Ransom.Kovter reported on ihugny.com
- wayfriend
- .
- Posts: 20957
- Joined: Wed Apr 21, 2004 12:34 am
- Has thanked: 2 times
- Been thanked: 4 times
Ransom.Kovter reported on ihugny.com
My Norton/Semantec anti-virus is reporting that ihugny.com has the Ransom.Kovter ransomware virus. The location provided is ---http:---//ihugny.com/---RGAOMKR/---. (The ---s were added by me so no one clicks that link.)
- Sorus
- The Gap Into Spam
- Posts: 13870
- Joined: Mon Jun 27, 2005 5:45 pm
- Location: the tiny calm before the storm
- Been thanked: 1 time
I don't use Norton, and my security software never flagged it (which is probably not a good thing) - but https://safeweb.norton.com does still have it listed as:
There is a link where the site owner can report an inaccurate rating or request a re-evaluation, but it looks like something ihugny would have to do.
It's probably easier to get put on the naughty list than it is to be removed from it.Norton Safe Web has analyzed ihugny.com for safety and security problems. Below is a sample of the threats that were found.
Summary
Computer Threats: 1
Identity Threats: 0
Annoyance factors: 0
Total threats on this site: 1
There is a link where the site owner can report an inaccurate rating or request a re-evaluation, but it looks like something ihugny would have to do.
Tell them you can't survey the Land without it.aTOMiC wrote:No help for me as KW is not a work related essential site.
Oh, a change is coming, feel these doors now closing
Is there no world for tomorrow, if we wait for today?
- Avatar
- Immanentizing The Eschaton
- Posts: 61711
- Joined: Mon Aug 02, 2004 9:17 am
- Location: Johannesburg, South Africa
- Has thanked: 15 times
- Been thanked: 21 times
Yeah, looks like once you're listed, the only way off is for the domain owners to sign up for their "safe web" program.
Worst is, it's not even us, it's the top level domain.
Anyway, I've let Vain know.
TOM, any idea if it was an automatic block because your company uses Norton safe web? If so, getting off the list should resolve it, but actually getting off is probably going to be a problem.
If it was manual just because they finally picked up you were visiting it, then they're jerks.
Ask a friendly IT guy at the office? Just something like "hey, I noticed a site I checked out sometimes suddenly got blocked, what's up with that?"
--A
Worst is, it's not even us, it's the top level domain.
Anyway, I've let Vain know.
TOM, any idea if it was an automatic block because your company uses Norton safe web? If so, getting off the list should resolve it, but actually getting off is probably going to be a problem.
If it was manual just because they finally picked up you were visiting it, then they're jerks.
Ask a friendly IT guy at the office? Just something like "hey, I noticed a site I checked out sometimes suddenly got blocked, what's up with that?"
--A
- aTOMiC
- Lord
- Posts: 24594
- Joined: Wed Sep 10, 2003 6:48 am
- Location: Tampa, Florida
- Has thanked: 8 times
- Been thanked: 7 times
- Contact:
Heh. Since I work for the City of Tampa the I T department is a monolithic organization located in a downtown skyscraper miles from our outlying location and there is no one local to appeal to.
I may well end up being a weekend poster unless I bring my laptop to work and use my phone as a Wi-Fi hotspot. I will figure it out but my presence will definitely be muted for the time being.
I may well end up being a weekend poster unless I bring my laptop to work and use my phone as a Wi-Fi hotspot. I will figure it out but my presence will definitely be muted for the time being.
"If you can't tell the difference, what difference does it make?"
"There is tic and toc in atomic" - Neil Peart
- wayfriend
- .
- Posts: 20957
- Joined: Wed Apr 21, 2004 12:34 am
- Has thanked: 2 times
- Been thanked: 4 times
FYI, anything blocking access isn't detecting the virus, it is subscribing to the Norton reputation feed. What needs to change for Tom, and others, is to remove the virus -and- to get Norton to stop reporting that the site is compromised. There is probably a mechanism which will induce Norton to rescan your site (like you can induce Google to index it).
Submit a website to Norton Safe Web
Of course, Norton is only one service. Tom's boss may use a different one. Maybe you can find out, Tom.
Submit a website to Norton Safe Web
Of course, Norton is only one service. Tom's boss may use a different one. Maybe you can find out, Tom.
- kevinswatch
- "High" Lord
- Posts: 5584
- Joined: Sat Mar 02, 2002 2:46 pm
- Location: In the dark, lonely cave that dwells within my eternal soul of despair. It's next to a Pizza Hut.
- Has thanked: 6 times
- Been thanked: 3 times
- Contact:
- Zarathustra
- The Gap Into Spam
- Posts: 19629
- Joined: Tue Jan 04, 2005 12:23 am
So I guess it's fixed now? My Norton's blocked the site, too. I've been avoiding this place until Norton let me on today. I can't afford to have my devices lock up with ransomware.
Is there a plan for this in the future, somewhere we can go to let each other know there's a problem without clicking on the site and infecting our computers? There used to be a backup board, but it's not working now.
Is there a plan for this in the future, somewhere we can go to let each other know there's a problem without clicking on the site and infecting our computers? There used to be a backup board, but it's not working now.
Joe Biden … putting the Dem in dementia since (at least) 2020.
- aTOMiC
- Lord
- Posts: 24594
- Joined: Wed Sep 10, 2003 6:48 am
- Location: Tampa, Florida
- Has thanked: 8 times
- Been thanked: 7 times
- Contact:
Zarathustra wrote:
Is there a plan for this in the future, somewhere we can go to let each other know there's a problem without clicking on the site and infecting our computers? There used to be a backup board, but it's not working now.
This is but one of the many uses of our Facebook page and Twitter account.
"If you can't tell the difference, what difference does it make?"
"There is tic and toc in atomic" - Neil Peart
- Avatar
- Immanentizing The Eschaton
- Posts: 61711
- Joined: Mon Aug 02, 2004 9:17 am
- Location: Johannesburg, South Africa
- Has thanked: 15 times
- Been thanked: 21 times
Yeah, maybe post the links TOM, so people can follow them. Still, I like having another option too...
(Didn't know the back-up board was down either, thanks.)
Anyway, yeah, Vain mailed me to say he'd submitted a re-evaluation request...surprised it was that quick actually.
Z, problem wasn't with us, was with the top level domain, the Watch just got blocked by default.
Oh, if you worry about ransomware, hope you never need to find this link useful: https://decrypter.emsisoft.com/
--A
(Didn't know the back-up board was down either, thanks.)
Anyway, yeah, Vain mailed me to say he'd submitted a re-evaluation request...surprised it was that quick actually.
Z, problem wasn't with us, was with the top level domain, the Watch just got blocked by default.
Oh, if you worry about ransomware, hope you never need to find this link useful: https://decrypter.emsisoft.com/
--A