Gorgle

[twawki]

Gorgle - ooops I mean Google has ensured that if you are skeptical about global warming alarmism then you DONT have a vote. On the tails of being accused of censoring online searches through restricting autosuggest on Climategate Google’s new actions now show that they are really only interested in one side of the debate – and its not your side!

www.twawki.com

[dagrump]

Admins! The trojan horse problem is still with us. Here is what just popped up on this page:

File Name: statsadd.com/documents/?s=577
Malware name: JS:Downloader-FT [Trj]
Malware type: Trojan Horse
VPS version: 091204-0, 12/04/2009

The "advertisement" showing at the time at the top of the page was "Perfectmatch.com"

It appears these are coming from the adverts at the top of the page. My antivirus/trojan software is Avast, (latest version and latest updates), system is Windows 7.

Y'all be careful out there now!

[dagrump]

More info for Admins:

The other day my browser was hijacked away from here to a "your computer is infected" type site and a scan of my system was begon. I wrote down the pop up warning from Avast at the time:

advtunix.com/s/in.cgi?20&ab_iframe=1&ab_badtraffic=1&antibot_hash=2148410770&ur=1&HTTP_REFERER=http://d1.openx.org/afr.php?zoneid=61059&cb=9595959
HTML:RedirME-inf [Trj]
Trojan Horse

Hope that helps.

[trbixler]

I always keep a process explorer window open so that I can stab them and their associates immediately.

[twawki]

So are you saying that for anyone who links onto the google vote site will have their computers infected ?

[alayna]

This is very worrisome to me. What is their agenda?

[hairball]

I *think* it's an advert on this site they're on about. I have a firefox ad-on that blocks ads because it is possible for flash ads to contain malicious code. I installed it because I suffered a similar hijacking on facebook a few months ago.

I could be totally wrong!

[walterdnes]

I think the problem is a "chain of trust" that is being exploited.

• Google accepts ads from a server run by a guy who claims to be Mr. Wiley E. Coyote, an ad purchaser for "Acme Widgets".
  
• Websites (like this one) accept the ad that has been passed on to them from Google
  
• Web browsers "render the content".
  

When I say "Google accepts ads", I don't mean that Mr. Coyote emails the ad to Google, who puts it on their server. Rather, Mr. Coyote sends a link to Google, who forwards it on to this site. Using geo-blocking technology, Mr. Coyote's webserver can send different links to different IP addresses. So someone from within Google's assigned IP address range will see an innocent ad for "Acme Widgets". People on other addresses will see "the real payload".

The only real defense is at your web-browser. I run Firefox on linux with Noscript restricting what Javascript can/cannot do.