Thread: Virus on page?
View Single Post
  #12  
Old March 18th 19, 02:08 PM posted to alt.comp.os.windows-10,alt.computer.workshop
Carlos E.R.[_3_]
external usenet poster
 
Posts: 1,356
Default Virus on page?

On 18/03/2019 13.40, Commander Kinsey wrote:
On Mon, 18 Mar 2019 03:26:19 -0000, Carlos E.R.
wrote:

On 18/03/2019 00.15, Commander Kinsey wrote:
WARNING!* Do not click the misspelt link below (between asterisks)
unless you know your computer is protected.

On Stirling Council's parking page
https://my.stirling.gov.uk/media/442...park-guide.pdf
There is a link to the thistle centre car park, which they have misspelt
as **** http://www.thethsitles.com/ **** instead of
http://www.thethistles.com/

Question 1) Is this a virus?* It just bleeps very loudly through the
speakers and asks me to click to update something.
Question 2) Can this be reported to someone?* The company they rent the
domain name from perhaps?

(I've already advised Stirling Council to correct their spelling error)


The first page is a PDF, not a web page


Technically yes, but the PDF is displayed in my browser and has links to
click just like a webpage.


Depends on the local configuration - in my machine it doesn't :-)

and looking at the properties
it was generated on 2014. It is possible that the link is outdated and
now points to somewhere else than intended, because of a typing error or
no maintenance of the site.


It must be a typing error, it would never have been spelt thsitle.

Anyway hopefully they will update it now I've warned them.* I'm
surprised nobody else came across it before, parking in Stirling is so
bad you have to research first!* Even if you pay, hardly anywhere allows
more than a 2 hour stay.


Wow. I have never seen something like that here - well, thinking, there
have been days in Madrid that I was not able to go to the place I wanted
at all, no parking or collapsed roads. Popular events. I have not heard
of reserving in advance a parking slot, but maybe possible.


That second link displays nothing in my machine (Linux). But it does
load something.


You mean http://www.thethistles.com/ ?* It should redirect to
https://www.thistlesstirling.com


I mean http://www.thethsitles.com/


Disabling the addblocker, it goes to http://mediadiscovery.net/, and
just reads "Sponsored content". Disabling addblocker on on that, then I
get a page full of adds, surely different than those you get.


I have a couple of adblockers and see no ads there at all.* Just a page
about the shopping centre with moving graphics saying what they sell.

Or did you mean the dodgy link?*


Yes.

I got a loud bleep, and a dialog box
saying click to update, your windows is out of date and you have a nasty
virus or something.* I closed it before reading it fully!


I have seen that on somebody else's computer. I think it was an
unfiltered advert. And clicking there would be dangerous.


Possibly
one of those adds you get triggered the blast (maybe from your
antivirus?). I have heard that blast on a friend's laptop once, and
scared me ****less. I must say that you guys on Windows get more fun
that us poor lads on Linux :-P


I've never had a bleep like that before.* It sounds like the BBC2 test
signal.


Yep. I jumped off the sofa when I heard that. The other person was
accustomed to it and just clicked away.


A reload of http://ww1.thethsitles.com/ displays content typical of a
parked domain. Something about Albania and fraud protection.


So what you should do is tell the people of
https://my.stirling.gov.uk/media/4425/9824-final-new-car-park-guide.pdf
to
correct the spelling - and if there is no spelling error, remove the
link altogether, as the parking lot "The Thistles" doesn't own the link
they point people to, it has been parked (http://www.thethsitles.com/).

Or whatever the correct wording in English is :-)


A parked parking lot :-)


:-D

--
Cheers, Carlos.
Ads