How much malware can you get from Fake Download Buttons in 2024?
HTML-код
- Опубликовано: 22 авг 2024
- How much malware can you get from Fake Download Buttons in 2024?
Official Discord Server - / discord
Follow me on X - / atericparker
In this video we re-check on Adf.ly, now rebranded to "linkervtise", adfocus and other services that end up in the middle for mod downloads. For example, the download for the "Mo Creatures" mod will have a variety of advertising in the middle, which unfortunately will often lead to dodgy downloads.
Disclaimer: The content in this video is for education and entertainment purposes to showcase the dangers of malware & malicious software. I do not encourage any form of illegal hacking, nor do I encourage the usage of game cheats, cracks or hacks.
Cracks are sometimes shown to highlight the dangers of software piracy, my content is not intended to teach anybody how to pirate, or maliciously hack.
More Malware Investigation Videos:
→ The latest "NORD" Malware - Nordsecured: • The latest 'NORD' Malw...
→🧧VIRUS WARNING🧧 NEW Optifine for Minecraft 1.16 SCAM: • 🧧VIRUS WARNING🧧 NEW Op...
→ The wilkreate RUclips stealer virus that started this whole trend: • Fake sponsor DESTROYS ...
(C) Eric Parker 2024
As a certified Sims 4 custom content addict, finding out what MediaFire looks like without an ad blocker felt like a jumpscare
me and my 15 gb of cc felt this
For real I feel like everytime im on there my computer is gonna explode
@@xaniidaniiWHAT
it used to open a popup ad tab i could just close out but it doesnt anymore for me (i only recently got adblock so idk)
@@xaniidaniime and my 100gb REALLY felt this😂
Google: You dont need adblockers
Average website on google:
Recipe sites are especially bad- they have so many ads they drain my phone battery and lag my device. I had to download my first adblocker just to make those websites usable.
@@thatonepossum5766 all kinds of blog-pages are almost as bad as newspaper websites... i recommended uBlock Origin, it's the best free adblocker out there, and it even has a great mobile version for firefox.
@@thatonepossum5766True. You can click the “print” button to just see the recipe without the ads as well but it’s a good idea to have an adblocker regardless
@@thatonepossum5766Firefox added a new function called "reader mode" that turns the website into an extremely simple mode with just formatted text of the page , it might be helpful for these
@@thatonepossum5766I use justtherecipie because of that, it gets rid of everything but the ingredients and directions
If I ever visit a website that starts speaking to me, you can bet your butt I am Alt+F4-ing. I cannot comprehend how anyone does not see it as a huge red flag.
Same, unless it's a tech support scam, in which case I'm writing down the phone number on the page to mess with.
Same with chat bots
couldn't you just close the tab using Ctrl+W?
@@ascode2films691 probably - but you overestimate my thinking abilities
@@Dumb_Killjoy DO NOT REDEEM
RIP ADFLY YOU WONT BE MISSED 🙏
fr lol
actually i kinda miss it, adfly skipper was peak time. Nostalgia reasons ofc.
the worst was when the ads forced you to enable notfications, I will never forgive them that
rest in piss
i love oily men
These fake download buttons are like those millions of years old viruses that scientists discover frozen in Arctic
My grandpa still clicks them. But yeah he's as old as some frozen viruses
@@janintelkorlmao
@@janintelkorthis is why phishing is still popular
@@janintelkorlucky. my grandpa doesn't know how to use Google. all he does is play command and conquer.
@@BirdBro2 nice
remember scanning my entire pc for viruses after just seeing the fake download button , not even interacting with it
lol
ah yes, i remember scanning my entire pc for viruses before turning on the pc, just in case because i saw a virus on another computer.
that's so cute omg
i did the same thing before haha 😭 i thought those ads were appearing because i had a virus
I feel like it's a great segue into ocd intrusive thoughts and tendencies. Imagine if you had OCD
you visit the site and you've not clicked it but you've done 5 virus scans with malwarebytes and defender and Norton and avast and then you log out and the whole week you walk past your computer you feel nauseous because the computer is now "dirty"
You're like "no lmao I didn't even interact with it" but now everytime you boot your com you rescan
And then one day you just say screw it and throw out the entire computer because you want to get by the day and write your essay or work without feeling like you're finding cans in a trashcan on a hot humid day
It's always shocking to see the internet without ublock origin etc... and scary knowing your relatives are all raw-dogging the web like this.
Yeah although I've found simply making Brave the primary browser on relative's computers to be the most painless solution. Not quite as powerful out out of the box but stops most of it with a smaller chance of breaking a website. You know the slightest inconvenience means they'll call you saying it's broken or install something else and simply never use it again.
My mom refuses to install adblocks bc she's 100% sure it's gonna steal her banking info
I'm thinking about buying a raspberry pi and making it a local adblock dns server for our home network
@@W0lfCL I host a VM with RaspberryOS locally on my machine, and that runs PiHole. It’s relatively lightweight, and simple enough to set up.
You could also get an old computer, set up Linux (or run straight from a USB) and run PiHole on that, that way you don’t waste resources on your PC.
@@ukemi- that's exactly what I'm gonna do, I daily drive linux so it's not gonna be much of a difficulty for me (i use arch btw :)), I just need to get a machine to run it on, maybe my friend's willing to give me his old lapfop
@W0lfCL I installed Brave Browser on my parents' PC while I was setting it up last year. It has built-in adblocking.
this is why an adblocker is essential! ads can be annoying yes, but they can also be downright dangerous.
@@NerdyNEET Saving my lifetime. It's the most worthy thing in our lives. Nobody gives you that time back.
@@NerdyNEET Have you tried to browse the web without Adblock nowadays? The intense amount of pop up ads and ads in general that litter the screen can seriously slow down your device.
@@SerfOfTheYearBut how? Cant you just close the ads?
@@morkmello5367 You mean pressing the tiny X, that is fake and will act as if you clicked the ad?
Answer: NO
Time to use the Brave browser as my default browser then.
Pirating sims as a child has molded my vision to filter out everything but the correct download button
At my last workplace (a university library), there were restrictions in place that meant only IT staff could install programs on any of the computers. It's worth mentioning that the IT department seemed to have a lot of trouble recruiting and keeping staff, so many of them were inexperienced.
I needed a piece of label-printing software installing, but was having trouble finding it online - all the links I could find seemed to be dodgy ones. I tried to explain this to the IT staff member who came to help, only to watch him boldly click on one of the dodgy links, press the big green 'DOWNLOAD' button, and install Wave Browser, despite me repeatedly commenting, "This website doesn't seem legit - are you sure this is the right software?" 🙃
sadge
That level of incompetence is almost worse than not having IT staff
Absolutely 😂 @@ActionScripter
As someone who works as a university IT department... we don't have a lot of people to pick from 😅
But Google wants us to disable our adblock yup time to drag Google to court for security violations!
Awesome klonoa pfp
You can't do that 😭
Awesome klonoa pfp
@@adrianscripts8013true, but the JDAM I bought from Ukraine can
Don’t use Google. Use DuckDuckGo
Securify is going to keep us safe from scams like securify
Anything behind an Adfly, Linkvertise, or similar is simply not worth my time. I understand sometimes people want to get a little change for their work, but that's not worth dealing with these minefields. Not only that, but there's no way they aren't aware of how dangerous these sites are, especially for things like Minecraft mods, which are more likely to be found by kids that could easily fall victim to a malicious download link.
They'll take the tiniest piece of a cent if it means exposing their own community to malware. Which should be enough to not even use their program/mod whatever
Adfly used to be a huuuge problem in the sims modding/custom content community. Luckily it’s dialed down but there would be people that straight up believed they were entitled to making money in a shady way because they made a few custom shirts or hairstyles
@@char932 Same for minecraft, so many mods locked behind adfly and its 500 viruses
@@LucyWoIf yep…also the cause for the hundreds of viruses I put on the family computer a kid lmaoo 👍
It's literally very easy to access the mediafire link tho
This brings me back to those old Joel Windows Destruction videos
Jobel pls windows 11 destruct
SAME
@@rufflechips1080What country’s flag is your pfp and why do you hate them so much?
@@LonelyGamer4that is the "zoophile pride flag" 😭😭 the hate is Definitely warranted
@@LonelyGamer4 the flag they have crossed out is the zoophile pride flag (real thing)
This is just icky to watch, it's like someone being coughed at in the face. Good video
seeing the chrome extension popup and you going through and installing it brought back HAUNTING memories i repressed from when I was a kid. I installed one, and my browser was basically completely taken over. I think i managed to get rid of it (this was on my two times old laptop, so it doesn't matter now), but holy hell it was a frightening experience. I have no idea what it did, and I'd rather not find out.
This actually reminds me of something - I have no idea how it happened, but my laptop that I’d had for years at some point suddenly had “Chromium” show up on the desktop. I believed it was some kind of virus or spyware that was pretending to be chromium. It kept setting itself as my default browser, I couldn’t find a way to uninstall it, and my laptop suddenly stopped functioning properly, and had issues with the battery. When its battery basically collapsed, I convinced my parents to just let it die, because I was sure it was infected anyway.
I still wonder what actually happened to my laptop. And if it was some kind of spyware, now the hell it got on my pc, considering the shadiest sites I’d been to were all for Minecraft mods, and I only ever used websites my sibling had also used. I never clicked through ads or anything, and as far as I’m aware that’s one of only two malware I actually installed. (The other was a sims cc that my antivirus blocked - the file was called “notavirus”.)
@@loki_is_tired How long ago did this happen? If its recent enough I wonder if you got some kind of crypto miner installed that bundled itself into some kind of fork of chromium.
@@whamer100 It was maybe 5, 6 years ago?
@@loki_is_tired It honestly very well might have been some crypto miner that had some kind of malware loader deeply embedded into your system that kept forcing it to be the default browser so it kept launching. I cant think of any other kind of malware that would intentionally do something so intensive that would constantly kill the battery (of which would also cause the system to be less responsive).
11:06 "talking-out-of-nowhere" Websites always reminds me to the time I searched with a friend on how to download hacks for GTA 5 and we got scarred heavy when we encountered such a website 😂
the more normal and chill they make the voices on websites like that, the scarier it is when you hear them blast through your little electrified metal box for the neighbors to hear
@@scalemeraldFr 😭
I love how simple these videos are. No intro, no fancy schmancy outro or subtitles to try and keep attentiin. Just a guy talking about malware and doing a bit funny.
unlike mutahar, the guy that copies all of this dude's ideas :)
@@elmi8769crazy how such a big youtuber has no shame in blatantly taking from him😂
@@tatsuyamashita I mean, the "Plagiarism and You(tube)" video kinda shows how common that is...
@@elmi8769but i like mutahar 🙁
@@Rinsyo4s you can still do so! Just because there is something not that bad about a person doesnt mean you cannot like someone. We all have opinions.
i remember when linkvertise would force you to download adware before you can continue its good that they stopped doing it but they're still shady
Used to download 3rd Party Minecraft Bedrock Resource Packs in those days and that was the reason I stopped because it was hard to found any that didn't use this site
Lol but you can skipped and don't install them, first Time i fall in this and After the download i have now Avast/mcfee... 😂
He was so shocked at what he downloaded he forgot he had an accent 😂
And this is why ublock origin (adblocker) is incredibly important and manifest v3 (coming soon I believe) should not be shipped
Because it will limit adblocking effectiveness
UBlock Origin is a must
@@LeonAlkoholik67 switch to firefox. Yes, its worse but still do the thing
Without Ublock Origin i would actually be dead 😔‼️
i use adblocker ultimate
03:00
"I'm in court,
stop doing it."
why is this so funny
Probably a bad translation or review bot? Still funny whatever it is.
i dont understand how people browse the web without an ad blocker
Most don't know, 25% of people use desktop adblock
Most people don't know adblockers exists, or don't want to bother installing one.
😅
nobody in my family other than me seems to even know what an ad blocker is, and it's quite terrifying. i installed one on my dads laptop after needing to use it once and i was just so confused asking him how he used it without one
@@thel3218 That second part is real and it's absolutely insane to me. Do they think it takes ages?? It's like 5 minutes max...
6:38 This is a lua script used by Roblox exploiters, the whole script is in github but it was shortened into a loadstring, its not malicious on its own but it is for the players that are going to play against those exploiters
Its malicious , ur kidding right
@@Jose_-qb4lcIt doesn’t do anything, it’s just a GitHub script lol. You need a script executor to even use it, and it only affects the roblox client locally. Thus not malicious, but frowned upon and against roblox TOS.
its unlikely it is. roblox exploiters use things called executors, which can run any lua code on their client, most executors have gotten rid of the methods to do stuff like steal cookies / passwords by running the code in a sandbox environment, but sometimes if the executors have vulnerabilities the code can escape the sandbox and steal stuff.
@@Jose_-qb4lc I highly doubt it is as its safe to run the script because bassically every single method to do anything malicious has been patched by major executors. Worse thing that happens is the script makes you spam the N word against your will and your roblox account gets banned.
@@Jose_-qb4lcit’s basically just a text file you don’t even need to install it it’s not malicious what is malicious is the executor used to actually use the script
6:20 eric being clueless while attempting to figure out how a script for a lego game works
It's a script that you need to put on a roblox injector to load the script's/cheat hub
Well i guess if you never have seen it before then its understandable. Basically what it does for anyone who doesn't know its just a script that you paste into a Roblox executor and when you execute it it just gets the main exploit script from github and loads it. It just makes it easier to share since its a small line of text vs a massive script.
It's script for lua Executors
never even played roblox but i assume that's a command you put in somewhere and from there it loads a lua script to run in the game?
@@adora_was_takenyeah. you use a tool that abuses a dll vulnerability and it lets you execute lua code on the client. you can then paste in whatever you want to run and run it
This video reassured me that getting an ad and popup blocker was the right decision.
Eric those Roblox scripts are just a line of text or a .txt file. You need a Roblox executor for them, which is a really big hub for honeypots, grabbers, viruses, etc. I suggest doing a videos on those.
6:25 that text with “loadstring” is actually supposed to be executed using some Roblox Executor (exploits/hacks), loadstring is what they use to load large texts from other sources
I have actual nightmares about these sorts of scam extensions lol great video
Wait... Is that how internet looks without adblock? Havent seen it in 7 years... How unsightly
No, only on sketchy websites.
@@Madmonkeman not like non-sketchy sites don't look awful too tho
yea we killed internet
i was just yesterday binge watching your ad clicking malware videos. godspeed
your videos made me remember the time i scanned my old computer for malware and the AV found 400 of em. i was a bad pirate lmao
7000 on my old desktop. I study cyber security now lmao!
Lol i only had one trojan but it did overwrite the MBR on my old pc 😅 Grandma moment?
@@The0nemanC4rtel haha yayyyy
I once saw an ad open a pop up and redirect to malware with a fake Download button, I never knew ads could do that
It's ridiculous how many sites accept these false advertisements, there should be a law that prohibits this.. but while there is no such regularization, I'll keep using my Adblock
I've come across Wave Browser on someone's PC in the past, and my experience was that it was hard to get rid of. IIRC, it left commands in the Task Scheduler to reinstall itself silently either at a certain time, or when the PC was started up.
I would be interested to see if your install left a similar persistence setup on your VM.
Yeah I've also experienced some pretty nasty browser adware. The ones that change itself to the default browser back on Windows 7 and reappear. I used to have legit bad dreams as a kid after getting one of them on an old computer. I'm glad I'm way more tech smart nowadays. Malwarebytes saved my ass a ton when I was young.
Holy shit that makes so much sense! Happened with an old laptop of my dad’s twenty years ago and ended up destroying it. It kept trying to install shit when we had no space and it wasn’t worth the effort to save it.
The internet without any adblock or other means of filtering stuff is scary.
Rolling around the internet without adblockers is like playing minesweeper. One wrong click and you lost your bank account 🤣
Omg I remember downloading minecraft 1.11.2 mods and getting jumpscared by a fake download link. Good times.
Also, hii Eric :3
:333
@@thesoftone :3333
@@nyxiereal:33333
4:36 I suspect the reason there was so many well known apps on there is because this is literally just pulling from the MS store.
If you're wondering what the script at 6:22 is, it's a roblox script that allows you to cheat in the game. It goes into a script executor that people sell online, mostly scams though
I remember trying to download like a minecraft texture pack but then i landed on one of those "allow notifications to continue" sites and i never went to that minecraft mod website again
NICE! I loved your original adfly video, this is a wonderful follow-up!
This is so gross I feel like I'm gonna catch viruses through my phone's RUclips app.
Not sure if you made this video because of my suggestion to make an updated one, but it was really interesting... seems like it's mostly just adware, PUPs, and maybe spyware.
Also, 10:55 - I've done "how many viruses can you get from ads and download buttons" many times in either a VM or Windows Sandbox... Wave Browser is BY FAR the most common program. Basically just Chromium with TONS of bloatware, ads, and useless features. Probably spyware too.
Another note - 17:18 that was happening to me when I tried visiting Virus Total, i didn't know you could fix that "page not found" issue but that's definitely very suspicious that sites like VT are being blocked...
Thanks Eric, great as always. I remember the times as a kid (born '98) playing Mincraft Alpha or Beta in 2010 and downloading adware from adfly because there were so many fake download buttons. And as a kid I couldn’t understand this whole site somehow. Now as I grow older and became a Software Dev I can't understand how people fell for this, but as an unexperienced user it can be confusing.
Dude even in 2019 i knew how these scams worked and I was 10
@@grubhubdad2.079You do realise that the internet was still pretty new in 2010, which means there were way less resources to learn about these kinds of things from? Different times, different times.. the internet advances quickly :)
We all eventually come across these fake download buttons
01:37 funny how right ad name started english but ended keyboard spam
Sorry i didnt commented on other of your videos i watched all of them you make very good videos keep it up i love em
3:31 "I dont understand what this is doing"
It's stealing your information what else would it be doing 🤣
Constant, quality, informative. Thank you this content!
(6:36) just letting you know that the text file is formatted like that as it's supposed to be pasted into a roblox cheat injector that then fetches the script from that destination
I wait everyday for your content bro
The hoho hub script is for loading into a cheat software that modifies the Roblox data to replace a legitimate script with the code of that script so the game runs it and gives an advantage
8:57 turbo yikes indeed
4:47 episode and romance club are both legitimate games! they’re choose your own adventure text-based stories. source: i used to be a community writer for episode in 2018ish
Hi Eric, love your videos. Could you cover browser hijackers? I find their idea pretty interesting and would like to see you do your magic and explain how they work etc. I've across one a friend accidentally installed, and it was a pretty weird experience. I know they may not be the most complex thing, but regardless, it would be nice to see. Keep up the good work :)
Similar to wave?
@@EricParker the one I saw took over chrome and essentially prevented my friend from getting accurate results regarding anything antivirus related etc. however I do suppose you did cover a similar thing :)
This video remembred me when I was a kid and everytime I wanted to download something I used to tap the fake download buttons and trying 10 different websites to finally download, because they would all direct me to another non-related websites and I was like:" WHY DO THEY DON'T WANT US TO DOWNLOAD?"😅
I download malware on windows sometimes, Saying aaaay oh, a new video
I legit can't tell if you're British or American, thought there was two different people at first 💀
GRANDMA MOMENT ❤️
Edit: Eric surely u make a vid on unblocked game websites 😅
i remember breaking the family windows 7 computer after i clicked on a fake super mario and luigi download button that i got on youtube as an ad, gave me a russian bluescreen wtf
My cousin accidentally installed wave browser a year ago i had to remove it for them, its pretty annoying to remove
I dont get the point of that securify "advanced web protection" extension, well apart of stealing browsing info, like it seems to be a glorified enable/disable button for other extensions that conveniently doesnt show itself or the other securify extension
I forgot what the internet looked like without a good ad blocker + dns level ad blocking lmao, what a shit show
Dns ad blocking?
Something like ADGuard or PiHole@@luckydragonwolf
14:21 love the lain reference
Your voice is so relaxing tbh 👍🏼
You have a very interesting accent.
giving your brother acces to computer 20m WR
You gotta analyze how Bonzi Buddy behaves as a spyware to this day!
why do download sites allow shady ads? is it just because they provide monetization to keep the site up and those ads are the only who would pay to be on a download site?
i loved when u would discover something in this video... i understand very little (u explained just fine :] ) but its still amusing to hear *you* start to see something you shouldnt see
Idk if u already do this but if u set the vm to non persistent storage u don't have to keep reinstalling the image it just wipes the disk on vm shutdown so it's clean once u boot back up.
Answer: All of it
RIP Adfly. You will be remembered as the site tried to make me download malware when I was trying to download Minecraft mods.
I understood 10% of what you said in the video. Anyway, great video i love it!
The reason why the “Roblox Exploit Script” was a simple loadstring is because when you exploit on roblox you also require an injector to paste the scripts or loadstrings in for the “hacks” to actually work, requiring an entire other linkvertise page to download said injectors.
this the typa shit i find on my moms computer while trying to explain what an antivirus is to her
why do you have a half british and half american accent?
Your channel is so helpful!!
im tryna find out how many clicks do these fake download buttons get
"why do you use an adblock?"
This man has multiple accents
The roblox repository is a script for an executor which injects the game with a dll which can then utilise some roblox game calls to execute code.
11:00 didn’t expect to laugh so hard on video like this 😭😭😭
literally how are these fake download buttons legal at all
nothing scares me more than when i accidentally click one of those fake download buttons. thankfully nothing has happened to my device yet!
This video caused some trauma to resurface lol. I distinctly remember trying to mod Minecraft, and even though I was smart enough to tell the real download button from the fakes, clicking the button that was supposed to send me to me download took me to an adult website that waa speaking to me. Scared me half to death (thankfully there was some sort of pop-up over the content of that website)
the repository that you were looking at on github was lua meant to be injected into roblox via external executor pe
16:55 what is Aiden Pearce doing there 😭😭😭😭
6:32 loadstring with a link as the parameter is the way that scripts for roblox executors are usually shared, so this is actually the correct content being displayed here lol
Your speaking cadence made me think my speaker was cutting out because you’d just randomly pause
.... RIP adfly, the bane of all uncles and aunts trying to keep their underage Minecraft addicts' computers free of adware in the 2010s
Hi Eric. I love videos like this please make more like this!
You were seeing your search term in your proxy log because the browser tries to get search suggestions as you type. That means as you type random words and normal URLs. It's a browser thing, not a spyware thing (though it's up to you how these overlap)
As someone with experience with roblox hacks that was legit. That is a loadstring which is common in roblox executors. Executors just run custom lua in game. The load string became popular within the past couple years as scripts grew in size it was easier to just point to the raw file instead of having users copy rather large walls of text. This also allows for nested scripts and such. This also enables script writers to easier hide code and exploits they use to bypass game by game anticheat in roblox.
Fantastic video! Can you be able to explain a lil bit more of the Wireguard app. I wanna know about its basic feature.
It's a VPN server. The backend of it is mitmweb (the GUI version of mitmproxy).
As a Sims modder, if I see an Adfly link, your custom content is no longer worth my time.
Very interesting you get so many hits of ad servers but get to see pretty much no ads.
The browser would definitely take your login details and take over the accounts. That could be worth setting up just to see what it does.
you’re like if shrouded hand liked computers instead of ghosts
The HohoHub link you saw is actually just a text file designed for use with a Roblox exploit, allowing users to modify or hack the game. By running this script, players can gain unauthorized advantages and access features not normally available in Roblox.
This idiot in my high school almost fell for these fake download buttons. We were using this sketchy website to download youtube videos and one of those fake "you have a virus" ads came up and I had to yell at them not to touch it. She actually believed it, I never thought that anyone could even remotely believe these things.
6:13 is a script for roblox