Bitcoin Forum
October 17, 2017, 04:25:23 AM *
News: Latest stable version of Bitcoin Core: 0.15.0.1  [Torrent]. (New!)
 
   Home   Help Search Donate Login Register  
Pages: « 1 [2] 3 »  All
  Print  
Author Topic: coinurl.com considered malware, sites using it are being blocked by chrome.  (Read 4505 times)
mc_lovin
Legendary
*
Offline Offline

Activity: 1162


www.bitcointrading.com


View Profile WWW
July 25, 2013, 07:06:41 PM
 #21


Weird, I just went through firefox and I didn't get a warning?

Looks like you ignored it once, I am getting warning page.

I just tried from 4 different systems, including one that was a fresh install that had never had firefox opened before and it loaded the page without warning!
Looks like it's just chrome now. Mozilla has cleared things up, yet chrome is still spewing out malware warnings all over my Litecoin block explorer because of my coinurl ad http://explorer.litecoin.net

Will be solved soon!

I think we will move all intersitital ads to the cur.lv domain so if this were to happen, it only affects the intersitials and not the banners at all!  That seems like one solid step we can take. 

1508214323
Hero Member
*
Offline Offline

Posts: 1508214323

View Profile Personal Message (Offline)

Ignore
1508214323
Reply with quote  #2

1508214323
Report to moderator
1508214323
Hero Member
*
Offline Offline

Posts: 1508214323

View Profile Personal Message (Offline)

Ignore
1508214323
Reply with quote  #2

1508214323
Report to moderator
1508214323
Hero Member
*
Offline Offline

Posts: 1508214323

View Profile Personal Message (Offline)

Ignore
1508214323
Reply with quote  #2

1508214323
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1508214323
Hero Member
*
Offline Offline

Posts: 1508214323

View Profile Personal Message (Offline)

Ignore
1508214323
Reply with quote  #2

1508214323
Report to moderator
someguy123
Sr. Member
****
Offline Offline

Activity: 335


PHP Coder, Bitcoin enthusiast, Litecointalk admin


View Profile WWW
July 25, 2013, 07:10:27 PM
 #22

Will be solved soon!

I think we will move all intersitital ads to the cur.lv domain so if this were to happen, it only affects the intersitials and not the banners at all!  That seems like one solid step we can take. 

That would be a much better way. If this isn't solved soon, I'm going to have to take down the ad from my block explorer as it's probably scaring away many new litecoin users.

1SoMGuYknDgyYypJPVVKE2teHBN4HDAh3
Administrator/owner of LTC Forum | LTC Block Explorer | Someguy123 Web Development
escrow.ms
Legendary
*
Offline Offline

Activity: 1078

GPG Key-ID: B82BA7E1 | I don't use skype.


View Profile
July 25, 2013, 07:10:38 PM
 #23


Looks like it's just chrome now. Mozilla has cleared things up, yet chrome is still spewing out malware warnings all over my Litecoin block explorer because of my coinurl ad http://explorer.litecoin.net

I am using firefox still getting warning.

Please click here to know why I have negative feedback. https://21.co/escrow/
Tip address: 1nPfxnncZqWvVP4UHT6XLfNzfaik7akQS
someguy123
Sr. Member
****
Offline Offline

Activity: 335


PHP Coder, Bitcoin enthusiast, Litecointalk admin


View Profile WWW
July 25, 2013, 07:22:34 PM
 #24


Looks like it's just chrome now. Mozilla has cleared things up, yet chrome is still spewing out malware warnings all over my Litecoin block explorer because of my coinurl ad http://explorer.litecoin.net

I am using firefox still getting warning.
That's strange. I visited CoinURL just a minute ago on Firefox and it was fine. Now all of a sudden it's telling me it's a reported attack page as soon as I tried to log in.

1SoMGuYknDgyYypJPVVKE2teHBN4HDAh3
Administrator/owner of LTC Forum | LTC Block Explorer | Someguy123 Web Development
mc_lovin
Legendary
*
Offline Offline

Activity: 1162


www.bitcointrading.com


View Profile WWW
July 25, 2013, 07:25:43 PM
 #25


Looks like it's just chrome now. Mozilla has cleared things up, yet chrome is still spewing out malware warnings all over my Litecoin block explorer because of my coinurl ad http://explorer.litecoin.net

I am using firefox still getting warning.
That's strange. I visited CoinURL just a minute ago on Firefox and it was fine. Now all of a sudden it's telling me it's a reported attack page as soon as I tried to log in.

Okay I got it now.  When that Firefox notification pops up, it's a "Google Advisory notice"

So when google reviews us, it will go away. 

rrrrrghhhh!!!!

freedomno1
Legendary
*
Offline Offline

Activity: 1344


Activity: 9001 == OP


View Profile WWW
July 25, 2013, 09:17:14 PM
 #26


Looks like it's just chrome now. Mozilla has cleared things up, yet chrome is still spewing out malware warnings all over my Litecoin block explorer because of my coinurl ad http://explorer.litecoin.net

I am using firefox still getting warning.
That's strange. I visited CoinURL just a minute ago on Firefox and it was fine. Now all of a sudden it's telling me it's a reported attack page as soon as I tried to log in.

Okay I got it now.  When that Firefox notification pops up, it's a "Google Advisory notice"

So when google reviews us, it will go away.  

rrrrrghhhh!!!!

Don't blame your rage army of bitcoiners with pitchforks get google XD

fraenk
Full Member
***
Offline Offline

Activity: 181


living in forward thinking


View Profile WWW
July 25, 2013, 10:07:11 PM
 #27

http://safebrowsing.clients.google.com/safebrowsing/diagnostic?site=coinurl.com/&client=googlechrome&hl=en-US

What happened when Google visited this site?
Of the 43 pages we tested on the site over the past 90 days, 14 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2013-07-25, and the last time suspicious content was found on this site was on 2013-07-25.

not looking good there

LIFT loves you!
fraenk
Full Member
***
Offline Offline

Activity: 181


living in forward thinking


View Profile WWW
July 25, 2013, 10:09:29 PM
 #28

http://safebrowsing.clients.google.com/safebrowsing/diagnostic?site=coinurl.com/&client=googlechrome&hl=en-US

What happened when Google visited this site?
Of the 43 pages we tested on the site over the past 90 days, 14 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2013-07-25, and the last time suspicious content was found on this site was on 2013-07-25.

not looking good there

then again:

Has this site hosted malware?
No, this site has not hosted malicious software over the past 90 days.

How did this happen?
In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.

LIFT loves you!
MPOE-PR
Hero Member
*****
Offline Offline

Activity: 756



View Profile
July 25, 2013, 10:43:37 PM
 #29

Got this from an user: Confirmed by multiple users:

Such a fucking surprise, really nao.

My Credentials  | THE BTC Stock Exchange | I have my very own anthology! | Use bitcointa.lk, it's like this one but better.
coinguycanada
Member
**
Offline Offline

Activity: 76


Loving them Bitcoins above the 49th


View Profile
July 25, 2013, 11:17:09 PM
 #30

I've disabled coinurl for now on my site. Every user I had was getting a warning and it was killing the traffic, not to mention my inbox with queries. I hope it is resolved, but i guess better attention needs to paid to the ads that are approved ---something had to slip through.
someguy123
Sr. Member
****
Offline Offline

Activity: 335


PHP Coder, Bitcoin enthusiast, Litecointalk admin


View Profile WWW
July 25, 2013, 11:38:04 PM
 #31


Looks like it's just chrome now. Mozilla has cleared things up, yet chrome is still spewing out malware warnings all over my Litecoin block explorer because of my coinurl ad http://explorer.litecoin.net

I am using firefox still getting warning.
That's strange. I visited CoinURL just a minute ago on Firefox and it was fine. Now all of a sudden it's telling me it's a reported attack page as soon as I tried to log in.

Okay I got it now.  When that Firefox notification pops up, it's a "Google Advisory notice"

So when google reviews us, it will go away. 

rrrrrghhhh!!!!
Nope. Updated 3 hours ago according to diagnostics, this means they've just checked it out, and it's still marked as dangerous. Congrats you failed their test, somehow.

1SoMGuYknDgyYypJPVVKE2teHBN4HDAh3
Administrator/owner of LTC Forum | LTC Block Explorer | Someguy123 Web Development
BitCoiner2012
Sr. Member
****
Offline Offline

Activity: 364



View Profile
July 25, 2013, 11:51:02 PM
 #32

Getting this on Vircurex... hmm..

BTC Long.
glitch003
Full Member
***
Offline Offline

Activity: 216


View Profile
July 25, 2013, 11:56:38 PM
 #33

I can confirm this as well.  I had to remove the coinurl.com ads from my site Sad
coinminers
Full Member
***
Offline Offline

Activity: 147



View Profile WWW
July 26, 2013, 01:03:47 AM
 #34

It has been removed, the domain is under review again by Google, this will be sorted out by the end of the day.
You should also contact Mozilla.

Usually all browsers look to google safe browsing for security. I have also had pretty frustrating experiences with getting whitelisted with them as well, no one to talk to, etc.

http://bit.co.in - Shorten your address and make/receive payments on the go! Decentralized!!

http://www.coinjabber.com - Submit, review, discuss, and promote Bitcoin & virtual currency websites!
freedomno1
Legendary
*
Offline Offline

Activity: 1344


Activity: 9001 == OP


View Profile WWW
July 26, 2013, 01:18:44 AM
 #35

It has been removed, the domain is under review again by Google, this will be sorted out by the end of the day.
You should also contact Mozilla.

Usually all browsers look to google safe browsing for security. I have also had pretty frustrating experiences with getting whitelisted with them as well, no one to talk to, etc.

I've seen them put alarms on sites that were clean for a while but they don't hold a candle to how bad Siteadvisor is
Been using a red site that was labeled green for years before that and for the last 3 weeks its still not fixed back to green lol.
Web of Trust all the way

TheFootMan
Hero Member
*****
Offline Offline

Activity: 490


View Profile
July 26, 2013, 01:59:26 AM
 #36

I just went to a random bitcoin site a little bit ago, from a mac, and I got the scary message:

If you proceed, this site may harm your mac. And it was a page unrelated to coinurl, but probably some coinurl add embedded in the site, and thus the warning ? I remember coinurl was mentioned in the warning.

Why can't all the embedded adds be only simple adds that can not contain malware. Just to be on the safe side, I chose not to visit that particular site, as I don't have much experience with Mac, and I don't want to have an infection on a machine that's not even mine, but belong to someone else in the household.

Seems like quite a devastating experience for a high number of users and also for the admin of coinurl, and also for all sites carrying their adds that have their users experience this pop up screen as well..
mc_lovin
Legendary
*
Offline Offline

Activity: 1162


www.bitcointrading.com


View Profile WWW
July 26, 2013, 05:27:24 AM
 #37

I just went to a random bitcoin site a little bit ago, from a mac, and I got the scary message:

If you proceed, this site may harm your mac. And it was a page unrelated to coinurl, but probably some coinurl add embedded in the site, and thus the warning ? I remember coinurl was mentioned in the warning.

Why can't all the embedded adds be only simple adds that can not contain malware. Just to be on the safe side, I chose not to visit that particular site, as I don't have much experience with Mac, and I don't want to have an infection on a machine that's not even mine, but belong to someone else in the household.

Seems like quite a devastating experience for a high number of users and also for the admin of coinurl, and also for all sites carrying their adds that have their users experience this pop up screen as well..

The banner ads themselves will not contain the malware.  There was an unrelated link that was shared on the interstitial ads that pointed at a page that Google claims to be malware.  They flag the whole domain.  We can't even replace the content of our ads when it's like this to help the situation, just have to wait a few hours..  Argh.  I expect this to be solved in 1 more hour!

favdesu
Legendary
*
Offline Offline

Activity: 1204



View Profile WWW
July 26, 2013, 07:12:52 AM
 #38

so, is it solved by now?

► How to sneak in ICO, even if you're not allowed to Read More
twobits
Sr. Member
****
Offline Offline

Activity: 392



View Profile
July 26, 2013, 12:24:52 PM
 #39

Hm... does coinurl actually contain malware, or is this an unethical business practice by google ? The ads sported by coinurl looks much like google adsense ads, but if Google is using their power to give warnings to all users on any site incorporating coinurl, that's really really bad, and evil.

I would think that could even be grounds for a lawsuit, if it's not really malware, but malicious blocking.

The site is now also blocked in firefox, with some more info here:
http://safebrowsing.clients.google.com/safebrowsing/diagnostic?hl=en-US&site=http://coinurl.com/

So, legit malware ?

I don't know about this particular case, but I had a site that was listed like this wrongly about three years ago.  I got google to lift the warning after some time, however even today,  some of the major links to the site that gave it most of the traffic and value, never returned. 

It is unfortunately not all that uncommon to use ad networks to try and insert malware though.

I really think google is getting way too much in the loop of things these days.  I wish btc sites would stop putting them in for analytics and such all the time at least.   For that matter I am tired of cloudflare backed sites.

TheFootMan
Hero Member
*****
Offline Offline

Activity: 490


View Profile
July 26, 2013, 01:02:02 PM
 #40

So, let me get this straight.

An independent ad-network (coinurl) has say 1000 advertiseres. They have ads that are rotated on willing client sites (let's say 10000 blogs/websites/journals).

Then 1 advertiser decides to go rogue. He puts some malware on his site in the hope of infecting some visitors to client sites.

This is somehow detected by google or whomever, but eventually it's reported to those governing the black lists at Chrome and Firefox. I'm sure the intention is 'good', but the results.. ?

Of those 10000 sites showing those ads, all visitors will get a warning page, because the serving site had a coinurl affiliation, and because 1 - one - advertiser is rogue ?

If those 10000 sites have 100 visitors each, that means 1 million visitors get the warning screen, of which maybe a large part will lose trust in the site they visit, or not continue with their current business at that site.

How on earth is this acceptable? I've seen fraudulent ads on Google Adsense, but never have I seen all sites running Google Adsense ads give a browser warning for this reason. This would of course affect Google's bottom line if it were to happen. so it never happens. But the small ad-networks, well it's not such a big deal with them for Google.. Google is google after all, so they don't give a rats ass about the revenue and reputation of Coinurl. Since some sites experience problems with Coinurl ads (having their site giving a browser warning), I would not be surprised if some site owners would give up Coinurl altogether, because when this happens once, it could happen again.

What technical limitations are there to only give a warning on site that hosts the add to the malware in question? For example, chrome could easily have been programmed in such a way that every site hosting an add known to link to a malware site, just got disabled with a warning note in the browser, no need to close down a whole business and affected a plentiful amount of users.

Or is everything automated, and this is the standard way to do it? Either way, I'd find this highly unacceptable if I were running a small ad-network. What if a competitor or a rogue individual just signs up frequently and puts malware on a site, and uses coinurl for advertising, wouldn't that basically be some sort of ddos attack?

Perhaps coinurl is not that big, but some sites actually have significant revenue, and only a few hours of downtime could lead to significant monetary losses.

With the revelation that Google let NSA spy directly on customers, and openly share data, perhaps we should just move away from google services altogheter ? It seems like they're digging their own grave.
Pages: « 1 [2] 3 »  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!