When I tried to log in to BLF today with Google Chrome on windows, I got affronted with a Malware warning. When I clicked "proceed anyways", it told me that your /tiny_mce/plugins/emotions/img/smiley-cool.gif and tiny_mce/plugins/emotions/img/smiley-smile.gif are infected.
This didn't happen yesterday, with the same browser on the same machine. I hope it's false, but should be double-checked to be sure. I'll put the full text below:
Warning: Something's Not Right Here!
The website at budgetlightforum.com contains elements from sites which appear to host malware – software that can hurt your computer or otherwise operate without your consent. Just visiting a site that contains malware can infect your computer.
Below is a list of all the unsafe elements for the page. Click on the Diagnostic link for more information on the thread for a specific element.
Malware http://budgetlightforum.com/sites/all/libraries/tinymce/jscripts/tiny_mce/plugins/emotions/img/smiley-smile.gif Safe Browsing diagnostic page
Malware http://budgetlightforum.com/sites/all/libraries/tinymce/jscripts/tiny_mce/plugins/emotions/img/smiley-cool.gif Safe Browsing diagnostic page
Learn more about how to protect yourself from harmful software online.
I understand that visiting this site may harm my computer.
I don't know about the smileys (I downloaded the first one, and sure enough, it's a perfectly valid gif image), but the second part looks like google thinks cz.cc is an individual site, not a domain place. It could be it's thinking any and all links to *.cz.cc domains are bad, without checking the content on individual ones.
And I sort-of assumed that was the case, however, it the domain host gets infected, it can spread malware to hosted sites. Also, it's possible to poison a .gif and still be able to view it as normal. Better to err on the side of caution, right? I fired up my linux VM to spelunk the forum today.
I noticed the same thing (hello 1st post, btw) and just changed my bookmark to ".com" and have no problems. So I think it's the cz.cc domain issue, too.
Hi there tpilk, welcome to BLF! Thanks for joining.
Hmm, about this .cz.cc malware issue, we do have a bit of a problem. As somebody already mentioned, all of these content filters and malware checkers only look at the primary domain (.cz.cc). If any of the subdomains (nastysite.cz.cc) hosts malware, than any other subdomains like budgetlightforum.cz.cc will also be flagged. I currently have a redirect set up between *budgetlightforum.cz.cc/* to budgetlightforum.com. I wonder if I should remove that redirect to entirely avoid being associated with .cz.cc. The disadvantage is that any old links on search engines and other websites will be broken, unless the user knows to manually change the .cz.cc to .com. What do you guys think?
Thanks a lot for reporting this issue, I appreciate your help!
Hi there tpilk, welcome to BLF! Thanks for joining.
Hmm, about this .cz.cc malware issue, we do have a bit of a problem. As somebody already mentioned, all of these content filters and malware checkers only look at the primary domain (.cz.cc). If any of the subdomains (nastysite.cz.cc) hosts malware, than any other subdomains like budgetlightforum.cz.cc will also be flagged. I currently have a redirect set up between *budgetlightforum.cz.cc/* to budgetlightforum.com. I wonder if I should remove that redirect to entirely avoid being associated with .cz.cc. The disadvantage is that any old links on search engines and other websites will be broken, unless the user knows to manually change the .cz.cc to .com. What do you guys think?
Thanks a lot for reporting this issue, I appreciate your help!