Another bit of malicious code on your site. - Page 2 - SailNet Community

   Search Sailnet:

 forums  store  


Quick Menu
Forums           
Articles          
Galleries        
Boat Reviews  
Classifieds     
Search SailNet 
Boat Search (new)

Shop the
SailNet Store
Anchor Locker
Boatbuilding & Repair
Charts
Clothing
Electrical
Electronics
Engine
Hatches and Portlights
Interior And Galley
Maintenance
Marine Electronics
Navigation
Other Items
Plumbing and Pumps
Rigging
Safety
Sailing Hardware
Trailer & Watersports
Clearance Items

Advertise Here






Go Back   SailNet Community > Welcome to Sailnet > Announcements and Suggestions Box
 Not a Member? 


Like Tree1Likes
Reply
 
LinkBack Thread Tools
  #11  
Old 12-01-2011
LandLocked66c's Avatar
Sunsets and Warm Beer....
 
Join Date: Dec 2009
Location: The Bottom of a Pint Glass...
Posts: 2,111
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 5
LandLocked66c is on a distinguished road
Interesting, I haven't seen anything. Although I run linux software appliances at the house to protect me with "real time" scanning.
__________________
1971 23' Oday Pop Top
S/V Frida

You can't steer a boat that isn't moving? Just like a life - P. Lutus
Reply With Quote Quick reply to this message Share with Facebook
  #12  
Old 12-01-2011
tdw's Avatar
tdw tdw is offline
Super Fuzzy Moderator
 
Join Date: Oct 2006
Location: Sydney Australia
Posts: 14,740
Thanks: 5
Thanked 74 Times in 69 Posts
Rep Power: 10
tdw is a jewel in the rough tdw is a jewel in the rough tdw is a jewel in the rough
Quote:
Originally Posted by LandLocked66c View Post
Interesting, I haven't seen anything. Although I run linux software appliances at the house to protect me with "real time" scanning.
What do you for the scanning ? I'm running Linux Ubuntu at home and have yet to find a Linux scanner. (or am I misreading you post ?)

Cheers

Andrew
__________________
Andrew B

"Do you think God gets stoned? I think so... Look at the platypus." Robin Williams.
Reply With Quote Quick reply to this message Share with Facebook
  #13  
Old 12-01-2011
LandLocked66c's Avatar
Sunsets and Warm Beer....
 
Join Date: Dec 2009
Location: The Bottom of a Pint Glass...
Posts: 2,111
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 5
LandLocked66c is on a distinguished road
Quote:
Originally Posted by tdw View Post
What do you for the scanning ? I'm running Linux Ubuntu at home and have yet to find a Linux scanner. (or am I misreading you post ?)

Cheers

Andrew
I run an Untangle server as well as pfsense. There are a lot of great distro's out there. The Untangle server is transparent and filters what comes in and also blocks bad sites, adware, malware and so on along with a ton of other options. The pfsense is my firewall as well as partial blocking and a transparent web proxy to speed up my browsing. The difference is truly amazing. All you need are some old machines to run these on along with two nic cards per box.
tdw likes this.
__________________
1971 23' Oday Pop Top
S/V Frida

You can't steer a boat that isn't moving? Just like a life - P. Lutus
Reply With Quote Quick reply to this message Share with Facebook
  #14  
Old 12-02-2011
tdw's Avatar
tdw tdw is offline
Super Fuzzy Moderator
 
Join Date: Oct 2006
Location: Sydney Australia
Posts: 14,740
Thanks: 5
Thanked 74 Times in 69 Posts
Rep Power: 10
tdw is a jewel in the rough tdw is a jewel in the rough tdw is a jewel in the rough
Quote:
Originally Posted by LandLocked66c View Post
I run an Untangle server as well as pfsense. There are a lot of great distro's out there. The Untangle server is transparent and filters what comes in and also blocks bad sites, adware, malware and so on along with a ton of other options. The pfsense is my firewall as well as partial blocking and a transparent web proxy to speed up my browsing. The difference is truly amazing. All you need are some old machines to run these on along with two nic cards per box.
Thanks muchly though I confess I need to do some homework before I fully understand.
__________________
Andrew B

"Do you think God gets stoned? I think so... Look at the platypus." Robin Williams.
Reply With Quote Quick reply to this message Share with Facebook
  #15  
Old 12-02-2011
Senior Member
 
Join Date: Sep 2010
Posts: 247
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 5
steel is on a distinguished road
Quote:
Originally Posted by landmineop View Post
The only information from Norton is as follows: Rule "Default Block SSP" blocked (10.0.0.23, Port(2869) ). Inbound TCP connection. There wre several that hit all at once. Sure glad I have Norton.
That's like well imagine you had Norton for your phone. And Norton for your phone told you that it had blocked an incoming phone call from a telemarketer who was trying to scam you. It didn't necessarily save you from anything. Computers receive random incoming connections all the time just like houses receive solicitors. Often they're out scanning the Internet looking for some old piece of software to take advantage of.

Anyway, I don't think that message you got was related to Sailnet.

But where is the malicious code that someones AV software is detecting? Is there an advertisement which is causing it? Did someone post a link to a malicious website in one of their postings?

CharlieCobra, I saw the fake Google link but where did that come from? Was it just added to a random place on the sailnet website? Or in an advertisement or someone's post?
Reply With Quote Quick reply to this message Share with Facebook
  #16  
Old 12-02-2011
Senior Member
 
Join Date: Sep 2010
Location: South Florida
Posts: 152
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 5
landmineop is on a distinguished road
Send a message via Yahoo to landmineop
The message I got was NOT from my phone. I was from my laptop. The message was taken directly from the Norton 360 that I use. The ONLY time this has happened is when I am on Sailnet looking at "new posts". It has happened twice in the last few days. When I check Norton it shows several attempts blocked, one right after another. Your opinions that they were not related to Sailnet are way off base. Stick to facts not hot air opinions.
Reply With Quote Quick reply to this message Share with Facebook
  #17  
Old 12-05-2011
tdw's Avatar
tdw tdw is offline
Super Fuzzy Moderator
 
Join Date: Oct 2006
Location: Sydney Australia
Posts: 14,740
Thanks: 5
Thanked 74 Times in 69 Posts
Rep Power: 10
tdw is a jewel in the rough tdw is a jewel in the rough tdw is a jewel in the rough
This morning I received warning while viewing new posts that Malware Bytes had blocked access from this site which was thought to contain malicious code. Since then I've checked and found that this site appears on some fifty spam blacklists. Where the problem is coming from I do not know.

IP: 213.13.145.4
Decimal: 3574436100
Hostname: *.blogs.old.sapo.pt
ISP: PT Comunicacoes S.A.
Organization: PT Comunicacoes S.A.
Location : Lisbon Portugal.
__________________
Andrew B

"Do you think God gets stoned? I think so... Look at the platypus." Robin Williams.

Last edited by tdw; 12-05-2011 at 07:30 PM.
Reply With Quote Quick reply to this message Share with Facebook
  #18  
Old 12-05-2011
LandLocked66c's Avatar
Sunsets and Warm Beer....
 
Join Date: Dec 2009
Location: The Bottom of a Pint Glass...
Posts: 2,111
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 5
LandLocked66c is on a distinguished road
Strange?
__________________
1971 23' Oday Pop Top
S/V Frida

You can't steer a boat that isn't moving? Just like a life - P. Lutus
Reply With Quote Quick reply to this message Share with Facebook
  #19  
Old 12-06-2011
CharlieCobra's Avatar
On the hard
 
Join Date: May 2006
Location: Bellingham, WA.
Posts: 3,503
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 10
CharlieCobra has a spectacular aura about CharlieCobra has a spectacular aura about
Quote:
Originally Posted by steel View Post
That's like well imagine you had Norton for your phone. And Norton for your phone told you that it had blocked an incoming phone call from a telemarketer who was trying to scam you. It didn't necessarily save you from anything. Computers receive random incoming connections all the time just like houses receive solicitors. Often they're out scanning the Internet looking for some old piece of software to take advantage of.

Anyway, I don't think that message you got was related to Sailnet.

But where is the malicious code that someones AV software is detecting? Is there an advertisement which is causing it? Did someone post a link to a malicious website in one of their postings?

CharlieCobra, I saw the fake Google link but where did that come from? Was it just added to a random place on the sailnet website? Or in an advertisement or someone's post?
It just popped a redirect to it, probably when a rotating ad ran.
__________________
Baggett and Sons Marine Restoration
The Landing at Colony Wharf
Bellingham, WA.

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
Reply With Quote Quick reply to this message Share with Facebook
  #20  
Old 12-06-2011
LandLocked66c's Avatar
Sunsets and Warm Beer....
 
Join Date: Dec 2009
Location: The Bottom of a Pint Glass...
Posts: 2,111
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 5
LandLocked66c is on a distinguished road
Quote:
Originally Posted by CharlieCobra View Post
It just popped a redirect to it, probably when a rotating ad ran.
Are you guys using AdBlock Plus?
__________________
1971 23' Oday Pop Top
S/V Frida

You can't steer a boat that isn't moving? Just like a life - P. Lutus
Reply With Quote Quick reply to this message Share with Facebook
Reply

Quick Reply
Message:
Options

By choosing to post the reply above you agree to the rules you agreed to when joining Sailnet.
Click Here to view those rules.

Register Now

In order to be able to post messages on the SailNet Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
Please note: After entering 3 characters a list of Usernames already in use will appear and the list will disappear once a valid Username is entered.
User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in

Human Verification

In order to verify that you are a human and not a spam bot, please enter the answer into the following box below based on the instructions contained in the graphic.




Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

 
Posting Rules
You may post new threads
You may post replies
You may post attachments
You may edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On


Similar Threads
Thread Thread Starter Forum Replies Last Post
Code D pepperrent General Discussion (sailing related) 9 08-24-2011 08:44 PM
code zero vs 150 genoa costaricanwannabe Gear & Maintenance 5 11-28-2010 07:29 AM
Malicious Script - Be Careful tdw Announcements and Suggestions Box 26 04-14-2010 07:08 AM
Code Zero configuration CodeZero General Discussion (sailing related) 4 08-04-2009 08:04 PM


All times are GMT -4. The time now is 03:48 AM.

Add to My Yahoo!         
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.
SEO by vBSEO 3.6.1
(c) Marine.com LLC 2000-2012

The SailNet.com store is owned and operated by a company independent of the SailNet.com forum. You are now leaving the SailNet forum. Click OK to continue or Cancel to return to the SailNet forum.