SUBSIM: The Web's #1 resource for all submarine & naval simulations since 1997 |
10-22-10, 06:06 PM | #151 |
Sea Lord
Join Date: Aug 2008
Location: Stinking drunk in Eindhoven, the Netherlands
Posts: 1,844
Downloads: 28
Uploads: 0
|
Yep, it's still there
__________________
|
10-22-10, 07:11 PM | #152 |
CINC Pacific Fleet
Join Date: Sep 2003
Location: Down Under
Posts: 32,828
Downloads: 171
Uploads: 0
|
What exactly is there? I still have to have "Block reported attack sites" unticked in FF settings or I get the "Reported Attack Page" red box!! Is this a virus/trojan on my machine that Ad-Aware and Avira can't find or is Subsim still being blocked by Google!
__________________
Sub captains go down with their ship! |
10-22-10, 08:22 PM | #153 |
Ace of the Deep
Join Date: May 2008
Posts: 1,231
Downloads: 92
Uploads: 0
|
And that is the real problem there is no way of being really sure
It looks like it is still attacking in some form or other but that said Your antivirus may have already updated itself to the threats before You encounter them so they are blocked I just keep an eye on my system If it seems to be doing something over the internet when I think it should Not be then I will pull the plug and do a full scan just to make sure. |
10-22-10, 08:53 PM | #154 | |
Born to Run Silent
|
Quote:
Which exact page was he on when he got the warning? I removed the Google ads from the forum and the main subsim.com page two weeks ago, was it another page on the website, such as one of the reviews or such? That string does not exist in the forum database, other than the PM and this thread where you describe it.
__________________
SUBSIM - 26 Years on the Web |
|
10-22-10, 09:07 PM | #155 |
CINC Pacific Fleet
Join Date: Sep 2003
Location: Down Under
Posts: 32,828
Downloads: 171
Uploads: 0
|
A horrid thought is that a lot of the links to various pictures being displayed on threads like:
I know curiosity killed the cat Funny picture thread Just open the one above ( http://www.subsim.com/radioroom/showthread.php?t=163913 ) and check the loading addresses at the lower left of the screen, you can see a lot of loading from various sites, if these sites hosted malware could these links be what Google is detecting! If so then the job to clean these threads would be almost impossible! BTW, some of these links are to things like movies (youtube), newspaper articles, downloads etc etc.
__________________
Sub captains go down with their ship! |
10-22-10, 10:53 PM | #156 |
Born to Run Silent
|
I'm contacting a new server datacenter tomorrow about shutting down the site and moving it.
__________________
SUBSIM - 26 Years on the Web |
10-22-10, 11:07 PM | #157 |
Swabbie
Join Date: Aug 2010
Location: Florida
Posts: 14
Downloads: 136
Uploads: 0
|
Scans
I have ran scan after scan and there has not been a problem. My computer is about as secure as fort knox, if it's there I'd find it.
|
10-23-10, 12:33 AM | #158 | |
CINC Pacific Fleet
Join Date: Sep 2003
Location: Down Under
Posts: 32,828
Downloads: 171
Uploads: 0
|
Quote:
Be assured that if you have to do this I, and others, will help with donations, the cost would be huge! Wasn't that long ago you had to do this due to cyclone damage!
__________________
Sub captains go down with their ship! |
|
10-23-10, 07:18 AM | #159 |
Born to Run Silent
|
I don't know what else to do. I have checked everything I can think of, and my tech support guys have run AV scans, checked the databases, and whatever they do, and found nothing. I have not been able to get a AV warning on my system, on the college lab PC, my friend's PC, or the hotel PC, using Chrome, IE, and FF.
I need to find another security IT team, maybe the Planet techs are mmissing something. Any suggestions?
__________________
SUBSIM - 26 Years on the Web |
10-23-10, 07:41 AM | #160 |
Born to Run Silent
|
I have contacted this service, let's see if they can do anything.
http://www.rack911.com/ I wish my computer would see these issues, so far Norton has been very quiet.
__________________
SUBSIM - 26 Years on the Web |
10-23-10, 07:45 AM | #161 |
Sea Lord
Join Date: Mar 2010
Location: Republiken Finland
Posts: 1,803
Downloads: 8
Uploads: 0
|
Neal, havey you checked if there is any pattern on who have and who have not problems? Geographical location etc.
__________________
You talk to God, you're religious. God talks to you, you're psychotic. - Dr. House |
10-23-10, 08:03 AM | #162 |
Lucky Jack
|
|
10-23-10, 10:08 AM | #163 |
Lucky Jack
|
Mate also got a trojan trying to get into his PC from one of those cc.co urls while visiting the forum.
He's using Firefox and AVG. |
10-23-10, 01:07 PM | #164 |
Pacific Aces Dev Team
|
Just now I've investigated this a little bit. On my home PC I deactivated the Firefox AddOn "AddBlock Plus" and opened the forum page, while loading the page, KAV reported immediately the Java Trojan download.
On my PC here is Firebug (http://getfirebug.com/), a web designer tool for Firefox, installed and it can display and debug all the scripts of a visited web page. Here we see that with a <iframe> on the forum page the infected script is loaded through the URL xxxx://bulkmode.co.cc/get/ I'm strongly believe that the suspect codes are loaded through the add's on these pages, because with active AddBlocker Plus, KAV reports no trojans downloads. Therefore the data center found no malware / spyware / trojans in the hosted data of Subsim.com because they are only loaded at execution time depending on how a browser and his installed browser addon's are configured. Also no trojan downloads when I use the FF addon "NoScripts" and block all execution of scripts from the forum page.
__________________
-- Vapor-ware is always easier to sell because there's no limit what it can do! |
10-23-10, 01:23 PM | #165 |
Lucky Jack
|
Congrats, I think you just cracked this one.
|
|
|