Here is the url from the popup I was getting yesterday while logged onto INGO. It's from a company called VoiceFive. Popped up 5 or 6 times. Its not malware or a virus or anything. Just some stupid advertising.
Sorry, I dont have that.
I meant the URL of the INGO page you were visiting when you received the alert.
Sorry, I dont have that.
Yeah, I couldn't possibly know what I'm talking about.
I get the warnings sporadically too. I know whats going on. (I do network engineering/security for a living)
What is happening is the vendor(s) that INGO uses for serving ads is the cause of the alerts. Here is how it works:
1. Bad guy contracts with ad provider to serve ads for his "product". He pays to have his ad shown on 1 out of every 5000 page views. (he has the ability to tweak his ads on his own after the fact and doesnt need to go back through the ad vendor to tweak it)
2. Ads start being served on various websites as expected.
3.Bad guy then changes the ad to redirect to malicious code that tries to infect your PC with malware.
4. Random users start complaining to INGO admins about virus popups but since its only 1 out of every 5000 views its hard to track.
I get the warnings sporadically too. I know whats going on. (I do network engineering/security for a living)
What is happening is the vendor(s) that INGO uses for serving ads is the cause of the alerts. Here is how it works:
1. Bad guy contracts with ad provider to serve ads for his "product". He pays to have his ad shown on 1 out of every 5000 page views. (he has the ability to tweak his ads on his own after the fact and doesnt need to go back through the ad vendor to tweak it)
2. Ads start being served on various websites as expected.
3.Bad guy then changes the ad to redirect to malicious code that tries to infect your PC with malware.
4. Random users start complaining to INGO admins about virus popups but since its only 1 out of every 5000 views its hard to track.
I meant the URL of the INGO page you were visiting when you received the alert.
That VoiceFive popup, incidentally, is from malware on your computer, not from INGO.
Yeah, that's great. INGO is 68.233.250.2, so that warning isn't coming from here.EDIT: Full URL reported as "76.74.152.32/xvwhyr/ncycxf.ph"
Yeah, that's great. INGO is 68.233.250.2, so that warning isn't coming from here.
I just received the following alert from Avast while viewing this thread.
Infection Details
URL:http://76.74.152.32/xvwhyr/ncycxf.php?zid
Process:C:\Program Files\Internet Explorer\iexplore.exe
Infection:URL:Mal