Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

TO Archive down?

45 views
Skip to first unread message

Thrinaxodon

unread,
May 16, 2013, 4:42:17 PM5/16/13
to
When, I go to the TO Archive, it says, "404 error". Elsberry, at AtBC,
stated, that it was hacked by a hacker from India. The cracker had
access, to the FTP. He uploaded all the files, and "installed" malware
into it. Anyone fix it?

--
Thrinaxodon
A cynodont in a kitchen.

Friar Broccoli

unread,
May 16, 2013, 5:18:12 PM5/16/13
to
On Thu, 16 May 2013 13:42:17 -0700 (PDT), Thrinaxodon
<biol...@gmail.com> wrote:

>When, I go to the TO Archive, it says, "404 error". Elsberry, at AtBC,
>stated, that it was hacked by a hacker from India. The cracker had
>access, to the FTP. He uploaded all the files, and "installed" malware
>into it. Anyone fix it?

_____________________

I got a more detailed error message as follows:

Safe Browsing
Diagnostic page for www.talkorigins.org/origins

What is the current listing status for www.talkorigins.org/origins?

Site is listed as suspicious - visiting this web site may harm your computer.

Part of this site was listed for suspicious activity 3 time(s) over the past 90 days.

What happened when Google visited this site?

Of the 117 pages we tested on the site over the past 90 days, 35 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2013-05-15, and the last time suspicious content was found on this site was on 2013-05-13.

Malicious software is hosted on 1 domain(s), including schulz-freiburg.de/.

This site was hosted on 1 network(s) including AS15244 (ADDD2NET).

Has this site acted as an intermediary resulting in further distribution
of malware?

Over the past 90 days, www.talkorigins.org/origins appeared to function as an intermediary for the infection of 3 site(s) including itags.org/, bestpricefan.com/, healthknowledge.org/.

Has this site hosted malware?

No, this site has not hosted malicious software over the past 90 days.

How did this happen?

In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.

Next steps:

Return to the previous page.
If you are the owner of this web site, you can request a review of your site using Google Webmaster Tools. More information about the review process is available in Google's Webmaster Help Center.

--
Friar Broccoli (Robert Keith Elias), Quebec Canada
I consider ALL arguments in support of my views

Friar Broccoli

unread,
May 16, 2013, 6:14:06 PM5/16/13
to
On Thu, 16 May 2013 13:42:17 -0700 (PDT), Thrinaxodon
<biol...@gmail.com> wrote:

>When, I go to the TO Archive, it says, "404 error". Elsberry, at AtBC,
>stated, that it was hacked by a hacker from India. The cracker had
>access, to the FTP. He uploaded all the files, and "installed" malware
>into it. Anyone fix it?

I have been informed by people who know that the site was hacked. The
problem is being taken care of.

*Hemidactylus*

unread,
May 16, 2013, 7:13:47 PM5/16/13
to
That's not good.

I often use online threat scanners to help evaluate a site, especially
unfamiliar sites I haven't landed on before. Probably wouldn't help in
the case of visiting a trusted site where one doesn't feel a need to
pre-check.

These are the four I typically use (and a fifth is something I just
started using):

http://www.siteadvisor.com/
-A McAfee product. Kinda anemic in my estimation. The potentially good
point, community discussion, is sometimes trolled by people who say
every site is loaded with threats. Signal/noise is pretty low.

http://csi.websense.com/Default.aspx
-A Websense product. A decent tool. They now only let you do 5 URL
evaluations per day.

http://safeweb.norton.com/
-Pretty good I think. There's an apparently better community review and
some sites like paypal have the Norton-secured label.

http://siteinspector.comodo.com/
-This does on-demand scans of a site, which is pretty cool as the info
is current. It offers a whois feature on the results page

I just started using this one:

https://www.virustotal.com/en/#url
-This checks things using a bunch of other engines and was acquired by
Google.

http://en.wikipedia.org/wiki/VirusTotal






Glenn

unread,
May 17, 2013, 3:51:45 AM5/17/13
to

"*Hemidactylus*" <ecph...@hotmail.com> wrote in message news:682dnYzqDpq29QjM...@giganews.com...
Or maybe someone just didn't pay the bill.

John S. Wilkins

unread,
May 17, 2013, 4:20:39 AM5/17/13
to
Glenn <gl...@invalid.invalid> wrote:

> "*Hemidactylus*" <ecph...@hotmail.com> wrote...
No, it's a hack, and we are trying to find a host that doesn't send FTP
passwords in the clear.
--
John S. Wilkins, Associate, Philosophy, University of Sydney
http://evolvingthoughts.net
But al be that he was a philosophre,
Yet hadde he but litel gold in cofre

Burkhard

unread,
May 17, 2013, 6:29:55 AM5/17/13
to
On 16 May, 23:14, Friar Broccoli <elia...@gmail.com> wrote:
> On Thu, 16 May 2013 13:42:17 -0700 (PDT), Thrinaxodon
>
> <biolo...@gmail.com> wrote:
> >When, I go to the TO Archive, it says, "404 error". Elsberry, at AtBC,
> >stated, that it was hacked by a hacker from India. The cracker had
> >access, to the FTP. He uploaded all the files, and "installed" malware
> >into it. Anyone fix it?
>
> I have been informed by people who know that the site was hacked. �The
> problem is being taken care of.
>

Always eager to find the silver lining in the cloud, at least now the
message that treats a TO visitor for the last few years "this site is
currently under attack" is true. Not quite like the broken watch that
gives the right time at least twice a day, but near - just twice a
decade or so.

Friar Broccoli

unread,
May 17, 2013, 8:50:24 AM5/17/13
to
On Fri, 17 May 2013 03:29:55 -0700 (PDT), Burkhard <b.sc...@ed.ac.uk>
wrote:
When I get my new password, I will change the attack date on that page.

rossum

unread,
May 17, 2013, 11:55:55 AM5/17/13
to
On Thu, 16 May 2013 18:14:06 -0400, Friar Broccoli <eli...@gmail.com>
wrote:

>On Thu, 16 May 2013 13:42:17 -0700 (PDT), Thrinaxodon
><biol...@gmail.com> wrote:
>
>>When, I go to the TO Archive, it says, "404 error". Elsberry, at AtBC,
>>stated, that it was hacked by a hacker from India. The cracker had
>>access, to the FTP. He uploaded all the files, and "installed" malware
>>into it. Anyone fix it?
>
>I have been informed by people who know that the site was hacked. The
>problem is being taken care of.
The problem has been solved. See
http://www.antievolution.org/cgi-bin/ikonboard/ikonboard.cgi?s=519653024c5a9700;act=ST;f=14;t=1065;st=1020

rossum

0 new messages