Saintsweb adding malware to my PC.

[Draino76]

Each thread I look at takes about 30 seconds to load, as opposed to other websites that load instantly as I have about a 15 meg broadband connection.

 

I keep seeing notifications like 'transferring data from adclick.com or heavy hearted.com', which I assume is not good.

 

WTF is that all about?

[Bearsy]

pay ur £5 draino + all these inconveniences disappear. I'm serious, ur getting lagged by slow loading ad servers. Some of the milfs on heavy hearted are still prob worth checking out tho.

[simo]

Am I the only person who's plagued by pop ups every time I on come on here lately (on my android phone)?

[Block 18]

No Mate my Mac is going mad with them on many sites despite having all the block pop up settings set

[benjii]

No, I think there's something up with this place at the moment. I get redirected to Google Play Store and get a few other pop ups on my HTC.

[barney]

I get redirected to the app store every time i come on here.

[NI Saint]

I was having this problem on my android tablet so installed Ad Blocker Plus and that seems to have done the trick for now. BTW you can't get it through Google Play so have to change your security settings to download it directly from the Ad Blocker Plus website. Hopefully it keeps working as I was getting fed up with the redirects and being told I had won an iPad Air.

[saint simes]

I keep getting "your android device has a virus, click to remove it" or similar, only happens on this site.....

[Grey Crab]

Yes, I also get an erection whenever I visit this site.

[St Chalet]

One of the advantages of being a Full Member is that you don't get this.

[saint simes]

So is this new then as it hasn't happened before?

[Goatboy]

If non 'full' members are being bombarded by ads: this is wrong eh? That's no way to encourage people to join the forum??? Sort that right out.

[St Chalet]

I suspect it is more likely a google ads issue than specific to Saintsweb. I am sure Steve will have a much better understanding of this.

[benjii]

In the meantime, let's bury the thread in one of the pointless sub- forums.

[Draino76]

In the meantime, let's bury the thread in one of the pointless sub- forums.

 

As opposed to the to the super turbo charged main bored? You found the ****ing thread. I'm surprised the usual mongs haven't found it yet.

[stevegrant]

Looking into it...

[farawaysaint]

Looking into it...

 

Appreciated, because I am now getting three or four pop-ups on the site with my pc.

[stevegrant]

Appreciated, because I am now getting three or four pop-ups on the site with my pc.

What browser/OS are you using? Any chance of a screen shot showing them?

[farawaysaint]

Firefox but the problem is also apparent in chrome

 

Link to the screenshot as I'm not sure how to attach files from my pc only how to attach from url.

 

http://postimg.org/image/ofexnlp1p/

 

Bah... scratch it, it appears I may have picked up ad-ware from somewhere, god knows how considering I'm not exactly the most adventurous browser

Edited 25 March, 2014 by farawaysaint

[Minsk]

I am also getting pop-ups on my notebook. I use chrome. Pop-ups only when I am using saintsweb. Maybe I got adware from elsewhere, but strange it has occurred now - same time as others. (No idea how to put up screenshots).

[pap]

One of the advantages of being a Full Member is that you don't get this.

 

Selling the benefits of membership the Sicilian way.

[Saint in Paradise]

I use "Ghostery" and "ad-block" with FF and never have a problem on any websites.

[Saint_clark]

I was having the same problem I think but it seems to have stopped now.

I was getting it on another Vbulletin forum as well though.

[farawaysaint]

...

Edited 26 March, 2014 by farawaysaint

[simo]

Seems fixed now?

[cryoman1965]

Seems fixed now?

 

Still getting them every couple of mins and only on this site. PITA.

Did you use adblocker?

On a samsung tab BTW.

Cheers

[stevegrant]

Still getting them every couple of mins and only on this site. PITA.

Did you use adblocker?

On a samsung tab BTW.

Cheers

Can you take a screenshot of a page with a popup showing?

 

Our ads are set up to only display "inline" ads, i.e. no popups or overlays. However, it's possible that a stray one could slip through the system if the agency that created the advert set it up incorrectly (i.e. said it was an inline ad when it was an overlay, etc). If we can get the URL of the advert then we should be able to shut it off at source.

[John D]

I have started getting them on my nexus. Did a full factory reset and since then only been on here and BBC website but still getting them when I come on here.

[simo]

They are back again , the redirecting to other pages ****es me off in the end I have to close the page and re open another and start again !

[Whitey Grandad]

I have started getting them on my nexus. Did a full factory reset and since then only been on here and BBC website but still getting them when I come on here.

 

I use Tapatalk on my ipad and I don't have these problems.

[Colinjb]

This redirection to the apps store has begun happening on my work phone (iPhone 5.) Only when using Saintsweb, it takes me to the store to download a game or similar. Quite annoying.

[stevegrant]

I re-emphasise... there is very little I can do unless you can provide me with either a screenshot of the offending advert or the HTML output of the page ("View Source" on most browsers), along with the specifics regarding your setup, i.e. browser and operating system. The advertising displayed comes from a variety of sources, and the only way we can determine whether it is something our advertisers are doing is with that information.

[Colinjb]

It's happened again, a screenshot was taken of the app store item I was diverted to, will try to upload later.

 

For immediate reference though the item I was advertised was 'Wartune: Hall of Heroes' by a publisher called Kabam.

[Baj]

ok, thanks for letting me know, Colin.

I'll ask for it to be looked into. Can you let me know what device you are on?

[Bearsy]

hi baj, i have reviewed colins posts and he is using an iPhones 5. He mentions this fact in post #31. It also does it on my iphones, you get binned off to app store and it tries to make you buy a game, usually one about RPG with dwarves etc. It's not just saintsweb tho this happens on a few sites i use such as pornhub + milfweb

[Baj]

arf. ok mate, I'll get our ad ops team to look into it.

[ericofarabia]

arf. ok mate, I'll get our ad ops team to look into it.

 

Caan't you utilise your time trying to solve the problem instead of looking into

pornhub + milfweb ??

[simo]

Got an email address to send these screen shots to Baj?

[Saint_Ash]

Really struggling with the site, over the last couple of days every time I click on a thread I get redirected here -

 

http://gslbeacon.lijit.com/beacon?viewId=fa5c3ba54a434418ac323f85c43a6ac393d476ec&rand=84943&uri=http://www.lijit.com/users/SwitchConcepts&informer=10424111&type=fpads&loc=http%3A%2F%2Fdelivery.heavyhearted.com%2Fadserver%2Fhat.php%3Finstances%5B0%5D%5Binstance_id%5D%3D1%26instances%5B0%5D%5Bzone_id%5D%3D72%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B0%5D%5Bid%5D%3D4304%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B0%5D%5Bprice%5D%3D0.3500%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B0%5D%5Btype%5D%3Dstd%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B0%5D%5Bdelivered%5D%3D1%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B1%5D%5Bid%5D%3D4307%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B1%5D%5Bprice%5D%3D0.3400%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B1%5D%5Btype%5D%3Dstd%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B1%5D%5Bdelivered%5D%3D1%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B2%5D%5Bid%5D%3D4309%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B2%5D%5Bprice%5D%3D0.3200%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B2%5D%5Btype%5D%3Dstd%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B2%5D%5Bdelivered%5D%3D0%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B3%5D%5Bid%5D%3D167%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B3%5D%5Bprice%5D%3D0%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B3%5D%5Btype%5D%3Drmn%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B3%5D%5Bdelivered%5D%3D0%26%26instances%5B0%5D%5Bpassback%5D%5Bdelivered_banners_ids%5D%5B0%5D%3D4303%26instances%5B0%5D%5Bpassback%5D%5Bdelivered_banners_ids%5D%5B1%5D%3D4304%26instances%5B0%5D%5Bpassback%5D%5Bdelivered_banners_ids%5D%5B2%5D%3D4307%26%26instances%5B0%5D%5Bpassback%5D%5Bstart%5D%3D1398690465%26l%3D5C503AA932%26bw%3D1676%26bh%3D822%26loc%3Dh&v=1.0&rr=http%3A%2F%2Fdelivery.heavyhearted.com%2Fadserver%2Fhat.php%3Finstances%5B0%5D%5Binstance_id%5D%3D1%26instances%5B0%5D%5Bzone_id%5D%3D72%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B0%5D%5Bid%5D%3D4304%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B0%5D%5Bprice%5D%3D0.3500%26instances%5B0%5D%5Bpassback%5D%5Blist%5D%5B0%5D%5Bt

 

God knows what it is but it's annoying and I'm sure it shouldn't happen. I have to back up and stop the page fully loading to read anything.

 

Cheers

[Micky]

Having problems here as well, both on home machine and work machine:

 

Have Norton 360 on home machine and it is reporting as follows:

 

Alert Summary: High

Web Attack: Fake Flash Update Download

Intrusion attempt by: update.newsflashplaer.us was blocked

Attacking PC: 173.230.147.191,80

Source Address: 73.230.147.191

 

Have had this a couple of time - but only when on Saints Web - and as a result Norton closes the site on my PC.

 

I have also had the same on my work PC which is protected by AVG Professional. I don't have the full details, but it was the same 'Flash update download' type message - again I was booted from the site.

 

This has only started happening to me over the last 10 days - and as I said above, it doesn't happen on any other site other than Saints Web.

[martyg1950]

I'm on Ubuntu and using Firefox 29. Today out of the blue while doing a page change mid thread the site served up a blank page with a box in the middle saying my flash needed an update - click here to update.

 

Page source shared in my dropbox - ive run it and it looks the same as I saw. It's a scabby scam page

 

https://www.dropbox.com/s/uxgwmwm2p1fy0y3/flash%20exploit%20seen%20on%20Saints%20web.html

[Baj]

Marty,

Looks like this was delivered separate from SaintsWeb? The source code you've provided looks like it was a separate page and not one on saintsweb? What was the url that it was loading from? None of our ad tags are pre-load so it's impossible for an ad to trigger like that. Are you sure you're not infected with something else?

Regardless, I'm going to have it looked into, but it seems highly unlikely that it came through our ad tags.

[Baj]

Hmm, both related to links being rewritten perhaps?

Im going to have one of the advertising sources (the one in saints_ash post) blocked and see if that solves things.

[martyg1950]

Baj, sorry distracted for a couple of days, it happened using FF29 on Ubuntu 14.04LTS 64bit and I was simply moving from page 1 to page 2 of some thread using the site links at the time. Instead of serving up page 2 it served that.

 

Beyond that it's all lost in the mists of time I'm afraid. Oh and it's not happened since. Good hunting

[Baj]

Were you logged in at the time?

[Saint_Ash]

Whatever you have done Baj, seems to have done the trick, I'm no longer being redirected.

 

Thanks

[Baj]

Cool, good to hear