vulnerability in the browser, the OS, or other software can then be exploited.
Many of the rogue security products will use javascript to make the initial redirect to their fake scanner pages; allowing it by default on all sites can be dangerous. Better to block it all, then allow it to run on sites that can be trusted.
--
"The trouble with computers, of course, is that they are very sophisticated idiots." - Doctor Who (from Robot)
|
|
diskdruid
join:2002-09-08
Saint-Jean-Sur-Richelieu, QC
kudos:1 | Thank you Doctor Four, seems I need to research that cause java is enabled here. |
|
| Plus: remember that "Java" and "Javascript" are different things! Be sure you research them both, separately. |
|
angussfPremium
join:2002-01-11
Tucson, AZ
kudos:3 | reply to diskdruid
said by diskdruid:Can someone point me, please, to a link or page where it explains why everyone seems to be afraid (maybe not the right word) of javascript. Since Javascript is executable program code, by enabling Javascript you allow websites to run unknown code in your browser. You are trusting the websites not to Do Bad Things to you. And you are trusting the websites not to pull code in from other sites which Do Bad Things, which is what happened to O'Reilly in the 2nd example below.
Firefox with NoScript is the way to go IMHO. IE "Zones" are a poor and clunky alternative. There is a "NotScript" extension for Chrome, but I haven't been able to get it to work.
Lots of good reading here: why javascript is evil - Google Search and
dangers of javascript - Google Search For example: alt.html FAQ: [Client-side Basic Scripting] Why is Javascript so evil?
Because webmasters use it to make:
* Popup windows and Popunders
* Windows presized to some size the user don't want.
* Windows with no functionality, ie. just a frame with contents.
* Full screen windows, again a size the user don't want.
* Forcing windows to front of the screen
* Taking over the status bar
* Alert boxes ... Example: Sitemorse News: Alert to the dangers of JavascriptSo what can JavaScript do? The list has expanded with every release (it’s just about to reach version 1.4). At first it was simple things like changing the appearance of something on the page when you put your mouse over it (a ‘mouseover’ event). Later versions enabled it to resize browser windows, open new windows and write cookies (the little text files that tell sites if you’ve visited them). Ingenious JavaScript writers could even add their site as a bookmark on your browser, or make it your homepage.
And the some web designers realised they could go a lot further: that they could alter the registry on Microsoft’s Windows operating system. The registry holds all sorts of details about the configuration of your machine, and gets accessed every time you start up; any programs in there get run. Example: Dangers of remote Javascript - O'Reilly RadarWe at O'Reilly just got bit on perl.com [ASF note: owned by O'Reilly], which redirected to a porn site courtesy a piece of remotely-included Javascript. One of our advertisers was using an ads system that required our pages to load Javascript from their site. It only took three things to turn perl.com into porn.com: (1) the advertiser's domain lapsed, (2) the porn company bought it, (3) they replaced the Javascript that we were loading with a small chunk that redirected to the porn site (note that nothing on or about perl.com changed). HTH 
--
Angus S-F
GeoApps, Tucson, Arizona, USA
»geoapps.com/
»www.linkedin.com/in/angussf
»geoapps.blogspot.com/ |
|
diskdruid
join:2002-09-08
Saint-Jean-Sur-Richelieu, QC
kudos:1 | OK, you've all convinced me. Just installed Noscript. angussf, thx for the links.
Thank you all |
|
