Author: Editor
Pursuant to ‘Missing Codecs’
Wednesday, June 18th, 2008 @ 12:46 pm
Reviewing the previous post on ‘missing codecs,’ the advertisements I authorize Google to insert in the right-side columns of my pages got me wondering.
Tempted, were you, to click those little blighters and bring me a few cents? And if you had, to where upon the web would I have dispatched you, my innocents?
I have no idea, wherein lies a huge issue for we who try to run "respectable Internet websites."
Image above: Screenshot of article on missing codecs. At right Google Adwords list advertisers who paid for keywords prominent in article, like "codecs" and "media player."
Below is a screenshot of the advertisers on that captured page.
Dirty money?
You might be surprised that Windows Live, Yahoo! and Google SERPS (search engine results pages)are blind to dirty money.
Despite all the sophisticated scam filters and fraud detectors to stop me ripping them off a few cents ("click-fraud") they quietly take money from criminal advertisers, listing them prominently among the sponsored results when you search for information.
And it surprises even me that Google Adwords (and, presumably the other two) run advertisements for criminal websites - and display this malicious content as paid-for advertisements on MY websites.
Let me evaluate the adverts at left using simple methods: powers of observation and McAfee’s SiteAdvisor.
Note, too, that I can’t click my own Adwords links (that is click-fraud) so I must right-click and copy the shortcut, paste into Notepad, and read the destination web address amongst all the tracking code.
I then visit that website and evaluate it from experience.
More scientifically, I call in the big guns from McAfee to rate it based on their testing.
My web browser has the free and powerful SiteAdvisor installed. This miraculous plugin warns me of dangerous or dubious websites, both when I visit them OR review them in a results page from a search engine.
SiteAdvisor. Get it. Install it. Start with the free version.
OK, let’s run through the 5 ads listed above.
MediaPlayer.Softwarez-Depot.oc
What the?
I’m still wondering what a ".oc" domain suffix is. It resolves to .com and that’s a worry. If I tried an non-kocher URL in my Adwords, Google would spit it out quick smart. Feedback welcome.
These folk don’t show up on SiteAdvisor’s radar. A gray icon means it is relatively new on the web and McAfee hasn’t tested it.
DownloadPCDriversUpdates.com.
The destination site is not necessarily the one shown. That’s quite normal, as it’s often a a redirect to the vendor’s website, the advert being placed by an affiliate.
However, when clicked this advert takes you to www.hypertracker.com which SiteAdvisor declares in no uncertain terms is a "red downloads" website. The advertiser’s printed address is Ok, but you don’t go there, you are redirected to a website offering dangerous downloads.
In our tests, we found downloads on this site that some people consider adware, spyware or other potentially unwanted programs.
Go read more and please be afraid. Two downloads identified by McAfee were Trojan variants of "Downloader.ab". Click the link to read the McAfee page reporting on hypertracker.com:
** NOTE **
The advertised (printed) URL, DownloadPCDriversUpdates.com, when entered in a browser, takes one to optimize-my-pc.com, a McAfee green zone.
Yet clicking the ad whisks you off to the the dark side.
Confusing, huh? Dangerous, huh?
PS: View http://www.siteadvisor.com/sites/optimize-my-pc.com/ and note reviewer comment down page.
avs4you.com
The advert takes you directly to AVS4YOU.com. And McAfee gives them the green light:
We tested this site and didn’t find any significant problems.
pcpowerguide.com
These dudes take me straight to themselves with a green McAfee light.
pcsweeper.net
Despite the same headline as 4, not uncommon, I’m off instead to their home site, also a McAfee green zone.
Advertisers 6 to 10
You might not have noticed but Google Adwords now offer up/down arrows at top right of the ad box. Of the next 5 advertisers , 4 were deemed respectable by SiteAdvisor and one was ‘not tested yet’
That one, http://media-playerz.com, initially seemed a professional-looking website pushing free software (QuickTime 7.4) but for the download you must complete an online form.
It became confusing reading the fine print. The site was hastily written. For example, the benefits of signing up:
Your membership is backed by a 7 day satisfaction guarantee.
Signup now and join the millions of users that download files on the Internet.
Get 3 Years Unlimited Software Download & Support ONLY $11.98/year
2 Years Full & Unlimited Access for only $15.88/year
1 Year Full & Unlimited Access for only $19.95
Give me XP Tools to make my computer & Internet faster for only $1.49/Month
Give me the latest updates, newest releases & unlimited live technical support-only $9.88 per month
My head hurts .. it gets dearer for less, or is that a yearly rate? Trying all links on media-playerz.com found broken ones and a lack of depth. Looks like a cardboard mockup.
Anyway, I’m not giving Visa details to a SiteAdvisor-unknown zone, just for starters. Especially one that baits me with software freely available elsewhere and makes me jump through hoops to get it.
Conclusion?
Google** takes money from advertisers who offer malicious software for download - Trojans, to put it bluntly - and run their dirty advertisements on MY website which is trying to warn you to beware of Trojans.
(** Yahoo and Microsoft contextual advertising would presumably also act like Google. I do not run their ‘adwords’ so cannot confirm).
Soon I shall cover the fascinating complement to this subject, the odd predominance of malware websites cluttering the top of Google (and MSN, and Yahoo) PAID search results.
Oh, and I am not removing the Google Adwords.
I am warning you, trust NO-ONE on the Internet.
Deal only with entities you know, and ONLY AFTER you have verified you really are at their website.
Attention to detail and tread warily, please!
Google, Google Adwords, SiteAdvisor, Trojan
Share your wisdom