Netflix + Hola ... Malware..

Forums › Online streaming services › Netflix + Hola ... Malware..

hobsonlea

313 posts

Ultimate Geek
+1 received by user: 51

#152132 17-Sep-2014 10:21

Hi,
I use Chrome + Hola + Netflix. In the last 2 days I have had a popup Chrome window twice now trying to get me to install Malware.

The first I didnt take much notice of it - but fl_setup.exe 80kb looked suspicious - wasnt detected by MS Security Essentials - so decided to test via online virustotal.com - seems to run the file against most of the av tools. It came back with a hit on 9 detections in the file.. Microsoft was shown on the site as passing the file, no detection. Access to the URL of the detections may be possible via https://www.virustotal.com/en/file/5cfc2e5c20c37fc11a920ffb2571cc0dbf2dca69c847bd8b6d1197b664217f71/analysis/

Antivirus Result Update
AVG Generic.4A4 20140916
AVware AdKnowledge (fs) 20140916
Avira ADWARE/iBryte.Gen7 20140915
Comodo Application.Win32.AgentCV.HWYE 20140915
DrWeb Trojan.DownLoader11.32333 20140916
ESET-NOD32 a variant of Win32/AdWare.iBryte.BF 20140916
F-Prot W32/A-34fffba4!Eldorado 20140916
Malwarebytes PUP.Optional.OptimunInstaller 20140916
VIPRE AdKnowledge (fs) 20140916

So I deleted the file, and was perplexed..

Today while trying to access the same netflix + hola via Chrome I had the second new popup window.. this time wanting me to install "Internet Download Manager".. this was the popup link

http://ww1.inetdownloadmanager.com/?io=A004&txt=Ads%20By%20SupraSavings&abt=http%3A%2F%2Fwww.suprasavings.com%2Faboutthisad.php

I decided against pushing the "install button" within this window - and seek advice...

I ran a Malwarebytes check just now and got (the first file is the fl_setup.exe file in the recycle bin)

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 321394
Time Elapsed: 9 min, 3 sec

Files: 3
PUP.Optional.OptimunInstaller, C:\$Recycle.Bin\S-1-5-21-3884892844-2165067486-330871413-1000\$RNW6G2Q.exe, , [aeabb6383d3e280e9e3cb5943cc40000],
PUP.Optional.BetterDeals.A, C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.betterdeals00.betterdeals.co_0.localstorage, , [0b4e5d91accfca6c86b3f720fe05956b],
PUP.Optional.BetterDeals.A, C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.betterdeals00.betterdeals.co_0.localstorage-journal, , [1e3b36b88cef3600e356e4337f8427d9],

Anyone else noticed this behavior ? Or have any advice ?
I am using the free Hola version..

Thx Pete

xpd

Geek of Coastguard
14115 posts

Uber Geek
+1 received by user: 4574

Retired Mod

ID Verified

Trusted

Lifetime subscriber

#1130492 17-Sep-2014 10:28

Are you using any other extensions etc ? If so, disable them all to ensure its not one of them causing the issue...

XPD / Gavin

LinkTree

hobsonlea

313 posts

Ultimate Geek
+1 received by user: 51

#1130499 17-Sep-2014 10:35

xpd: Are you using any other extensions etc ? If so, disable them all to ensure its not one of them causing the issue...

Nope - just Hola in my chrome extension list.

tieke

687 posts

Ultimate Geek
+1 received by user: 256

ID Verified

#1130517 17-Sep-2014 11:05

I stopped using Hola for good last year when they started injecting adlinks into webpages. Checking on that now, it looks like they stopped doing that after an initial trial but it wouldn't surprise me to see that they were trying to bundle some other adware into their product.

hobsonlea

313 posts

Ultimate Geek
+1 received by user: 51

#1130520 17-Sep-2014 11:11

tieke: I stopped using Hola for good last year when they started injecting adlinks into webpages. Checking on that now, it looks like they stopped doing that after an initial trial but it wouldn't surprise me to see that they were trying to bundle some other adware into their product.

Thx - I did see there was a flurry of issues last year - and what looked like a good response from Hola. The issue I am having looks more than just ads and adware... and I'm sure it is not what Hola would want..

If I recall the action it was a "restart of a viewing" using the url I left in my browser from the last watch - and a refresh of that page.. then a popup..

charsleysa

597 posts

Ultimate Geek
+1 received by user: 125

#1130561 17-Sep-2014 11:52

Try using dns4me.net they will get the job done a lot better than Hola.

Regards
Stefan Andres Charsley

turb

880 posts

Ultimate Geek
+1 received by user: 135

#1130563 17-Sep-2014 11:54

Or unotelly as advertised here on GZ with a discount.

Interests: HTPC, Web App authoring.

Lenovo

Shop now for Lenovo laptops and other devices (affiliate link).

hobsonlea

313 posts

Ultimate Geek
+1 received by user: 51

#1130568 17-Sep-2014 11:58

Thx for suggestions - I currently use unblock-us.com and works well - but if one user in household switches netflix regions (for example to Netflix Sweden to watch the excellent Line of Duty Series 1) , all have to use that new region.

Hola allows me flexibility to finish a series or movie by letting me flip netflix countries.. regardless of unblock-us

charsleysa

597 posts

Ultimate Geek
+1 received by user: 125

#1130574 17-Sep-2014 12:01

hobsonlea: Thx for suggestions - I currently use unblock-us.com and works well - but if one user in household switches netflix regions (for example to Netflix Sweden to watch the excellent Line of Duty Series 1) , all have to use that new region.

Hola allows me flexibility to finish a series or movie by letting me flip netflix countries.. regardless of unblock-us

You should ask dns4me.net to build that feature, they are currently taking user feedback and customer requests on the thread here on geekzone. It's a pretty awesome service, free while in beta then $4/month afterwards.

Regards
Stefan Andres Charsley

hobsonlea

313 posts

Ultimate Geek
+1 received by user: 51

#1130577 17-Sep-2014 12:04

charsleysa:
hobsonlea: Thx for suggestions - I currently use unblock-us.com and works well - but if one user in household switches netflix regions (for example to Netflix Sweden to watch the excellent Line of Duty Series 1) , all have to use that new region.

Hola allows me flexibility to finish a series or movie by letting me flip netflix countries.. regardless of unblock-us

You should ask dns4me.net to build that feature, they are currently taking user feedback and customer requests on the thread here on geekzone. It's a pretty awesome service, free while in beta then $4/month afterwards.

I will - at the moment their registration / login isnt working for me.. "Invalid Credentials" I have contacted their support.

charsleysa

597 posts

Ultimate Geek
+1 received by user: 125

#1130581 17-Sep-2014 12:07

hobsonlea:
charsleysa:
hobsonlea: Thx for suggestions - I currently use unblock-us.com and works well - but if one user in household switches netflix regions (for example to Netflix Sweden to watch the excellent Line of Duty Series 1) , all have to use that new region.

Hola allows me flexibility to finish a series or movie by letting me flip netflix countries.. regardless of unblock-us

You should ask dns4me.net to build that feature, they are currently taking user feedback and customer requests on the thread here on geekzone. It's a pretty awesome service, free while in beta then $4/month afterwards.

I will - at the moment their registration / login isnt working for me.. "Invalid Credentials" I have contacted their support.

Since its in beta you have to post on the thread or pm the guy to create you an account.

Regards
Stefan Andres Charsley

hobsonlea

313 posts

Ultimate Geek
+1 received by user: 51

#1130585 17-Sep-2014 12:13

Thx have pm'd albi90

Samsung

Shop now on Samsung phones, tablets, TVs and more (affiliate link).

michelangelonz

125 posts

Master Geek
+1 received by user: 40

#1131728 18-Sep-2014 19:28

Try using Getflix, try have a great service for a good price.