YouTube MP3 Converter loaded with googlebreak browser hijacker

Back to Giveaway of the Day

Giveaway of the Day Forums » General discussion

YouTube MP3 Converter loaded with googlebreak browser hijacker

(5 posts) (3 voices)

Started 14 years ago by icerabbit
Latest reply from Violet4714

icerabbit
Member

Hi,

The GOTD from 2/2/2010 YouTube MP3 Converter contains add-ons and/or other code which hijack the Internet Explorer and FireFox browser homepage to http://www.googlebreak.com/?CID=3&PID=STV and search engine to googlebreak.com.

I don't know if this was missed during GOTD testing?
Or if this is to be accepted as part of the GOTD deal?

Personally I don't think it is acceptable and this event made us think twice about GOTD downloads.

Setting the browser back to your own personal preference is only temporary as it will be changed back to googlebreak.com in no time.

Uninstalling the program does not resolve the issue as the uninstaller does not remove the secretly installed add-ons that the user did not authorize.

Users need to uninstall the program and manually remove the add-ons in both browsers.
( I guess it may be possible to use the app without the browser add-on, but who wants to trust that option? )

I submitted the download to a couple security sites to have it checked out, as it wasn't flagged (yet) during any scan.

From MBAM I learned that the googlebreak hijacking is also caused by other products:

"Hijacked page comes from one of this tool: downloadbreak, freevideodownloader, freeyoutubevideodownloader, googlebreak, pornhubdownloader, ... or porn-stream downloaders from the same corp.'

See: http://forums.malwarebytes.org/index.php?showtopic=39422

The googlebreak in our case absolutely came with the YouTube MP3 Converter GOTD special as we don't have any of the other apps downloaded and the issue started that day. It is also mentioned here: http://support.mozilla.com/no/forum/1/579315

I hope this information may help other users and GOTD will consider removing any of those offending apps, if linked by GOTD, and will banning whoever is behind these apps from future GOTD specials for the hours of aggravation, troubleshooting etc it causes for unsuspecting users who believe GOTD offers are tested malware, spyware, ...-ware free.

Posted 14 years ago #
GMMan, Hexadecimal Blacksmith
Blocked

Unfortunately, the software's developer decided to hijack your browser when installing the software. Regardless of which version you download, it will do this. I'm not sure if the GOTD team tests for hijacking addons, or if they install the program at all to test out functionality. It would be a good idea to ban those developers who thinks they can get away with adding whatever random junk they want, but frankly I don't think the GOTD team puts out too much effort to check for those things.

Posted 14 years ago #
Violet4714
Member

hi, icerabbit...

welcome to the forums (tho' i'm sorry it was to report problems/concerns)...

the comments page for that giveaway were filled with community members reporting the toolbar/hijack/etc....

http://www.giveawayoftheday.com/youtube-mp3-downloader-30/

at comment #27 one of the GOTD forum mods, graylox, added a link for the community to report the developer/website to Web Of Trust...

the prior giveaway of that program there weren't reports of this behavior...but the website link was a different address...

GOTD let the criticism stay, & hopefully took notice & will not allow this again...

please also post your warning in the "Review Trojan/Virus Reports" thread:
http://www.giveawayoftheday.com/forums/topic/719

---edit---
please also note the comment by Merril @#15...extra insight there about the program(s)...

Posted 14 years ago #
icerabbit
Member

Thank you, Violet :)

Interestingly I wasn't able to get back to that GOTD product page from that day through a search from the gotd homepage?? All it gave me was ads with links to vendors. Figured we couldn't have been the only one ... but that's how I ended up posting in the forum. Did notice now one can click back through previous posts at the very bottom.

Thank you for pointing out the comments.

Don't know if the rating and comments were there at the time of the download. Unfortunately the utility was downloaded and installed without review by a family member ( my wife ;) - but the same could have happened to me - ) trusting it was a safe and kosher utility. It may have been posted on dealnews and was more of a mindless click through thing, as it seemed something good to have. I think we've all been there done that. Lesson learned.

Posted 14 years ago #
Violet4714
Member

you're welcome, icerabbit...

it does seem that the developers are increasingly putting opt-out instead of opt-in...GOTD contributors & others...

for a GOTD search you can:
1) look thru the Archives (the calendar box) on the right hand side of the front page or download pages...you have to go month-by-month, & hovering your mouse over the date will show the giveaway that day
2) use Google advanced search...for the forums, this works (to me, anyway...lol) the best:
http://www.google.com/advanced_search?hl=en&num=100&as_sitesearch=giveawayoftheday.com/forums
(thanks again to the missing-in-action Rune for this long ago tip)

OT @ lesson learned: too many converters installed on my pc...lol...

Posted 14 years ago #

RSS feed for this topic

Reply

You must log in to post.