Another bit of malicious code on your site. - Page 2 - SailNet Community
 1Likes
Reply
 
LinkBack Thread Tools
post #11 of 23 Old 12-01-2011
Sunsets and Warm Beer....
 
LandLocked66c's Avatar
 
Join Date: Dec 2009
Location: The Bottom of a Pint Glass...
Posts: 2,111
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 6
 
Interesting, I haven't seen anything. Although I run linux software appliances at the house to protect me with "real time" scanning.

1971 23' Oday Pop Top
S/V Frida

You can't steer a boat that isn't moving? Just like a life - P. Lutus
LandLocked66c is offline  
Quote Quick Reply Share with Facebook
Sponsored Links
Advertisement
 
post #12 of 23 Old 12-01-2011
tdw
Super Fuzzy Moderator
 
tdw's Avatar
 
Join Date: Oct 2006
Location: Sydney Australia
Posts: 16,641
Thanks: 15
Thanked 110 Times in 103 Posts
Rep Power: 10
     
Quote:
Originally Posted by LandLocked66c View Post
Interesting, I haven't seen anything. Although I run linux software appliances at the house to protect me with "real time" scanning.
What do you for the scanning ? I'm running Linux Ubuntu at home and have yet to find a Linux scanner. (or am I misreading you post ?)

Cheers

Andrew

Andrew B

“Life is a trick, and you get one chance to learn it.”
― Terry Pratchett, Nation

Malo 39 Classic
tdw is offline  
Quote Quick Reply Share with Facebook
post #13 of 23 Old 12-01-2011
Sunsets and Warm Beer....
 
LandLocked66c's Avatar
 
Join Date: Dec 2009
Location: The Bottom of a Pint Glass...
Posts: 2,111
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 6
 
Quote:
Originally Posted by tdw View Post
What do you for the scanning ? I'm running Linux Ubuntu at home and have yet to find a Linux scanner. (or am I misreading you post ?)

Cheers

Andrew
I run an Untangle server as well as pfsense. There are a lot of great distro's out there. The Untangle server is transparent and filters what comes in and also blocks bad sites, adware, malware and so on along with a ton of other options. The pfsense is my firewall as well as partial blocking and a transparent web proxy to speed up my browsing. The difference is truly amazing. All you need are some old machines to run these on along with two nic cards per box.
tdw likes this.

1971 23' Oday Pop Top
S/V Frida

You can't steer a boat that isn't moving? Just like a life - P. Lutus
LandLocked66c is offline  
Quote Quick Reply Share with Facebook
post #14 of 23 Old 12-02-2011
tdw
Super Fuzzy Moderator
 
tdw's Avatar
 
Join Date: Oct 2006
Location: Sydney Australia
Posts: 16,641
Thanks: 15
Thanked 110 Times in 103 Posts
Rep Power: 10
     
Quote:
Originally Posted by LandLocked66c View Post
I run an Untangle server as well as pfsense. There are a lot of great distro's out there. The Untangle server is transparent and filters what comes in and also blocks bad sites, adware, malware and so on along with a ton of other options. The pfsense is my firewall as well as partial blocking and a transparent web proxy to speed up my browsing. The difference is truly amazing. All you need are some old machines to run these on along with two nic cards per box.
Thanks muchly though I confess I need to do some homework before I fully understand.

Andrew B

“Life is a trick, and you get one chance to learn it.”
― Terry Pratchett, Nation

Malo 39 Classic
tdw is offline  
Quote Quick Reply Share with Facebook
post #15 of 23 Old 12-02-2011
Senior Member
 
Join Date: Sep 2010
Posts: 249
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 6
 
Quote:
Originally Posted by landmineop View Post
The only information from Norton is as follows: Rule "Default Block SSP" blocked (10.0.0.23, Port(2869) ). Inbound TCP connection. There wre several that hit all at once. Sure glad I have Norton.
That's like well imagine you had Norton for your phone. And Norton for your phone told you that it had blocked an incoming phone call from a telemarketer who was trying to scam you. It didn't necessarily save you from anything. Computers receive random incoming connections all the time just like houses receive solicitors. Often they're out scanning the Internet looking for some old piece of software to take advantage of.

Anyway, I don't think that message you got was related to Sailnet.

But where is the malicious code that someones AV software is detecting? Is there an advertisement which is causing it? Did someone post a link to a malicious website in one of their postings?

CharlieCobra, I saw the fake Google link but where did that come from? Was it just added to a random place on the sailnet website? Or in an advertisement or someone's post?
steel is offline  
Quote Quick Reply Share with Facebook
post #16 of 23 Old 12-02-2011
Senior Member
 
Join Date: Sep 2010
Location: South Florida
Posts: 152
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 6
 
Send a message via Yahoo to landmineop
The message I got was NOT from my phone. I was from my laptop. The message was taken directly from the Norton 360 that I use. The ONLY time this has happened is when I am on Sailnet looking at "new posts". It has happened twice in the last few days. When I check Norton it shows several attempts blocked, one right after another. Your opinions that they were not related to Sailnet are way off base. Stick to facts not hot air opinions.
landmineop is offline  
Quote Quick Reply Share with Facebook
post #17 of 23 Old 12-05-2011
tdw
Super Fuzzy Moderator
 
tdw's Avatar
 
Join Date: Oct 2006
Location: Sydney Australia
Posts: 16,641
Thanks: 15
Thanked 110 Times in 103 Posts
Rep Power: 10
     
This morning I received warning while viewing new posts that Malware Bytes had blocked access from this site which was thought to contain malicious code. Since then I've checked and found that this site appears on some fifty spam blacklists. Where the problem is coming from I do not know.

IP: 213.13.145.4
Decimal: 3574436100
Hostname: *.blogs.old.sapo.pt
ISP: PT Comunicacoes S.A.
Organization: PT Comunicacoes S.A.
Location : Lisbon Portugal.

Andrew B

“Life is a trick, and you get one chance to learn it.”
― Terry Pratchett, Nation

Malo 39 Classic

Last edited by tdw; 12-05-2011 at 06:30 PM.
tdw is offline  
Quote Quick Reply Share with Facebook
post #18 of 23 Old 12-05-2011
Sunsets and Warm Beer....
 
LandLocked66c's Avatar
 
Join Date: Dec 2009
Location: The Bottom of a Pint Glass...
Posts: 2,111
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 6
 
Strange?

1971 23' Oday Pop Top
S/V Frida

You can't steer a boat that isn't moving? Just like a life - P. Lutus
LandLocked66c is offline  
Quote Quick Reply Share with Facebook
post #19 of 23 Old 12-06-2011 Thread Starter
On the hard
 
CharlieCobra's Avatar
 
Join Date: May 2006
Location: Bellingham, WA.
Posts: 3,503
Thanks: 0
Thanked 2 Times in 2 Posts
Rep Power: 11
   
Quote:
Originally Posted by steel View Post
That's like well imagine you had Norton for your phone. And Norton for your phone told you that it had blocked an incoming phone call from a telemarketer who was trying to scam you. It didn't necessarily save you from anything. Computers receive random incoming connections all the time just like houses receive solicitors. Often they're out scanning the Internet looking for some old piece of software to take advantage of.

Anyway, I don't think that message you got was related to Sailnet.

But where is the malicious code that someones AV software is detecting? Is there an advertisement which is causing it? Did someone post a link to a malicious website in one of their postings?

CharlieCobra, I saw the fake Google link but where did that come from? Was it just added to a random place on the sailnet website? Or in an advertisement or someone's post?
It just popped a redirect to it, probably when a rotating ad ran.

Baggett and Sons Marine Restoration
The Landing at Colony Wharf
Bellingham, WA.

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
CharlieCobra is offline  
Quote Quick Reply Share with Facebook
post #20 of 23 Old 12-06-2011
Sunsets and Warm Beer....
 
LandLocked66c's Avatar
 
Join Date: Dec 2009
Location: The Bottom of a Pint Glass...
Posts: 2,111
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 6
 
Quote:
Originally Posted by CharlieCobra View Post
It just popped a redirect to it, probably when a rotating ad ran.
Are you guys using AdBlock Plus?

1971 23' Oday Pop Top
S/V Frida

You can't steer a boat that isn't moving? Just like a life - P. Lutus
LandLocked66c is offline  
Quote Quick Reply Share with Facebook
Reply

Quick Reply
Message:
Options

By choosing to post the reply above you agree to the rules you agreed to when joining Sailnet.
Click Here to view those rules.

Register Now



In order to be able to post messages on the SailNet Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
Please note: After entering 3 characters a list of Usernames already in use will appear and the list will disappear once a valid Username is entered.


User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.

Password:


Confirm Password:
Email Address
Please enter a valid email address for yourself.

Email Address:
OR

Log-in









Human Verification

In order to verify that you are a human and not a spam bot, please enter the answer into the following box below based on the instructions contained in the graphic.




Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page



Similar Threads
Thread Thread Starter Forum Replies Last Post
Code D pepperrent General Discussion (sailing related) 9 08-24-2011 07:44 PM
code zero vs 150 genoa costaricanwannabe Gear & Maintenance 5 11-28-2010 06:29 AM
Malicious Script - Be Careful tdw Announcements and Suggestions Box 26 04-14-2010 06:08 AM
Code Zero configuration CodeZero General Discussion (sailing related) 4 08-04-2009 07:04 PM

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Trackbacks are On
Pingbacks are On
Refbacks are On

 
For the best viewing experience please update your browser to Google Chrome