May 31, 2011

I Am Investigating the Security-Threat Issue With The Site
— Ace

First I thought maybe it was just over-eager security programs; but I am getting a lot of complaints about this.

I am looking into several issues. Could it be comment-spam? Could there be links in there known to lead to security threats and so Norton and the like are warning off?

(By the way, my security software never tells me the site is a problem.)

One thing we might have to do -- unless we can get comment registration -- is simply disable all HTML in the comments.

Can anyone think of any possibilities? YouTube vids? What?


Answer: This is the information I have, from our very nice ad server representative, who keeps me from eating dog food.

This is driven by the user's and their browser history. The intent is for the user to visit a familiar web page and react poorly because they see a "trusted" website. :-/ -sc



This only happens for Safari users. Apple is about to release an OS patch to help clear this up.



Also, below please find steps to take if anyone gets infected by this virus. Hope this helps..thanks!



Steps to remove Mac Defender –


Move or close the Scan Window


Go to the Utilities folder in the Applications folder and launch Activity Monitor


Choose All Processes from the pop up menu in the upper right corner of the window


Under the Process Name column, look for the name of the app and click to select it; common app names include: MacDefender, MacSecurity or MacProtector


Click the Quit Process button in the upper left corner of the window and select

Quit


Quit Activity Monitor application


Open the Applications folder


Locate the app ex. MacDefender, MacSecurity, MacProtector or other name


Drag to Trash, and empty Trash


Malware also installs a login item in your account in System Preferences.

Removal of the login item is not necessary, but you can remove it by following the steps below.


Open System Preferences, select Accounts, then Login Items


Select the name of the app you removed in the steps above ex. MacDefender, MacSecurity, MacProtector


Click the minus button


Posted by: Ace at 07:53 AM | Comments (191)
Post contains 369 words, total size 2 kb.

1 Norton sucks and it's a huge resource hog.

Posted by: pajama momma at May 31, 2011 07:54 AM (1lqnR)

2 Could you instead validate users so some can post HTML?

I'd hate to no longer be able to put links as anything other then straight text.

Posted by: 18-1 at May 31, 2011 07:54 AM (7BU4a)

3 Maybe it's just a prank.

Posted by: Waterhouse at May 31, 2011 07:54 AM (jPPat)

4 > unless we can get comment registration
NOOOOOOOOOOOOOO!

Posted by: Benjamin Franklin at May 31, 2011 07:54 AM (JVEmw)

5 >>>ould you instead validate users so some can post HTML? I doubt it. If I could do that I'd just do comment registration. The way the site is, that's the hard thing.

Posted by: ace at May 31, 2011 07:55 AM (nj1bB)

6 I never get warnings, and I have Ad-Block, so that might point to the ads.

Posted by: Waterhouse at May 31, 2011 07:56 AM (jPPat)

7 Security spoof?  Running Firefox 4.0,.1 with Adblock Plus, Flashblock, and NoScript - no bogeys noticed.

Posted by: DirtCrashr at May 31, 2011 07:56 AM (dRMSX)

8 I got hit here once when I was using IE Ace. After I switched to FF and went to Script block I have not had another single hit. I figure it has to be someone tinkering with the ads to add script to it.

Posted by: Vic at May 31, 2011 07:56 AM (M9Ie6)

9 I'm on it Ace. I'll fix this shit. After I talk to my lawyer.

Posted by: Anthony Weiner at May 31, 2011 07:56 AM (usXZy)

10 Can you describe what' happening?  Is it browser hijack to bullshit security scan?  Because HotAir had the problem pretty bad before I switched to Firefox which blocks the ad scripts.

It was the occasional ad flash script that was doing it to my computer.

Posted by: rdbrewer at May 31, 2011 07:57 AM (8/JR7)

11 Back off our Boy, Ace.

Posted by: Weiner IT Team at May 31, 2011 07:57 AM (nQR0p)

12 Ditto, Vic.  It's the ads.

Posted by: rdbrewer at May 31, 2011 07:58 AM (8/JR7)

13 Awesome, Ace!  You've hit the big time!

Posted by: Truman North at May 31, 2011 07:58 AM (K2wpv)

14 Posted by: Waterhouse at May 31, 2011 12:54 PM (jPPat)

ISWYDT

Posted by: speedster1 at May 31, 2011 07:58 AM (yeM7r)

15 Not all the ads.

Posted by: rdbrewer at May 31, 2011 07:58 AM (8/JR7)

16 my bet is scripts in the flash-enabled ads. ALSO could be embedded in FLVs (commonly used for internet vids)

Posted by: BlackOrchid at May 31, 2011 07:58 AM (SB0V2)

17 I think it must be an ad, too. Running Chrome and FireFox with AdBlock Plus (sorry!.. but I have sent you some real money).. and haven't seen anything.

Posted by: IreneFingIrene at May 31, 2011 07:58 AM (JKe0g)

18 Something is attacking my computer every day and I can't get up !!!11!!!

Seriously, ace, both of the laptops I've used to access your site have been 'malwared' in the past two weeks.  I don't have good protection on the older one, so I needed to create a new account.

Whatever is attacking is strong kung-fu

Posted by: SantaRosaStan, Master of the Pan flute at May 31, 2011 07:58 AM (UqKQV)

19

Its not just the Mac malware attacks?  I've been getting that on mulitple sites since late last week.  Uhh, so I guess I'm pointing a finger at the ads?

Posted by: bebe's boobs destroy at May 31, 2011 07:59 AM (cniXs)

20

Norton has told me about attacks a few times when visiting here... however its very inconsistant.  If it was YOUR part of the site, it would happen much more often than it seems to do...

So... I'm thinking its the Ads... the ad software redirects you to some other site to load the graphics for the ad... and one or more of those vendors sites are infected...

Problem is that when you load, the ads change, and its inconsistant enough to be an ad that does not load for me very often.... so very hard to track down...

Key would be to have a number of us Document which Ads are up when we get the alert....

Posted by: Romeo13 at May 31, 2011 07:59 AM (NtXW4)

21 For whatever it's worth, McAfee lists it as a safe site.

Posted by: booger at May 31, 2011 07:59 AM (9RFH1)

22 Fucking hackers.

Posted by: A Balrog of Morgoth at May 31, 2011 07:59 AM (agD4m)

23 Definitely a hacker, you better call a lawyer.

Posted by: Anthony "Big Tone" Weiner at May 31, 2011 07:59 AM (+lsX1)

24 It's almost certainly the ads.  The Soviets have managed to get their infected ads into every ad rotator on the planet.

FF and Adblock keeps me from getting hit.

Posted by: brian at May 31, 2011 08:00 AM (y05cf)

25 We need to burn the site....twice.  Then start from scratch, this time with twice the boobehs.

Posted by: Lemmiwinks at May 31, 2011 08:00 AM (pdRb1)

26 The ads are oddly beguiling.  One of them asked me if my weiner was bigger and more formidable that Weiner's weiner

Posted by: SantaRosaStan, Master of the Pan flute at May 31, 2011 08:01 AM (UqKQV)

27 Your site was the first that got passed my MacBook's security.  It was weird.  I had to delete whatever it was that Safari downloaded. 

I've had no problems on the Windows machines so far.

Posted by: Anony at May 31, 2011 08:01 AM (7ahtU)

28 Could be malware inside pics.  Maybe Weiner pics.

Posted by: Cherry π at May 31, 2011 08:01 AM (+sBB4)

29 The Democrats have a plan to save AOSHQ from these teabagging-originated security threats.  We're going to blame the GOP, spend some money on commercials to make you feel more secure but actually do nothing about it.  There, all better.

Posted by: Debbie Wasserman-Shultz at May 31, 2011 08:01 AM (UciSl)

30 No problems here - McAfee and the next level up of security in IE8.

Posted by: BackwardsBoy at May 31, 2011 08:01 AM (d0Tfm)

31 27, Same here.

Posted by: Oldsailor's poet at May 31, 2011 08:02 AM (NtTkA)

32  I had to delete whatever it was that Safari downloaded. 

Posted by: bebe's boobs destroy at May 31, 2011 08:02 AM (cniXs)

33 4 > unless we can get comment registration
NOOOOOOOOOOOOOO!

Posted by: Benjamin Franklin at May 31, 2011 12:54 PM (JVEmw)


This would end sock puppeting as we know it.  Probably racist too.

Posted by: Lemmiwinks at May 31, 2011 08:02 AM (pdRb1)

34 "Astoria mom makes $77 an hour from home."

I am sure she does.  If I bring friends, do we get a group discount?

Posted by: A Balrog of Morgoth at May 31, 2011 08:02 AM (agD4m)

35 I haven't have any problems.  But, I don't usually click any ads, or click any tinyurl links.

Posted by: Cherry π at May 31, 2011 08:02 AM (+sBB4)

36 Your site was the first that got passed my MacBook's security. It was weird. I had to delete whatever it was that Safari downloaded. I've had no problems on the Windows machines so far. Posted by: Anony at May 31, 2011 01:01 PM (7ahtU) yes on my macbook I also got that phony bullshit pop up that my computer was infected and I have to force quit safari also- Happened at least twice

Posted by: nevergiveup at May 31, 2011 08:02 AM (i6RpT)

37 34 LOL!!!

Posted by: Oldsailor's poet at May 31, 2011 08:03 AM (NtTkA)

38 BTW, my McAfee says it is OK as well. I think it is an intermittent thing from a hacker.

It is not just this site either. My wife got hit at a large newspaper chain viewing their comics.  She turned off the script block for some reason and it rode right in. She was using Windows 7 and FF.

Posted by: Vic at May 31, 2011 08:03 AM (M9Ie6)

39 I keep getting sent to a Mac security site. And then I get a picture of ace's dick. Totally uncalled for.

Posted by: JackStraw at May 31, 2011 08:03 AM (TMB3S)

40 Save the Puppets!

Posted by: Left Sock at May 31, 2011 08:03 AM (NtXW4)

41 Damn.  Ok, i shut down safari before anything downloaded (i think).  There was no way to close their box so i force quit safari.

Posted by: bebe's boobs destroy at May 31, 2011 08:03 AM (cniXs)

42 As far as html content is concerned, FF4 here and i can highlight text and "goto" the site. don't need the links.

Posted by: The Great Satan's Ghost at May 31, 2011 08:03 AM (UrPTC)

43 25 We need to burn the site....twice.  Then start from scratch, this time with twice the boobehs.

Posted by: Lemmiwinks at May 31, 2011 01:00 PM (pdRb1)

 

I thought the new game plan was all Weiner, all the time.

Posted by: Ms Choksondik at May 31, 2011 08:03 AM (UciSl)

44 "Astoria mom makes $77 an hour from home."

Wait... Mine says "Folsom Prison mom..."

Posted by: Cherry π at May 31, 2011 08:04 AM (+sBB4)

45 I guess the days of feeling superior about having a mac and not getting infected are about over.

Posted by: Oldsailor's poet at May 31, 2011 08:04 AM (NtTkA)

46 Forbid anything other than a tinyurl redirect.

That will also neuter most of the comment spam into mere humor.

The adds are another problem. You may have to temporarily shut off an ad if the service accepted money from a scammer.

Posted by: Kristopher at May 31, 2011 08:04 AM (atS82)

47
java scripts!!!

Posted by: Double Tomato Soothsayer Guy at May 31, 2011 08:04 AM (gM4zK)

48 No problem even with Norton.

Posted by: ABBO at May 31, 2011 08:04 AM (XEwY1)

49 The only problem I have when I connect to Ace is my wife constantly chirping for me to log off.  Anybody got an app to block chirpy wives?

Posted by: Truman North at May 31, 2011 08:04 AM (K2wpv)

50

Maybe it's the Caterpillar filter spam.

Or the lace wig spam.

Or the Windows 7 key spam.

Or the...

Posted by: BackwardsBoy at May 31, 2011 08:04 AM (d0Tfm)

51 About 95% of the time attacks like this come via ads. With AdBlock Plus enabled, I'm not getting any warnings or alerts.

Posted by: Mtenloch at May 31, 2011 08:04 AM (TU3mr)

52 Save the Puppets!

OMG! ace wants to kill Puppets!11!!!

Posted by: Cherry π at May 31, 2011 08:05 AM (+sBB4)

53
unless we can get comment registration




You contemptible blackguard! I demand satisfaction! Meet me on the field of honor at dawn!

Posted by: Aaron Burr at May 31, 2011 08:05 AM (eyh2h)

54 I've been getting a lot of those fake security scan viruses lately and wondering where they were coming from. There's a hidden, encrypted block of input in your source code.  Don't know if that's it or not, but it's the only thing weird I see in there (admittedly, I'm no expert).

Posted by: Steven at May 31, 2011 08:05 AM (NP9qn)

55 49, A .38 and a wood chipper.

Posted by: Oldsailor's poet at May 31, 2011 08:05 AM (NtTkA)

56 If I got comment registration I would make sure you could still fill in a different name for sockpuppets.

Posted by: ace at May 31, 2011 08:05 AM (nj1bB)

57 What #17 said.

It's the ads. That, ace, has been a running issue for years on this site. In fact, the ability of Firefox to alleviate the issues _here_ is what made me switch completely to FF last year.

The people placing your ads are not vetting them.  They often contain poorly written scripts which become unresponsive, spyware and even low level mal-ware.

You have an ad service which logs IPs. For example I made the mistake of contacting Rack Space about hosting a business of mine. They captured my IP. Not a cookie...any device I used through this IP brought up a Rack Space ad. Turn off my smartphone's wi-fi, reload AoSHQ and voila' no Rack Space ad.

That's a huge resource suck and some security programs flag it.

Posted by: Quilly Mammoth at May 31, 2011 08:06 AM (BcsLx)

58 Could this have anything to do with the Underpants Tweeter?

Posted by: MaxMBJ at May 31, 2011 08:06 AM (qBKEb)

59

I thought the new game plan was all Weiner, all the time.

Posted by: Ms Choksondik at May 31, 2011 01:03 PM (UciSl)


I can help you with that.

Posted by: The Great Satan's Ghost at May 31, 2011 08:06 AM (UrPTC)

60 Could it be the fact that we're the only website running on a TRS-80?

Posted by: Andy at May 31, 2011 08:06 AM (rotMA)

61 Turned off adblocker in FF and still haven't got anything on the main page or comments.

Posted by: booger at May 31, 2011 08:06 AM (9RFH1)

62 In Firefox, View - Page Source

Posted by: Steven at May 31, 2011 08:07 AM (NP9qn)

63 My money is on malware inside various types of downloaded pic-pixels

Posted by: Richard at May 31, 2011 08:07 AM (m0vid)

64 Norton has told me about attacks a few times when visiting here... however its very inconsistant

Yeah, it's just one or two of the ads.  Crapshoot as to when they come up.

Posted by: rdbrewer at May 31, 2011 08:08 AM (8/JR7)

65 Would it be possible to add "monitors" that can zap the comment spam a bit faster? Maybe those assholes posting that shit would get discouraged if their handiwork here had an extremely short shelf life.

Posted by: Blacque Jacques Shellacque at May 31, 2011 08:08 AM (1rHeD)

66 malware pranks aceofspades hq

Posted by: drewh at May 31, 2011 08:08 AM (PkolB)

67 I don't know what to do about the threat, but maybe you should start posting pics of hot redheads just in case it helps.

Posted by: The Mega Independent at May 31, 2011 08:08 AM (LHFI6)

68 I haven't had a single one from any site since I switched to FF.

Posted by: rdbrewer at May 31, 2011 08:08 AM (8/JR7)

69

When I log into this smart military blog, and if the Interwebs are kinda slow, I see all kinds of stuff loading up in the IE bar at the bottom of the page, which I know is normal.

It's just that there's a lot of it.

Posted by: BackwardsBoy at May 31, 2011 08:09 AM (d0Tfm)

70 Anybody got an app to block chirpy wives?

Posted by: Truman North

Alcohol, v1.0

It won't block her, but you won't mind so much if you use the app right.

Posted by: todler at May 31, 2011 08:09 AM (fPOY0)

71 If I bring friends, do we get a group discount?

It's by the hour moron, do you not read English.

How many of your friends that get done in that hour is up to them.

Posted by: Erg's Mom at May 31, 2011 08:09 AM (tf9Ne)

72 56 If I got comment registration I would make sure you could still fill in a different name for sockpuppets.

Posted by: ace at May 31, 2011 01:05 PM (nj1bB)

 

Bless you kind sir.  It's one of the best things about AOSHQ.  That and all the weiners.

Posted by: Ms Choksondik at May 31, 2011 08:09 AM (UciSl)

73 My money is on malware inside various types of downloaded pic-pixels

I have never seen malware come via a jpg or similar pic. They will however come in via flash player which is why I don't have that enabled.

Posted by: Vic at May 31, 2011 08:09 AM (M9Ie6)

74 I might have an answer.

Posted by: ace at May 31, 2011 08:10 AM (nj1bB)

75 Do you make enough cash from ads to even make it worthwhile? The political season is coming up - direct sales to candidates and PACs might give you some better cashflow and more control.

Posted by: Jean at May 31, 2011 08:10 AM (WkuV6)

76 I read that headline and thought this post was going to riff off of the Weiner scandal.  Heh.

Posted by: rdbrewer at May 31, 2011 08:11 AM (8/JR7)

77
Shutting down comments on old threads after a few days might keep some of the bandwidth free, I'd think.

Posted by: IllTemperedCur at May 31, 2011 08:11 AM (eyh2h)

78 I"m not getting it now, I've checked my mac running osx ver 10.6.7 installed the new security patch. So not seeing the redirect at this point but Thurs and Fri. couldn't come to you site I kept getting the redirect and was not sure if it was my machine at that point.

Posted by: lions at May 31, 2011 08:11 AM (KvAee)

79 I've been getting fake MAC virus ads ever since I switched to FireFox 4.0

Posted by: parisparamusinbrooklyn at May 31, 2011 08:11 AM (Hybpp)

80 I know I was having sporadic problems a while back, and the links were all tied to adds that came up. I also had the same problem with some yahoo sites.

Posted by: Scott at May 31, 2011 08:12 AM (8uees)

81 "YouTube vids?" No problem with your site, I trust, but I did get the Mac Guard virus for linking a youtube vid of "Spanky forms the He Man Gang". I thought it a good riff on formation of Al Quaeda... turned out taking an hour to get rid of... while suffering all kinds of porny pop ups... no Weiner pun intended.

Posted by: shivas Irons at May 31, 2011 08:12 AM (qu2SW)

82 Ace,

     I;m over in Saudi Arabia (aka - the Magic Kingdom) and the Ministry of Interior runs what we expats call "Big Abdullah"...they "monitor" for websites that are deemed "inappropriate"...I can get to AoS without a proxy.  You must not be pissing "Al and Mo" off enough to get blocked.

     BTW - they show a lot of "Meet Arab Women" websites on the main page...they all look like camels and goats.

Posted by: Barbed C### of Satan at May 31, 2011 08:12 AM (hkoG6)

83 2, could it be all that comment-spam? Could there be links in there known to lead to security threats and so Norton and the like are warning off?

Nope. Norton/etc. can't tell where a link goes unless you click it (or it "clicks" itself, which in a comments field it can't can't do).

It's always ad-network ads. The cure is to sell your own and put them up yourself. (Five ads for x dollars/month means more money for you than 5,000,000 at $00.0000000000x, y'know.) No ad service is trustworthy, because why the hell would they be? Their customers don't know what they do, and all the financial incentives are on the side of their letting your site get fucked up and blaming somebody else.

Posted by: oblig. at May 31, 2011 08:13 AM (xvZW9)

84 BTW: Didn't Drudge dump your adserver because of this?

Posted by: Quilly Mammoth at May 31, 2011 08:13 AM (BcsLx)

85

Make a page with only just the ads and ask people to go to it and see if they are still getting problems.

Posted by: Serious Cat at May 31, 2011 08:14 AM (bAySe)

86 OT but too good to pass up.

http://tinyurl.com/3voj2n8


Posted by: Hrothgar at May 31, 2011 08:14 AM (yrGif)

87  I guess the days of feeling superior about having a mac and not getting infected are about over.

Posted by: Oldsailor's poet at May 31, 2011 01:04 PM (NtTkA)

I think a big part of that was that the user base was so much smaller than PCs that it didn't make it worth the time and effort for their hackers. Now that they're gaining popularity Mac users can't just sit back and smell their farts like they used to.

Posted by: landofskybluewater at May 31, 2011 08:14 AM (XthHy)

88 Anybody got an app to block chirpy wives?

Smith & Wesson, and a shovel.


Sounds like we have a member of the Slapaho tribe here...

Posted by: Barbed C### of Satan at May 31, 2011 08:14 AM (hkoG6)

89 I've got several layers of Claymores for protection.

Posted by: ontherocks at May 31, 2011 08:15 AM (HBqDo)

90 The ads probably have something to do with the fact that we refuse to cover Wienergate.

Posted by: Limbaugh and Drudge at May 31, 2011 08:15 AM (zgZzy)

91 Ace, it's likely the ads, as others have said. The mechanisms are getting more sophisticated, but essentially, the malware is launched from within a SWF (Flash) ad. Typically there's a randomizer (like a timestamp) within the SWF to trigger the malware, so it only happens sporadically, making detection more difficult. Ad networks are constantly battling the issue, because many of these ads appear fine. I assume you're using a network to monetize your inventory; that network in turn relies on other networks for the actual ads, and a malware ad likely slipped through. I would first contact your ad network to ask what kind of screening technologies they are employing. I would also suggest requesting users contact you with screenshots or information about any ads they saw on the page when they received the issue.

Posted by: Budge at May 31, 2011 08:15 AM (SUFVQ)

92 Mitt Romney is not the culprit here, but he is declaring today.

Posted by: parisparamusinbrooklyn at May 31, 2011 08:16 AM (Hybpp)

93 Sounds like we have a member of the Slapaho tribe here...

Posted by: Barbed C### of Satan at May 31, 2011 01:14 PM (hkoG6)

The surviving cousins of the long extinct Wheydafugarewe

Posted by: Quilly Mammoth at May 31, 2011 08:17 AM (BcsLx)

94 Stories on the interwebs are saying that the haxors are getting top rated links when you search for something on google, then when you click on it BAM you get the site. That its not files or anything like that, apple even issued a statement that if you click one of those links to do a force close and your done for that instance.

Posted by: TendStl at May 31, 2011 08:18 AM (N0z1T)

95 #93 I know.  Awesome!  Stop by and talk with us about it.

Posted by: Dan the Mitt Blogwhore Man at May 31, 2011 08:18 AM (agD4m)

96 Requiring comment reg would not fix malware inside ads or inside pics

Posted by: Cherry π at May 31, 2011 08:19 AM (+sBB4)

97

Ace...

YEP... MAJOR VIRUS ATTACKS this weekend.  I lost both of my laptops at home after clicking on for my morning ONT fix on Saturday. 

AoS was the only site the two had in common.

Fixed one laptop with malwarebytes in safemode... the other is still down. 

 

 

Posted by: LapTopLess at May 31, 2011 08:19 AM (+I7lm)

98 93 Mitt Romney is not the culprit here, but he is declaring today.

Posted by: parisparamusinbrooklyn at May 31, 2011 01:16 PM (Hybpp)


That's bullshit! That's more mention of Romney then this entire blog gave to God Ron's announcement!!!

Posted by: A. Paulbot at May 31, 2011 08:19 AM (BcsLx)

99 Whatever is attacking is strong kung-fu

Posted by: SantaRosaStan, Master of the Pan flute at May 31, 2011 12:58 PM (UqKQV)

Preach on it, brother.  I was using the mister's work laptop and when I shut down Friday night, it was giving me messages.  I assumed it was the usual scam sites trying to sell some kind of cleaner.  Also, this laptop has excellent protection.  Hello, Saturday morning.  Ugh!

It was so bad, Mr. RB (who's pretty tech savvy) worked on it all weekend and couldn't fix squat.  He took it to the IT Dept. this morning and they got half of it eradicated and said they've never seen anything like it.  they're trying to figure out how to get rid of the other half.

Posted by: RushBabe at May 31, 2011 08:20 AM (Ew27I)

100 OT/

About the Weiner story... is it possible he had a second account he was using to chat up girls anonymously? Two accounts, one for Dr. Jeckel and one for Mr. Hyde. It may not necessarily been a DM but he might have forgotten the one account's session was already open. If so, we may need to look for a second Twitter account that was chatting up the "Comely Coed". Too fucking bad she nuked her account. :/

Posted by: Serious Cat at May 31, 2011 08:20 AM (bAySe)

101 Ace, you have several ads in the rotation that cause Norton to flag your site sometimes on my laptop. I'm like 90% sure its the ads mainly because it happens so randomly and infrequently. And on my main Windows 7 machine with FF and Avira, I've never had a single problem here... I would either just let it go or see what you can do vis-a-vis your ad vendors... Again, its not frequent enough to really bother me much. Unless someone else is getting hit constantly, then maybe I'm totally wrong

And on the flip side, I've donated money to you, I'm sure many others have. Maybe you could re-examine the prominence of the donate button and cut back on some of the more obnoxious ads that you'd be more likely to see on a pr0n site then a political blog.

Posted by: TimtheLurker at May 31, 2011 08:20 AM (78jId)

102 Make a page with only just the ads and ask people to go to it and see if they are still getting problems.

Posted by: Serious Cat at May 31, 2011 01:14 PM (bAySe)


That's like "Hmmm, I think this milk smells bad.   Here, you taste it."

Posted by: NC Ref at May 31, 2011 08:21 AM (/izg2)

103 I've gotten whacked with malware TWICE this year, first time was when OBL went down, the second time was when I was going to strange places on the internet to get the inside dope on the Weiner affair.

Posted by: Mister Christopher at May 31, 2011 08:21 AM (/BUPU)

104 On the flip-flip side, maybe you're just being #pranked and should hire a private security consultant

Posted by: TimtheLurker at May 31, 2011 08:21 AM (78jId)

105 Sounds like we have a member of the Slapaho tribe here...
Posted by: Barbed C### of Satan at May 31, 2011 01:14 PM (hkoG6)

The surviving cousins of the long extinct Wheydafugarewe

They had a chief once - his name was dragginballz.  His assistant was called longdukdong - his father was part Chinese.

Posted by: Barbed C### of Satan at May 31, 2011 08:21 AM (hkoG6)

106 By the way Apple and Tech sites have issued warnings about this news Apple Phony Virus Pop up. The only way to make sure you don't download anything harmful is to force quite your browser. That will protect you.

Posted by: nevergiveup at May 31, 2011 08:22 AM (i6RpT)

107 Pranksters.

Posted by: ThirtyAndSeven at May 31, 2011 08:23 AM (3so+k)

108 No issues for me. Ever. Running FF, AdBlock and ESET Smart Security Suite. Hell, I click on anything.

I live on the edge.

Posted by: jcjimi at May 31, 2011 08:24 AM (NEj2I)

109 No problems using my ancient fleet of pre-Intel Macs.  They just won't die.

Posted by: Valiant at May 31, 2011 08:24 AM (9/lhd)

110 I've had no problems on AoSHQ.  I don't hit that many adds, but so far they're just adds that go away when I click them off.  Same for the links.  Perhaps a change from McCafee.  I was having problems with them until I bought a new computer and went to new security.

Posted by: Soona at May 31, 2011 08:24 AM (j77Gr)

111 I read an article about how it was advertisements for Mac anti-virus software that put malware on your computer.

Stupid effete, creative, leftist Mac users.  With tiny penises that they send pictures of to Comely Coeds.

Posted by: FUBAR at May 31, 2011 08:25 AM (1fanL)

112 Yeah whatever I got on my Netbook blew right through MacAfee.

Posted by: NC Ref at May 31, 2011 08:25 AM (/izg2)

113 I'm thinking it is content spam.  About an hour or two ago, all the "recent posts" listed on the right side of the site were obviously spam.

Posted by: Brandon In Baton Rouge at May 31, 2011 08:26 AM (UvFnc)

114 Norton sucks and it's a huge resource hog.

Posted by: pajama momma at May 31, 2011 12:54 PM (1lqnR)

AVG Free baybee!  Recently added bells and whistles, including using more resources when the computer is idle and less resources when you're surfing porn doing Internet Research.

Posted by: FUBAR at May 31, 2011 08:26 AM (1fanL)

115 CNN online is reporting that Egyptian soldiers / police are doing ...... ( wait for it ) ..........  virginity tests on female protestors.

can't make this Stuff up

maybe virginity tests on commenters would solve the malware problem here

Posted by: SantaRosaStan, Master of the Pan flute at May 31, 2011 08:27 AM (UqKQV)

116 I echo the FF [3.6], no flash enabled and ad block plus. I haven't had any malware problems.

Posted by: Museisluse at May 31, 2011 08:27 AM (a8aqn)

117 I guess I should say AVG Free and NoScript for Firefox.  I haven't noticed a thing.

Posted by: FUBAR at May 31, 2011 08:27 AM (1fanL)

118 The MacDefender phishing / trojan problem appeared @ instapundit a few days ago too. It's likely caused by rogue ads or images found via Google image search. The guys responsible have been very clever about gaming the image search results, so whenever you're digging around for something popular and innocuous, you get dinged with an automatic download. Ideally, the Google folks will take some preventative measures on their back end, but until then, bloggers here should be extra careful about linking external images. As for anyone snarking about Mac users no longer being safe, moron please. There's been a significant uptick in recent years of former PC users switching to Macs, and I'd bet good money those folks make up the vast majority of people affected by this scam. Generally speaking, OS X with it's BSD underpinnings is remarkably secure by default for average users. Just don't be a fucking idiot: never randomly enter your admin password unless you know what prompted the request, and make sure your less tech savvy relatives don't use an admin priv'd account for daily use.

Posted by: Walter Freeman at May 31, 2011 08:28 AM (UsjBj)

119 Can anyone think of any possibilities?

Advertisers. If they are known risks and you link to them off the main page...

Posted by: MikeTheMoose at May 31, 2011 08:28 AM (0q2P7)

120 OT: regarding malicious activity, Twitter is based in SF. let's assume the worst about the company. what's to stop Twitter from declaring itself a progressive service, say on Labor Day 2012, and banning all conservatives? Anything illegal about that?

Posted by: parisparamusinbrooklyn at May 31, 2011 08:28 AM (Hybpp)

121 something just happened.....

Posted by: SantaRosaStan, Master of the Pan flute at May 31, 2011 08:29 AM (UqKQV)

122 Whoa, I think I'm trippin' dude.

Posted by: FUBAR at May 31, 2011 08:30 AM (1fanL)

123

I had 3 high severity alerts from Norton, most recently 5/30/ 5:39:07 pm. The Norton Scan provides IP code for the activity. I can post that if helpful. These were the only other attempts.

5/28 6:38:02 pm.  and  5/27 7:46:05pm

Posted by: lauren at May 31, 2011 08:32 AM (ibCFU)

124 Great, no can you do something about those persistent weiner pics?

Posted by: ElSuerte at May 31, 2011 08:32 AM (TRwp5)

125 As for anyone snarking about Mac users no longer being safe, moron please. There's been a significant uptick in recent years of former PC users switching to Macs, and I'd bet good money those folks make up the vast majority of people affected by this scam.

Posted by: Walter Freeman at May 31, 2011 01:28 PM (UsjBj)

Heh.  You're quoting the article, aren't you?

I thought you had to execute something to get a virus or malware.  I've never gotten one without doing something dumb.  Like running software I stole with uTorrent.  Recently.  Last week.

It shut down Windows Defender and kept redirecting me to Google when I'd try to go to various anti-virus sites.  But AVG did the trick.

Posted by: FUBAR at May 31, 2011 08:32 AM (1fanL)

126  the second time was when I was going to strange places on the internet to get the inside dope on the Weiner affair.

Posted by: Mister Christopher at May 31, 2011 01:21 PM (/BUPU)

You're asking for trouble if you click on any page that comes up when you type comely co-ed and Weiner into a search engine.

Posted by: landofskybluewater at May 31, 2011 08:35 AM (XthHy)

127 This happened to my wife(an Ace lurker) over the weekend, she contacted Apple help and was able to get rid of it.....

Posted by: FU52 at May 31, 2011 08:35 AM (Bx8LL)

128 Have not read all of the comments, but what people are describing is not a warning from their own anti-virus software. (I have gotten those in the past from some of the sidebar ads.)

This is much, much worse. This is a redirect to phony sites which upload software to your machine. This software will then tell you you have a virus and need to buy a product to eradicate it. Every time you try to go anywhere on the net you will be redirected to their site. They will stop searches. They will block you from going to a site to upload anti-malware software.

It's bad, bad juju.

The only solution is to restart in windows safe mode and run windows malware remover.

I still have a system which never fully recovered from this. I had to buy a new drive, reload Windows, and then put the old drive into an external drive configuration and use it as a slave drive. Never did get full functionality back.

Posted by: Have Blue at May 31, 2011 08:35 AM (mV+es)

129 This happened to my wife(an Ace lurker) over the weekend, she contacted Apple help and was able to get rid of it.....

Posted by: FU52 at May 31, 2011 01:35 PM (Bx8LL)

Has she always been a Mac user or did she recently switch from a PC?

Posted by: FUBAR at May 31, 2011 08:36 AM (1fanL)

130 ps. I don't have Flash installed, and Ace's web page still pissed on my rug last weekend. Gotta be some JavaScript code-fu.

Posted by: Walter Freeman at May 31, 2011 08:36 AM (UsjBj)

131 105....I thought that is where he was going with this too.....

Posted by: FU52 at May 31, 2011 08:36 AM (Bx8LL)

132 I thought Macs couldn't get a virus because they are all magicky and shit.   Why would they need a security program?

Posted by: kurtilator at May 31, 2011 08:36 AM (juh4Z)

133 more info re#124, looks like the Norton history provides attacking source IP  and very long attacker URL. Let  me know if the info will help and I will post or email to tech person. Thx.

Posted by: lauren at May 31, 2011 08:37 AM (ibCFU)

134 Believe me these software creations are evil.

 Even Mac users don't deserve this.

Posted by: Have Blue at May 31, 2011 08:37 AM (mV+es)

135 CNN online is reporting that Egyptian soldiers / police are doing ...... ( wait for it ) ..........  virginity tests on female protestors.


can't make this Stuff up

maybe virginity tests on commenters would solve the malware problem here

Posted by: SantaRosaStan, Master of the Pan flute at May 31, 2011 01:27 PM (UqKQV)

I know, let's give them money!  That will surely civilize them.

Posted by: Barky O at May 31, 2011 08:39 AM (yrGif)

136 Chrome and FF on Windows here, never had a problem. And I actually disable ad block for this site (I do that pretty much only for right-wing sites I support.)

Posted by: Clubber Lang at May 31, 2011 08:39 AM (QcFbt)

137 71 If I bring friends, do we get a group discount?

It's by the hour moron, do you not read English.

How many of your friends that get done in that hour is up to them.

Posted by: Erg's Mom at May 31, 2011 01:09 PM (tf9Ne)


This comment was made possible by a grant from Sock Puppeting

Posted by: Lemmiwinks at May 31, 2011 08:39 AM (pdRb1)

138 Re: 134 - someone needs to look into that PKCS7 encrypted block in the source code. What people are describing sounds like a rogue java script issue, and does not appear to be limited to Mac users as the ad server guy suggests.

Posted by: Steven at May 31, 2011 08:40 AM (NP9qn)

139 I got infected, too. Looks like someone flicked a spoonful of oatmeal across my dick... What were we talking about?

Posted by: Empire of Jeff at May 31, 2011 08:41 AM (1ODi+)

140 My machine has not even sniffled since I've been using ESET. I almost NEVER pay for software but when a consultant my boss bought me ESET and I've paid for it ever since.

Norton is an obscene, useless hog. AVG was my fave until ESET got my mind right.

Posted by: jcjimi at May 31, 2011 08:45 AM (NEj2I)

141 I am opposed to mandatory comment registration on this site. It will spoil the fun.

Posted by: Alexander Hamilton at May 31, 2011 08:45 AM (jCQ+I)

142 FWIW, I hit reload Mon. AM and immediately got hit with MacGuard. No harm done, and it got me to pay attention to virus protection.

Posted by: Jeffrey Quick at May 31, 2011 08:45 AM (g9neE)

143 I agree with Hamilton for once.

Posted by: Aaron Burr at May 31, 2011 08:46 AM (jCQ+I)

144 There's been a push of Mac-oriented malware lately.

The URLs are too long, but if you go to ArsTechnica.com and search "Mac malware defender" you can get a list of articles on this.

The core is: Ads that pretend to "detect" problems and ask you to proactively do stuff. But the "stuff" they want you to do is designed to actually convince you to invite the Trojan Horse in.

The weakest link of security is the social side. The in-browser scripting has reached the point that they're able to pretend to be your own installed anti-malware screaming "Intrusion! Click here to save your life!" When really, they desperately need the click to "allow" them to do anything more than flash scary graphics from browserland.

This isn't saying that this is the only thing going on, just pointing out one of the potential issues from Macland at the moment.

Posted by: Al at May 31, 2011 08:47 AM (MzQOZ)

145 Thank You, Ace!

Posted by: Running Hobo [Mac 'R' Us Kid] at May 31, 2011 08:52 AM (l1oyw)

146 Strange this happens on the same day the Pentagon says that cyber-attacks are an act of war...

Posted by: Lone Marauder at May 31, 2011 08:53 AM (/bVuS)

147 49 Anybody got an app to block chirpy wives?
_________

Duct tape?

Posted by: Anachronda at May 31, 2011 08:54 AM (xGZ+b)

148 Strange this happens on the same day the Pentagon says that cyber-attacks are an act of war...

Posted by: Lone Marauder at May 31, 2011 01:53 PM (/bVuS)

Weinergate = Pearl Harbor.

Posted by: FUBAR at May 31, 2011 08:55 AM (1fanL)

149 I got the virus attempt message from Ace's ad server a few days ago, over the weekend, when visiting the front page. Didn't click it to download it, and just blocked all javascript from the ad server using Drew Thaler's JavaScript Blacklist. It hasn’t repeated itself, but that might just be elephant repellant.

Posted by: Stephen Price Blair at May 31, 2011 08:57 AM (QF8uk)

150 I support verified user registration for comments.
Freedom of speech is a wonderful concept, but too often it is used to spread irresponsible speech, even hate speech.

Remember, just because a conspiracy theory turns out to be true, doesn't mean it stops being a crazy conspiracy theory.

I hope the entire Ace of Spades community will join me in calling for a new, True Identity based system for verified user accounts here at Ace of Spades and other right-wing sites. I trust that together we can overcome the unfortunate legacy of hate speech and racial intolerance that too often is the norm for the right wing fringe. I know you want to become better people, and I'm here to help.

Now I still think we need a section of the Internet that is cordoned off for unlimited free speech. Luckily, the wonderful communities at DailyKos and Democratic Underground provide all the free speech we need.

Only together, and with strict government monitoring and supervision, can we Win the Future.

Thank you.

Posted by: Barack Obama at May 31, 2011 08:57 AM (QcFbt)

151 148 49 Anybody got an app to block chirpy wives?
_________

Duct tape?

Posted by: Anachronda at May 31, 2011 01:54 PM (xGZ+b)


shoe catalog

Posted by: Lemmiwinks at May 31, 2011 08:58 AM (pdRb1)

152 Throw the Merry Pranksters under the bus! http://www.nofurthur.com/historic.html

Posted by: shivas Irons at May 31, 2011 08:59 AM (qu2SW)

153 I got a couple of warnings, a window popped up which said it was from Apple (which I doubted very much) that wanted me to click on a button to "check my files".

I was born at night, but it wasn't last night...

Posted by: navybrat at May 31, 2011 09:06 AM (5LPV8)

154 Bush/Cheney and their cyber assasination squad strikes again!!!!

Posted by: mathishard at May 31, 2011 09:06 AM (XQSTq)

155 This only happens for Leftist NY congressmen who are Safari Twitter users. Apple is about to release an OS patch to help clear this up.

FIFY

Posted by: The Fixer at May 31, 2011 09:08 AM (vdfwz)

156 WEINER ALERT ON RUSH

Posted by: hmmm at May 31, 2011 09:09 AM (wOaLi)

157 Yeah...Apple is SO awesome...

...Mac users are - and always have been - a cult.

Posted by: Ed Schultz at May 31, 2011 09:11 AM (uLilQ)

158 15214849 Anybody got an app to block chirpy wives?
_________

Duct tape?

Posted by: Anachronda at May 31, 2011 01:54 PM (xGZ+b)


shoe catalog

Posted by: Lemmiwinks at May 31, 2011 01:58 PM (pdRb1)

Best Movie Line EVAH!

Hitman: "shut up or I'll put you back in the trunk"

Posted by: Romeo13 at May 31, 2011 09:13 AM (NtXW4)

159 I think Rush just dissed ace...Tee Hee

Posted by: Barbarian at May 31, 2011 09:13 AM (EL+OC)

160 ...Mac users are - and always have been - a cult.

Posted by: Ed Schultz at May 31, 2011 02:11 PM (uLilQ)

They're pretty damn cool, you have to admit.

I've touched a Mac about once in my life, so somebody help me out.  It seems like a black box.  Can you get behind the OS?

Posted by: FUBAR at May 31, 2011 09:13 AM (1fanL)

161

Hitman: "shut up or I'll put you back in the trunk"

Posted by: Romeo13 at May 31, 2011 02:13 PM (NtXW4)

Shut that bitch up before I come over there and fuck-start her skull!

Posted by: FUBAR at May 31, 2011 09:14 AM (1fanL)

162 FUBAR@161: It seems like a black box. Can you get behind the OS? Yes, if you’re familiar with Unix/Linux, you’ve got the same access on the Mac, by going into the terminal. I find it a very powerful combination: very easy to use software when I just want to get writing done/browse for boobies; and very powerful backend when I want to do web site programming or automation.

Posted by: Stephen Price Blair at May 31, 2011 09:20 AM (QF8uk)

163 I got attacked by malware from this site this weekend.  I use Firefox 4.0 and have Windows Vista, with AVG free for an anti-virus.  Came to this site and got a message that something was trying to execute through Flash (and, apparently, it DID execute - without my OKing it).  It infected my computer with something called "Windows Vista Recovery" - a nasty little bit of malware that took over my computer and dumped most of my files into "hidden" status.

I did a system restore and removed it with a full AVG scan.  I'm still looking for all of the folders it hid - they're still invisible.

Posted by: Kelvin at May 31, 2011 09:20 AM (5hiEI)

164 Sounds similar to something I picked up last year from HotAir, its a flash-ad javascript exploit. FF w/Ad Block has kept anything from coming back though after removing the malware for me.

Posted by: Gaff at May 31, 2011 09:25 AM (uh3SH)

165 ...and with strict government monitoring and supervision,...

Eat shit, asshole.

Posted by: Blacque Jacques Shellacque at May 31, 2011 09:26 AM (1rHeD)

166 But Macs never have problems. You're a lying corporate PC shill under the corporate thumb of Microsoft and those corporate PCs and you're probably drinking corporate water also and some multinational things too!!1!11!1!!!!

Posted by: All Mac Users at May 31, 2011 09:30 AM (lH6z9)

167 I've had this try to hit my Mac several times, the latest was this morning when I went to PJM. Any experienced Mac user will not be fooled by the trick to begin with, but it is also stopped dead by Sophos's free anti-virus software. (Google it) That said, I love the stones on an ad-server company that blames Safari when the malware is served up by said ad company....

Posted by: Doug Winship at May 31, 2011 09:31 AM (gYmf+)

168 1 Norton sucks and it's a huge resource hog. Posted by: pajama momma at May 31, 2011 12:54 PM (1lqnR)>>>>>>>> Switch to AVG. My PC startup time decreased dramatically, and it catches all of the icky stuff.

Posted by: Joejm65 at May 31, 2011 09:40 AM (BDB5n)

169 Spam comments at Ace's? Unpossible.

Posted by: lace wigs and genuine kalvin clein jeans at May 31, 2011 09:52 AM (wPxqH)

170 @167: Any self aware Mac user knows better. I don't wanna go all techie on you morons, but it's worth pointing out that this MacDefender scam is, in essence, a phishing attack. There are idiots on every platform that will fall for such tricks, but for whatever reasons, maybe user culture, OS X hasn't suffered any widespread malware penetration since it's release ten years ago. If you really wanna argue about viruses, the fact remains that OS X is infinitely more secure than Windows XP ever was. There's simply no comparison or debate. Granted, Windows 7 is mostly secure by default, but XP still constitutes the clear majority of Windows installations, and large corps are still overpaying internal IT guys for glorified help desk work.

Posted by: Walter Freeman at May 31, 2011 10:03 AM (UsjBj)

171

As I said in post 98, both of my Laptops are frozen solid.  After running malwarebytes in safemode I switched back to normal to update AVG and run that, and then the entire computer froze and went blank about an hour later.  This stuff is vicious.  The other laptop is still sitting idle, and I don't even know if it's worth trying to fix it at this point.  Whatever it is, it's brutal. 

Posted by: LapTopLess at May 31, 2011 10:33 AM (+I7lm)

172 There are idiots on every platform that will fall for such tricks, but for whatever reasons, maybe user culture, OS X hasn't suffered any widespread malware penetration since it's release ten years ago.

Not enough market penetration for it to be worth the while of the average black hat, at least not until relatively recently.  I'm told that's starting to change, but that's probably because of an influx of idiots following herd mentality to OS X and bringing their old, bad habits with them.

It truly, truly is how you use it.

Posted by: AoSHQ's *second* worst commenter, DarkLord at May 31, 2011 10:38 AM (GBXon)

173 41 Damn. Ok, i shut down safari before anything downloaded (i think). There was no way to close their box so i force quit safari. This happened to me last Thurs/Fri when I visited the site on my Mac, using Safari; and I did the same thing. AoS is one of my Safari Top Sites ('cuz I love you guys); the second I clicked on the thumbnail for AoS my browser also opened the software link for the virus, and began downloading the files so it could run. I'd been warned about the virus by friends and people at work so I knew what to look for. I force quit my browser so fast that my mouse left skid marks, and was thus spared, but it scared the bejeezus out of me. The virus is connected to ads on web sites that are contaminated, and is designed to circumvent the normal failsafes in place (ie having to type in your admin password and approve the download before it runs.) http://tinyurl.com/44zybqm The IT people at my work have now made sure all the Mac users have installed ClamXav; it's an open source virus removal program and seems to work really well. It found trojans I had no idea were on my compy, not connected to this virus scare. Maybe try that if you think you might be infected? http://www.clamxav.com/ Seriously hackers, instead of creating Malware to infect us small fries, set your sites bigger. I hear certain congressmen think getting their Twitter accounts hacked into is hi-LARious! Go do that and leave me alone.

Posted by: LizLem at May 31, 2011 10:57 AM (lSuMX)

174 My iMac and I thank you, was a real pain in the ass yesterday. To all mac users the free and excellent ClamxAV catches and deletes it with no problems, make sure you have the latest update.

Posted by: Mose at May 31, 2011 10:57 AM (nmFRY)

175 i just downloaded the security update from apple; took about three seconds w/o having to re-boot. I got hit twice and immediately did a forced quit and have had not problems...

Posted by: Otter at May 31, 2011 11:05 AM (qPTz0)

176 Good minds think alike Mose

Posted by: LizLem at May 31, 2011 11:12 AM (lSuMX)

177

I think its the ads also. I've been hit by by this fake a/v crap surfing the conservative blogs and its pretty random.

Process explorer is a geeky utility that works pretty well at seeing what's running and terminating processes on a PC. If you catch it in time, you can terminate the browser before clicking on anything.

Norton innertube security 2011 catches all this junk and has a very little performance hit. I remember NIS being a pig but they fixed it. I highly recommend it.

Bing "black hole toolkit" and see the latest crimeware we're up against. This little f*cker makes it easy for script kiddies to root your 'puter and steal identity. Fake A/V is just one piece of the bad guys' arsenal.

Posted by: MacGregor at May 31, 2011 11:25 AM (aZu84)

178 Thanks for the timely post. My wife got hit with this on her laptop this morning, and as of this afternoon it was bringing up porn sites (I decided not to ask her which sites, even for "research"). It was called MacGuard on her machine, and your fix worked like a champ. Thanks

Posted by: john1v6 at May 31, 2011 11:45 AM (x9vO7)

179 I'm pretty sure it’s the ads now, too. I just got hit on my work computer, and this time I had the presence of mind to verify where I’d just been. It definitely hits from the main page, where there are (as far as I know) no comments. This means that it’s either (a) something you put up, (b) something you let someone else put up, that is, ads, or (c) someone hacked your site to put the code up. I don’t see weiners, so I’m guessing (a).

Posted by: Stephen Price Blair at May 31, 2011 12:21 PM (QF8uk)

180 No problems here. Macbook Pro running Safari. I only have one add on installed. Flashblock. It's free, all pages I visit open faster, and I've never once seen a Mac Defender type of program ask to be installed. Ads aren't the problem. Flash Player is.

Posted by: FuzzyMathBalls at May 31, 2011 12:47 PM (vvYAU)

181 FuzzyMathBalls; in this case, it’s JavaScript, not Flash. I have Flash turned off, but am still able to see it (and note: all of the Flash served on the HQ is via their ad server as far as I can tell). I’ve been able to reproduce it by killing the cookie it set the first time it happened, and then reloading every time I came back to this window. I’ve now killed the cookie again, and blocked adtechus.com using the aforementioned JavaScript Blacklist, and will see if I can get it to happen again. I’m guessing it won’t.

Posted by: Stephen Price Blair at May 31, 2011 12:54 PM (QF8uk)

182 Note: by “this window” I meant the main HQ page, not this article w/comments.

Posted by: Stephen Price Blair at May 31, 2011 12:54 PM (QF8uk)

183 I have Javascript enabled and cookies set to always. Maybe they don't like me. Do I smell bad?

Posted by: FuzzyMathBalls at May 31, 2011 01:00 PM (vvYAU)

184 It’s pretty random. If you feel like testing it, (a) look in your cookies for a cookie with the name "x"; clear it if you find it. That means it's already marked you as having seen it, and it isn't going to show it to you again. Sounds like you shouldn't have one, but look anyway. (b) go to the main page and regularly reload the main page. It took me about 30-40 reloads over 45 minutes to get it to happen again.

Posted by: Stephen Price Blair at May 31, 2011 01:08 PM (QF8uk)

185 Just "X"? If so it's not there.

Posted by: FuzzyMathBalls at May 31, 2011 01:14 PM (vvYAU)

186 Yes, just ‘x’.

Posted by: Stephen Price Blair at May 31, 2011 01:27 PM (QF8uk)

187 Went to Safari>Reset Safari>Dumped all. Started at Google as default. Shortcut to AOS. Monitored the cookies loading through 50+ page reloads. No "X', no blip, no warning. Checked the active processes just to make sure it wasn't already running. Nope.

Posted by: FuzzyMathBalls at May 31, 2011 01:54 PM (vvYAU)

188 Well, if you get chosen for download, you won’t have to check active processes or monitor cookies. It’s pretty obvious. From comments elsewhere, I’m guessing that part of its choice is randomness, and another part is the timestamp or time of day. That’s why I didn’t just hit reload 50 times but rather hit reload every time I happened to come back to this tab over a longer period.

Posted by: Stephen Price Blair at May 31, 2011 03:05 PM (7Ahkq)

189 I use Safari and seem to get the Trust/Website certificate dialog a lot lately, but this MacDefender virus isn't why, but I also have had zero problems with this site, so....I dunno what's up with my browser. *Shrug*

Posted by: GSain at June 01, 2011 03:50 AM (jJB0z)

190 Welcome to our Coach Bags outlet to enjoy the cheap Coach handbags and 100% service. All kinds of Coach Handbags On Sale in our Discount Coach Handbags store which price are much low then the same competitors. You may ask these handbags are so cheap that the quality must be very poor. You do not have to worry about the quality of these handbags, because these handbags all made of classy material. So you can rest assured when you Buy Coach Handbags. At the same time, our online shop also supply the Coach Wallets and Coach Sunglasses. They are all the most recognized and popular brands in the world. If you want to buy durable and low price products, then come to our Coach website will not let you regret.

gucci watches CHEN

Posted by: skyxxxxx at June 08, 2011 05:24 PM (+cyRZ)

191 ghd hair and CHI flat irons are sold online at good prices and beautiful quality. cheap ghd Mini Styler, Purple Cheap GHD Hair Straighteners

Posted by: haomai at June 21, 2011 12:35 AM (fOq3O)

Hide Comments | Add Comment

Comments are disabled. Post is locked.
161kb generated in CPU 0.37, elapsed 1.8534 seconds.
62 queries taking 1.6467 seconds, 427 records returned.
Powered by Minx 1.1.6c-pink.