Forum adverts like this one are shown to any user who is not logged in. Join us by filling out a tiny 3 field form and you will get your own, free, dakka user account which gives a good range of benefits to you: No adverts like this in the forums anymore. Times and dates in your local timezone. Full tracking of what you have read so you can skip to your first unread post, easily see what has changed since you last logged in, and easily see what is new at a glance. Email notifications for threads you want to watch closely. Being a part of the oldest wargaming community on the net. If you are already a member then feel free to login now.

Sorry to bring this up again, but the last thread was closed as BOLS was declared "safe". My virus checker has fished out two different things in the last few minutes as I was browsing it, so I think this needs to be brought to attention.

What AV program are you using and what exactly is it flagging?

"safe" is a relative term.

Their ad service has been 'sketchy' of late

Something on there managed to shut down Windows Firewall earlier today, and it keeps trying to download phantom pdfs

It's possible that they've been compromised, it's happened to my site before - I even had to go through the google procedure to have it removed from the listings.

http://safebrowsing.clients.google.com/safebrowsing/diagnostic?client=Firefox&hl=en-GB&site=http://www.heresy-online.net/forums/gallery/index.php

I know they use Burst Media to serve adverts to their readers so it's possible Burst have let dodgy sites into their program. They might install tracking cookies on your machine to enable them to serve relevant adverts too. It's spyware.

oni wrote:What AV program are you using and what exactly is it flagging?

Sorry, I've been away from work for a few days. At my workplace we use something called Sophos Anti-Virus, and I've just looked around BoLS this morning and had this pop up.

"Virus/spyware Mal/ObfJS-CM has been detected in "htt0://gjbeeklgpnf.com/nte/AVORP1TREST10.php"

When I visit Bell of Lost souls, my virus protection software blocks a bloodhound pdf 18 Heuristic Virus, what ever that is

Has anyone thought to contact BoLS about this?

They might want to remedy the situation =)

Scary in that I've gone there quiet a bit using Firefox and I've never had a problem or seen a warning...

Ouch!

Alph, i generally dont worry about it lol, im on a works comp, so if i do get a problem at some point, ill let people know.

Howard A Treesong wrote:

oni wrote:What AV program are you using and what exactly is it flagging?

Sorry, I've been away from work for a few days. At my workplace we use something called Sophos Anti-Virus, and I've just looked around BoLS this morning and had this pop up.

"Virus/spyware Mal/ObfJS-CM has been detected in "htt0://gjbeeklgpnf.com/nte/AVORP1TREST10.php"

Sophos makes a good AV, especially for business applications. That message doesn't tell me much other than it flagged something for "malicious behavior". The term "malicious behavior" can mean many different things and is the easiest to be what's called a "false positive". Basically means the AV is being over zealous. It's not always the case though. This seems to be PHP code related which if not kept in constant check can leave a website vulnerable to hackers and malicious code. I can only assume that BoLS may have been victim due to their recent additions of social networking widgets... which all use PHP code to my knowledge.

Bottom line is... BoLS needs to stop with all the advertising and social networking integration bull gak.