Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ask Toolbar Now Considered Malware By Microsoft

Posted by timothy on from the stating-the-obvious dept.

AmiMoJo writes: Last month Microsoft changed its policy on protecting search settings to include any software that attempts to hijack searches as malware. As a result, this month the Ask Toolbar, which most people will probably recognize as being unwanted crapware bundled with Java, was marked as malware and will now be removed by Microsoft's security software built in to Windows 7 and above.

50 of 212 comments (clear)

  1. bundle by sirber · · Score: 5, Funny

    will java be also removed since it's bundeled with ask toolbar?

    --
    Be or ben't
    1. Re:bundle by gcnaddict · · Score: 4, Informative

      Getting there. Microsoft released a no-install version of Java bundled with Minecraft recently, so you can still play Minecraft without actually needing to hook Java into everything.

      --
      Viable Slashdot alternatives: https://pipedot.org/ and http://soylentnews.org/
    2. Re:bundle by Anonymous Coward · · Score: 5, Funny

      This article is useless without a video of the director of Ask Software, five seconds after he heard the news.

      Good fucking riddance.

    3. Re:bundle by robmv · · Score: 5, Informative

      That is something Minecraft developers could have done years ago. The binary license of the JRE allows it to be bundled with an application for private use of that application.

      When redistributing the JRE on Microsoft Windows as a private application runtime (not accessible by other applications) with a custom launcher, the following files are also optional. These are libraries and executables that are used for Java support in Internet Explorer and Mozilla family browsers; these files are not needed in a private JRE redistribution.

      from the Java 8 README

    4. Re: bundle by kthreadd · · Score: 2

      If it's OpenJDK they can bundle it as much as they want.

    5. Re:bundle by Darinbob · · Score: 4, Interesting

      I'm hoping they will automatically uninstall Chrome as well, since it somehow manages to reinstall itself surreptitiously so often. So many third party programs will install it during an update if you're not paying attention to which boxes to uncheck; and I know every time I go visit my mother she'll be asking about what this Chrome thing is and how to get rid of it. Most often it's the anti-malware software that puts that shit there, which is ironic since I consider anything being installed without my explicit permission to be malware. It should get rid of googlebar or whatever that's called, and all other opt-out software.

  2. Hmm by Anonymous Coward · · Score: 2, Funny

    I feel there's a word that's appropriate... hypo... hypocr.... oh, MS Word told me the word I'm looking for is "hyper". Yep, what a bunch of hypers.

    1. Re:Hmm by JMJimmy · · Score: 4, Insightful

      Yup. The effing bing bar is something I delete on a weekly basis from several machines. Granted it's also stupid user syndrome.

    2. Re:Hmm by Anonymous Coward · · Score: 4, Interesting

      What is the smallest browser space you have ever seen remaining? Once at a friends house I asked to use the internet and half the screen vertically plus around 1/10 horizontally was taken up by various "toolbars". I'd never even seen a horizontal one before that day.

    3. Re:Hmm by gfxguy · · Score: 5, Interesting

      I experience that with my wife. She's got a reasonably nice desktop for doing what she does (nothing important) but complains it runs slow. It was screaming fast once upon a time, so I go and run and rerun all the anti-virus software and malware removers, remove have the extensions that have installed themselves, reboot a few times in the process, and it's screaming fast again. The most toolbars I've counted was at least 6, and the search is almost always stuck on something undesirable.

      --
      Stupid sexy Flanders.
    4. Re:Hmm by Maritz · · Score: 4, Insightful

      Last time I saw the Ask toolbar, it couldn't be uninstalled through the control panel. For me, that's pretty much what makes it malware, in addition to the browser search hijacking of course.

      --
      I do not want your cheap brainburning drugs. They are useless for work. And I am a working man today.
    5. Re:Hmm by amicusNYCL · · Score: 4, Funny

      The most toolbars I've counted was at least 6

      Amateur

      --
      "Our two-party system is like a bowl of shit looking at itself in a mirror." - Lewis Black
    6. Re:Hmm by stevez67 · · Score: 2

      Yes, Google does an excellent job of ensuring they're the only ones tracking your web behavior and feeding you ads.

  3. Flashback time by Ol+Olsoc · · Score: 5, Insightful
    When people called me, having trouble with their browsers, and there were about 15 or more toolbars taking up their entire screen. And ask was always there, sometime multiple times.

    Anything that installs a toolbar in your browser is malware.

    --
    The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
    1. Re:Flashback time by XxtraLarGe · · Score: 4, Informative

      When people called me, having trouble with their browsers, and there were about 15 or more toolbars taking up their entire screen. And ask was always there, sometime multiple times. Anything that installs a toolbar in your browser is malware.

      Ditto. That's usually one of the first questions I ask, and most people have no idea how it even got on their machine. I tell them "they aren't giving you this toolbar to be nice, they're giving it to you so they can control your searches and sell you stuff."

      --
      Taking guns away from the 99% gives the 1% 100% of the power.
    2. Re:Flashback time by OzPeter · · Score: 5, Insightful

      Are you serious? How can you survive in today's World Wide Web environment without a tailored toolbar experience that sends all your input and browsing data to its publisher? Ask and you shall receive.

      Funny, I thought that was Google's business model.

      --
      I am Slashdot. Are you Slashdot as well?
    3. Re:Flashback time by AmiMoJo · · Score: 3, Interesting

      What got them in the end was that they screwed with the user's search settings. Toolbars are a supported feature of Internet Explorer, but apps are not supposed to screw up search settings in the registry.

      Doing so generates warning prompts on Windows, but because the user was already clicking through those to install Java they probably didn't notice an extra one for Ask.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    4. Re:Flashback time by TapeCutter · · Score: 4, Insightful

      Yes, except google is mind bogglingly popular precisely because its search results are not dictated by short sighted bean counters.

      --
      And did you exchange a walk on part in the war for a lead role in a cage? - Pink Floyd.
    5. Re:Flashback time by wernercd · · Score: 4, Insightful

      And it's not an ADDITIONAL search bar on top of the actual browser. If Google forced "Google Toolbar" down your throat, we'd have an apple-to-apple comparison.

      There's a difference between using a built in search engine (with the ability to change it to Bing, if your heart desires)... and getting a search engine - and extra crap - installed without your knowledge.

      We all know the average idiot doesn't know how to avoid getting tricked into installing it - and Ask and other companies go FAR out of their way to discourage saying no. It takes actual effort to not get dinged.

      You can argue about how evil Google is... but they aren't acting like Ask does.

    6. Re:Flashback time by ArcadeMan · · Score: 3, Interesting

      This is 2015. You don't need toolbars to do all that. Simply use Chrome and stay logged into your GMail, Hotmail, Facebook and Twitter accounts.

      --
      Get free satoshi (Bitcoin) and Dogecoins
    7. Re: Flashback time by RavenLrD20k · · Score: 3, Insightful

      Yes. Google had a tool bar, no one is contesting that; but was it forced down your throat by google? If you downloaded any google software, did you have to specifically uncheck a box to not have it installed, or did you have to explicitly click on a link that said "Get the google toolbar" that was more than a few lines below the "Google Search" and "I'm Feeling Lucky" buttons where you couldn't accidentally miss the button by a few pixels to click on the link? If I remember right, it fit more the latter case I presented.

      That's a lot different from putting a checkbox with 8pt Text in a 12pt body that you have to find and uncheck to prevent the installer from automatically installing the toolbar.

    8. Re:Flashback time by CauseBy · · Score: 3, Interesting

      I would tweak what you said to: "Google is mind bogglingly popular because its search results USED TO BE not dictated by short-sighted bean counters, and then market inertia now that they are".

      I switched away from Google about a year ago because I was finally fed up with lousy result quality. My specific complaint is that Google ended its long-ago policy that every result contains every search term exactly as given. Wow, that was useful, but now Google just tries to guess what you want. That's nice and all, but if you think I'm a dumb user, then show me results for what I actually searched for and then make a suggestion about a search you think would be better. But just straight up giving me results that I didn't search for? No thanks, I switched.

    9. Re: Flashback time by Carewolf · · Score: 2

      Yes. Google had a tool bar, no one is contesting that; but was it forced down your throat by google? If you downloaded any google software, did you have to specifically uncheck a box to not have it installed, or did you have to explicitly click on a link that said "Get the google toolbar" that was more than a few lines below the "Google Search" and "I'm Feeling Lucky" buttons where you couldn't accidentally miss the button by a few pixels to click on the link? If I remember right, it fit more the latter case I presented.

      That's a lot different from putting a checkbox with 8pt Text in a 12pt body that you have to find and uncheck to prevent the installer from automatically installing the toolbar.

      When I download free windows software I very often have to check "Do not install Chrome". They are bundling it with all kinds of things now to force it on everybody.

    10. Re:Flashback time by Anubis+IV · · Score: 2

      This. So much. Google used to be run by the engineers. These days the engineers are run by Google. They earned their place at the top, but they're actively sabotaging themselves with the various moves they're making, such as the one you cited. I tried DuckDuckGo last year and was unimpressed at the time. I tried again a few months ago and found it to be much better than before, so I went ahead and switched all of my devices over. The only two things I miss from Google Search are map results when I search for addresses and the ability to specify a date range for my search (e.g. quite often, coverage over a news topic will change over time, so I like to have it just check the first week that something happened, that way I can see the initial coverage in the news).

  4. One down... by daedalus2097 · · Score: 5, Funny

    1,753,378 to go.

  5. Too little, too tale by Eloking · · Score: 3, Insightful

    Great, but how about marking as malware every bundled software that come with an installer? It doesn't seem complicated to me, it I install SomeProgram.exe then any other software unrelated to SomeProgram.exe should be marked as malware and removed.

    --
    Elok
    1. Re:Too little, too tale by Anonymous Coward · · Score: 2, Interesting

      Great, but how about marking as malware every bundled software that come with an installer? It doesn't seem complicated to me, it I install SomeProgram.exe then any other software unrelated to SomeProgram.exe should be marked as malware and removed.

      I think if you do it right you're correct. There could be a legitimate case of one program relying on another that this would screw up.

      Pop up message. I see you just installed someprogram.exe at the same time weirdprogram.exe also installed. Do you want to keep weirdprogram?

  6. Ahhh... Toolbars! by neilo_1701D · · Score: 5, Informative

    I always remember this image of IE7 stuffed with toolbars. A similar test was done on Windows XP.

    In the case of IE7, this was done as a test to see if the reset function would work correctly. It did.

  7. I always assumed that by OneSmartFellow · · Score: 4, Funny

    loading all this crap was tolerated by Microsoft because it was the main impetus for people buying new PCs.

    Now that Android is taking over the personal OS landscape, and PC sales are dropping, MS doesn't gain as much as they used to, and now actually feels the pain from allowing this to happen, they decide to remove them.

  8. It's hard to imagine, but by bluegutang · · Score: 5, Insightful

    at this pace, within a couple years I'll like Microsoft more than I like Mozilla.

  9. Good by nine-times · · Score: 5, Insightful

    Good. It is malware. I can't think of a browser toolbar that I wouldn't consider to be malware to some degree. Has anyone in the past 5 years intentionally installed one of those things? My impression is that they only ever get installed because someone wasn't paying enough attention when they installed some crappy piece of software, and it was bundled in.

  10. Re:Office upload center by Anonymous Coward · · Score: 5, Insightful

    The main issue *I* have with it, is that when I disable it - You know... I like to disable stuff I don't use - it refuses to stay disabled.

    There are schedules, and protection tasks, and all sorts of other asshatery that will keep that process running. That's what you would normally call malware - something that refuses to stay disabled or removed.

  11. Re: Antitrust? by Anonymous Coward · · Score: 3, Informative

    For me, it came with both Skype and DirectX. Few other things I can't remember before that. A quick Google search reveals that it comes with a lot of things.

  12. Re:Bing toolbar! by Joe+U · · Score: 3, Informative

    The Bing toolbar doesn't change search settings without prompting, and is not removed. Same with the Google toolbar.

  13. Whack a mole by retroworks · · Score: 4, Insightful

    All the "negative checkoff" (click NOT to install) and all the (CNET downloads.com e.g.) sites where banner ads mislead to click on them rather than the download file button you are looking for should be treated as malware, starting a long time ago.

    --
    Gently reply
    1. Re:Whack a mole by Anonymous Coward · · Score: 2

      While I agree with you in principle, I'm not sure what's wrong with the example you gave. I found the download is about 2 seconds. There's a link called "Download" in the navigation bar that leads you to mirrors, right at the top with one saying "Provided by ImgBurn". Pretty standard and clean.

  14. All toolbars are malware? by stedlj · · Score: 2

    All toolbars are malware, what is the big deal. I took user install rights away, because of toolbars. They were just causing to many problems.

  15. That's bullshit by Anonymous Coward · · Score: 4, Funny

    Everybody I know has multiple toolbars on their internet. None of them has problems with malware. I even specifically asked the ask toolbar whether or not it was malware, and it said (and I quote) "that's ridiculous".

  16. That'll annoy Oracle by Geeky · · Score: 4, Insightful

    Annoying Oracle can't be a bad thing. I can't believe they bundle it when Java is needed for so many enterprise apps - surely the reputational damage is worth more than the revenue from bundling the toolbar? It makes them look cheap and certainly not enterprise.

    So yeah, good for Microsoft. They're doing some good things these days. Perhaps a bit like IBM when they were knocked off of their perch, MS now realise they need to actually produce good products and play nicer with customers.

    --
    Sigs are so 1990s. No way would I be seen dead with one.
    1. Re:That'll annoy Oracle by flink · · Score: 4, Informative

      Annoying Oracle can't be a bad thing. I can't believe they bundle it when Java is needed for so many enterprise apps - surely the reputational damage is worth more than the revenue from bundling the toolbar? It makes them look cheap and certainly not enterprise.

      If you download the "server" JRE (actually it's a full JDK, I don't know why they label it that way), it comes as a simple tarball. It doesn't interact with the registry, doesn't install the browser plugin -- it's just full JDK distribution. I'm guessing they are locked into a multi-year co-marketing deal with Ask for the consumer distribution. I always just download the server version, unzip, and add C:\jdk1.x.y_z to my PATH and I'm done.

    2. Re:That'll annoy Oracle by ImprovOmega · · Score: 3, Informative

      If you just run a silent install of the offline installer it doesn't install ASK either. Granted getting to the offline installer is not exactly obviously presented on their download page, but it is available. And corporations have been using that for years.

  17. Re:Antitrust? by Joe+U · · Score: 3, Insightful

    No, because the restricted behavior isn't bundling, it's changing search providers without prompting.

    It's mentioned in the article in about every single sentence, so I can see how you missed it.

  18. Re:What I Consider Malware by Joe+U · · Score: 2

    The task scheduler is the preferred method for launching tasks now.It's a robust unified interface with logging capabilities and error handling.

    I can see the old registry entries being ignored in the future with the ability for the OS to detect and create tasks when an installer tries to write to them.

  19. Yay. by Demonoid-Penguin · · Score: 3, Insightful

    Ask finally got what it's been asking for all along

    Next up - McAffee.

    Then Java, then Ffflash. I can see we're gunna need a longer wall. And maybe a conveyor belt.

  20. Re:My question by damnbunni · · Score: 4, Informative

    He's not talking about Microsoft's antivirus/antimalware, he's talking about the 'malicious software removal' that's part of Windows Update even if you don't have MS's AV installed.

    It removes a very few specific things that can be difficult to get rid of.

  21. Re:My question by Anonymous Coward · · Score: 2, Interesting

    The monthly MSRT is like the McAfee "Stinger" tool. It's a one-shot, foreground-only malware removal tool that gets replaced with an entirely new copy of the program every so often.

    MSRT just runs automatically as part of Windows Update. Stinger requires you to go download it and run it manually.

    Also, MSRT has undocumented API access beyond anyone else's capabilities, and a short enough support window to make it worthwhile to use undocumented API's. It wouldn't surprise me to know that MSRT does all kinds of low-level "dirty tricks" to get rid of any identified threats, given that WU virtually guarantees it to run with a reboot. The entire MSRT concept is probably the strongest position for a malware removal tool to be in. Malware would have to outright block WU to keep its foothold truly safe, and that's going to raise some alarm bells to just about everyone. And never discount the possibility of a WU dead-man's-switch. Microsoft actually has the capability to make Windows cripple itself (probably into Safe Mode) if it doesn't get malware checks of some sort on a regular basis. Why they don't just throw down and use that capability is the only remaining question. Probably because it would piss off the vocal fringe users and the anti-Microsoft hate-squad that think there's some conspiracy to spy on their porn browsing habits or some stupid thing.

  22. Yes. by waspleg · · Score: 2

    I've seen people install the Google toolbar because they thought that was how to use Google... I've removed it a lot as well.

  23. SourceForge by Parker+Lewis · · Score: 3, Funny

    If Oracle removes Ask toolbar from Java Installer, can SourceForge provide us one version with Ask added back?

  24. Re:Antitrust? by rubycodez · · Score: 2

    HP printer drivers are amazing, in the sense that 100+ meg of wares is installed when it only takes tens of kilobytes to actually drive a fucking printer. I mean Jesus Quincy Christ impaled on a stick with roman military nails, what in the hell?

  25. Ask isn't removed by Chalnoth · · Score: 2

    It looks like this only applies to older versions of the Ask toolbar. According to the link in the post, "The latest version of this application is not detected by our objective criteria, and is not considered unwanted software."

    I do hope that their "objective criteria" will help to keep the Ask toolbar from being quite as annoying as it was, however.