 | | | 
12.10.2010, 06:37
| | Junior Member | | Join Date: Oct 2010 Location: Zurich
Posts: 40
Groaned at 0 Times in 0 Posts
Thanked 21 Times in 13 Posts
| | | EF reported as hosting malware [Update: Now fixed]
Just a note to the mods, my browser is reporting the forum as a reported attack site.
Bob
| | The following 6 users would like to thank Scotty Bob for this useful post: | |
12.10.2010, 06:58
|  | Junior Member | | Join Date: Jul 2010 Location: Lugano
Posts: 65
Groaned at 0 Times in 0 Posts
Thanked 51 Times in 24 Posts
| | | Re: EF is comming up as a reported attack site
Here's what Google has to say about the site: http://safebrowsing.clients.google.c...hrome&hl=en-US | Quote: |  | | | What happened when Google visited this site?
Of the 377 pages we tested on the site over the past 90 days, 3 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-10-11, and the last time suspicious content was found on this site was on 2010-10-11.
Malicious software includes 3 exploit(s). Successful infection resulted in an average of 7 new process(es) on the target machine.
Malicious software is hosted on 2 domain(s), including thanubalrajh.com/, solidduck.ru/.
3 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including openx.org/, ibrla.com/, experteerads.com/.
This site was hosted on 1 network(s) including AS8560 (SCHLUND).
Has this site acted as an intermediary resulting in further distribution of malware?
Over the past 90 days, englishforum.ch did not appear to function as an intermediary for the infection of any sites.
Has this site hosted malware?
No, this site has not hosted malicious software over the past 90 days.
How did this happen?
In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.
| | | | |  |
12.10.2010, 07:01
|  | Forum Legend | | Join Date: May 2007 Location: Zürich
Posts: 3,223
Groaned at 34 Times in 30 Posts
Thanked 9,408 Times in 2,870 Posts
| | | Re: EF is comming up as a reported attack site
Yep, happened to me just now. 
Looks like we've been mistakenly entered onto a malware list somewhere.
If you're running firefox you can bypass this by going to the security tab in the preferences, and unchecking "Block reported attack sites". However depending on your browsing habits this may not be a good idea.
If you're getting this message from your browser it would be good if you could say what your browser is, and operating system.
Camino 2.0.4 (Mozilla), Mac OS 10.6.4.
__________________
...allegedly.
| | The following 3 users would like to thank Slaphead for this useful post: | |
12.10.2010, 07:04
| | | | Re: EF is comming up as a reported attack site
Another potential cause is malware within linked ads.
| | This user would like to thank for this useful post: | |
12.10.2010, 07:18
|  | Forum Legend | | Join Date: Dec 2006 Location: Ostschweiz
Posts: 4,112
Groaned at 96 Times in 46 Posts
Thanked 2,050 Times in 1,191 Posts
| | | What's that? Malware on Englishforum.ch?
somehow, englishforum.ch ended up on Google Chrome's Hacker-Site Blacklist. What's going on here?
Sorry, was already reported here: http://www.englishforum.ch/forum-sup...tack-site.html
Last edited by dawiz; 12.10.2010 at 07:28.
|
12.10.2010, 07:20
|  | Forum Veteran | | Join Date: Apr 2007 Location: Genève
Posts: 1,422
Groaned at 28 Times in 20 Posts
Thanked 1,308 Times in 607 Posts
| | | Re: EF is comming up as a reported attack site
| | This user would like to thank Mowvich for this useful post: | |
12.10.2010, 07:27
| | Forum Legend | | Join Date: Dec 2006 Location: Ostschweiz
Posts: 4,112
Groaned at 96 Times in 46 Posts
Thanked 2,050 Times in 1,191 Posts
| | | Re: EF is comming up as a reported attack site
Happening both on Google Chrome and Firefox under Windows 7. Apparently, they use the same blacklist.
|
12.10.2010, 07:34
| | | | Re: EF reported as hosting malware
Sorry about this.
One of our third-party adservers seems to be serving up malware via their ads.
Our use of that adserver has now been switched off.
This means that EF is now safe to browse.
Unfortunately it will probably take a little while until Google and other malware detectors catch up and clear their warnings. We're working to speed that up.
| | The following 43 users would like to thank for this useful post: | 33foxglove, araqyl, Begga, BruceFan, Castro, Chrishall, coolcd, Corbets, Crumbs, Cybersuz, dawiz, Deep Purple, Doctor, FabrizioM, Galatea, Geen, GenevaSculler, Glenda Jackson, jacek, johnnyd1969, Kaiserin, Longbyt, luminousmind08, mannie organ, MathNut, MusicChick, naten, Ouchboy, Peg A, pk01, Sagar_KD, Serafina, Sky, Slaphead, temiatwork, Texaner, The Real Stig, Uncle Max |
12.10.2010, 07:46
| | | | Re: EF reported as hosting malware
Just happened to me but followed Slaphead's advice and now back to normal...weird morning I tell ya!
|
12.10.2010, 07:58
|  | Forum Legend | | Join Date: May 2010 Location: Basel Stadt
Posts: 3,979
Groaned at 99 Times in 77 Posts
Thanked 6,677 Times in 2,388 Posts
| | | Re: EF reported as hosting malware
| Quote: | |  | | | Just happened to me but followed Slaphead's advice and now back to normal...weird morning I tell ya! | | | | | May be an idea to turn it back on soon though.....somebody hosting something did something that they shouldn't have done and the software on your PC caught it.....I wouldn't leave it switched off to be honest
| | This user would like to thank Caviarchips for this useful post: | |
12.10.2010, 08:01
|  | Forum Veteran | | Join Date: Jun 2009 Location: Canton Geneve
Posts: 504
Groaned at 1 Time in 1 Post
Thanked 230 Times in 153 Posts
| | | Re: EF reported as hosting malware
Safari is putting up this warning on every single click within the site. Must figure out how to turn that off specifically for this site...  |
12.10.2010, 08:34
|  | Junior Member | | Join Date: Dec 2007 Location: Zurich
Posts: 81
Groaned at 0 Times in 0 Posts
Thanked 36 Times in 22 Posts
| | | Re: EF is comming up as a reported attack site
[QUOTE=Mowvich;974530]Probably it's this bit of code: Also, on older browsers (IE6 for example), every page load throws a javascript exception on COMSCORE right now which causes a few annoying popup messageboxes.
|
12.10.2010, 08:36
|  | Forum Veteran | | Join Date: Nov 2009 Location: Basel, Bruderholz
Posts: 509
Groaned at 3 Times in 3 Posts
Thanked 363 Times in 160 Posts
| | | Re: EF reported as hosting malware
This means that EF is now safe to browse.
Phew, for a moment there I thought it was not safe to browse.
CK
|
12.10.2010, 08:38
| | | | Re: EF reported as hosting malware
| Quote: | | | | | This means that EF is now safe to browse. | | | | | For you own safety (and sanity) please avoid the " where can I buy brown sugar" threads..
| | The following 8 users would like to thank for this useful post: | |
12.10.2010, 08:54
| | Forum Legend | | Join Date: May 2010 Location: Basel Stadt
Posts: 3,979
Groaned at 99 Times in 77 Posts
Thanked 6,677 Times in 2,388 Posts
| | | Re: EF reported as hosting malware
| Quote: | | | | | Sorry about this.
One of our third-party adservers seems to be serving up malware via their ads.
Our use of that adserver has now been switched off.
This means that EF is now safe to browse.
Unfortunately it will probably take a little while until Google and other malware detectors catch up and clear their warnings. We're working to speed that up. | | | | | Well....thats good to know.....but why did it take Google and reports from the users to highlight it to the Admin team.....aren't there systems at your end to stop users being put at risk through the EF site?
Just wonderin'
|
12.10.2010, 08:55
|  | Forum Veteran | | Join Date: Aug 2009 Location: Basel CH
Posts: 576
Groaned at 3 Times in 2 Posts
Thanked 1,038 Times in 323 Posts
| | | Re: EF reported as hosting malware
| Quote: | | | | | For you own safety (and sanity) please avoid the "where can I buy brown sugar" threads.. | | | | | Or the " Is this enough to live on.." threads...  | | The following 3 users would like to thank cmirsky for this useful post: | |
12.10.2010, 08:56
| | | | Re: EF reported as hosting malware
@CaviarChips, it's a fair point.
We blindly trusted the ad servers not to serve malware.
We won't make the same mistake again though.
| | The following 4 users would like to thank for this useful post: | |
12.10.2010, 08:57
|  | Forum Legend | | Join Date: Feb 2008 Location: La Cote
Posts: 17,488
Groaned at 414 Times in 275 Posts
Thanked 20,435 Times in 10,578 Posts
| | | Re: EF reported as hosting malware
You guys are so clever, you got it already all figured out, I couldn't get in using google search, it took me a while to figure out to just type up the address into the address window. Phew, thought I had a bug, scanned all our pcs like a maniac, it wouldn't be a good time to get a bug. Off I go and back up...
| | This user would like to thank MusicChick for this useful post: | |
12.10.2010, 09:02
| | Forum Veteran | | Join Date: Nov 2009 Location: Basel, Bruderholz
Posts: 509
Groaned at 3 Times in 3 Posts
Thanked 363 Times in 160 Posts
| | | Re: EF reported as hosting malware
| Quote: | | | | | aren't there systems at your end to stop users being put at risk through the EF site? | | | | | Considering that large commercial sites fall victim to this from time to time highlights just how hard it is to prevent. There is a long chain of trust in getting ads to websites. It only takes one of those chain links to be compromised and from there the entire chain can be compromised.
There are products out there that can be installed by the site admin, you can think of it as anti-malware/virus for ads. They are scanned before being served up on the site. Much like webmail providers scan attachments before you can download them (gmail for instance).
Of course.. you as the customer can protect yourself with adblock plugins. Simple google search for adblock and your browsers name will get you what you want. *But* this cuts revenue to the site, site doesn't have resources to protect the other users.
CK
| | This user would like to thank CheesyKiwi for this useful post: | |
12.10.2010, 09:08
| | Forum Legend | | Join Date: May 2007 Location: Zürich
Posts: 3,223
Groaned at 34 Times in 30 Posts
Thanked 9,408 Times in 2,870 Posts
| | | Re: EF reported as hosting malware
| Quote: | | | | | Safari is putting up this warning on every single click within the site. Must figure out how to turn that off specifically for this site...
Attachment 19629 | | | | | I've just had a look at Safari and it appears to be an all or nothing approach - in fact in all the browsers I've looked at so far I've not been able to make an exception for this particular problem.
If you generally never see this warning while browsing, then you're probably ok to disable the warning temporarily. However it will be at your own risk.
| |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | | | Thread Tools | | | | Display Modes |  Linear Mode | 
Posting Rules
| You may not post new threads You may not post replies You may not post attachments You may not edit your posts
HTML code is Off
| | | All times are GMT +2. The time now is 12:17. | |
![EF reported as hosting malware [Update: Now fixed]](https://www.englishforum.ch/iconimages/announcements/ef-reported-hosting-malware-update-now-fixed_ltr.gif)
