|
qwert
Dec 29, 2005, 12:48 PM
Post #1 of 14
(2253 views)
Shortcut
Registered: Mar 24, 2004
Posts: 2394
|
i am getting cookies from a server called www2.hermoment.com , wats up with that? im not 100% shure if i get them from rockclimbing.com, but it looks like that, since this is the only site where i let my browser accept cookies. and i have those strange thingies on both, my pc, an my mac laptop. that hermoment site seems just weird. looks like some virus prone home made porn site. could someone please enlighten me if i do get those cookies here, and if so, why i do get them. qwert
|
|
|
|
|
dutyje
Dec 29, 2005, 12:55 PM
Post #2 of 14
(2253 views)
Shortcut
Registered: Apr 1, 2004
Posts: 727
|
I've got no such cookie, and I pretty much accept anything on my laptop. I spend a lot of time here, so I'm guessing the source of your cookie is elsewhere.
|
|
|
|
|
qwert
Dec 29, 2005, 1:14 PM
Post #3 of 14
(2253 views)
Shortcut
Registered: Mar 24, 2004
Posts: 2394
|
i just have deleted my entire cache and history and all, logged in again, browsed the site a bit, and they are there again. i have one that says expiration: 1970-01-01 last time used: 1970-01-01. nice. i know my pc is old, but i doubt that it is that old. i cant be the browser, since i have that things on my pc/opera and my mac/safari. qwert
|
|
|
|
|
oldrnotboldr
Dec 29, 2005, 4:12 PM
Post #4 of 14
(2253 views)
Shortcut
Registered: May 23, 2005
Posts: 306
|
You might have a bug embedded in the host file, registry, or some other such place. Try doing a spyware scan and virus scan. Trentmicro site has a decent and up-to-date scanning engine for free.
|
|
|
|
|
qwert
Dec 29, 2005, 6:47 PM
Post #5 of 14
(2253 views)
Shortcut
Registered: Mar 24, 2004
Posts: 2394
|
I have also thaught about spyware or a virus or something, but i have an up to date scanner on my pc, and i have those cookies on my mach too, on wich im just writing this (yes i also cleared the cache before entering the site) does really nobodody else have those cookies? qwert
|
|
|
|
|
paganmonkeyboy
Dec 29, 2005, 6:52 PM
Post #6 of 14
(2253 views)
Shortcut
Registered: Apr 30, 2003
Posts: 663
|
hmm...interesting I sem to have them from hermoment and www2.hermoment, and on both this box (work machine - oopsie surfing here in cubeland) and on my mac at home...didn't check the linux box this morn so I don't knwo if I am three for three or not... weird...perhaps a linked image in one of the threads or something ? zombies ? Illegal NSA spying again ? Might have to do some research on this one...
|
|
|
|
|
paganmonkeyboy
Dec 29, 2005, 7:12 PM
Post #7 of 14
(2253 views)
Shortcut
Registered: Apr 30, 2003
Posts: 663
|
it would appear to be an htscallerID cookie at first - anyone else good with PHP or cookies out there that can esplain me ? Deleted all cookies restarted browser surf RC for a few view all cookies boom...new htscallerid cookie from www, followed by 5 from www2...
|
|
|
|
|
mheyman
Dec 29, 2005, 7:13 PM
Post #8 of 14
(2253 views)
Shortcut
Registered: Jul 25, 2002
Posts: 607
|
I have them, and they seem linked to this site to me.
|
|
|
|
|
qwert
Dec 29, 2005, 7:23 PM
Post #9 of 14
(2253 views)
Shortcut
Registered: Mar 24, 2004
Posts: 2394
|
Ok, now i have booted my linux system, and they are there too. so it obviously isnt a spyware thing or somthing. i yet have to encounter one that "works" on three diffrent OS. I have noticed that i dont get it directly after logging in, i have to browse a few pages first. i dont think its a linked image (can a hotlinked image send cookies to me?? :shock: ) since i dissabled all images to load. i understand that rc.com has to use cookies, but this strange hermoment.com site just doesnt seem to match to anything that has something to do with the site, and the site does look pretty weird too. could it have something to do with google ads? Im just geek enough to have like ...counting... 7 or 8 different operating systems in my "collection", but not geek enough to actually understand anything that those thingies are doing. qwert
|
|
|
|
|
ninja_climber
Dec 29, 2005, 7:32 PM
Post #10 of 14
(2253 views)
Shortcut
Registered: Apr 10, 2005
Posts: 403
|
How did you manage to get a virus on your Mac??I would cry if I got one on my iBook...I'm paranoid now...
|
|
|
|
|
paganmonkeyboy
Dec 29, 2005, 7:51 PM
Post #11 of 14
(2253 views)
Shortcut
Registered: Apr 30, 2003
Posts: 663
|
dude - I don't think this is a virus so much as something embeded in the code here. I just blocked this site from setting cookies and restarted the browser, and when I went to rc.com I got a popup telling me there was a timeout connecting to www2.hermoment.com - I just uploaded the pic, and will link this post to it once it is approved... come on - with all the geeks on this site, someone's got to have the m4d 733t ski11z to debug this one...
|
|
|
|
|
crazywacky
Dec 29, 2005, 8:00 PM
Post #12 of 14
(2253 views)
Shortcut
Registered: Jan 31, 2002
Posts: 409
|
Not sure about the code on the site protion.. but you can add this to your hosts file.. 127.0.0.1 pagead1.googlesyndication.com 127.0.0.1 pagead2.googlesyndication.com 127.0.0.1 pagead3.googlesyndication.com 127.0.0.1 pagead4.googlesyndication.com 127.0.0.1 www2.hermoment.com It will remove the google ad thingie as well as block traffic to hermoment.com. I've got about a hundred entries similar to this on my home PC blocking everything from doubleclick to Real Audio. :-) later, Scott
|
|
|
|
|
tim
Dec 29, 2005, 8:02 PM
Post #13 of 14
(2253 views)
Shortcut
Registered: Apr 4, 2002
Posts: 4861
|
In reply to: I have noticed that i dont get it directly after logging in, i have to browse a few pages first. i dont think its a linked image (can a hotlinked image send cookies to me?? :shock: ) since i dissabled all images to load. It sounds like either it's an image or other content in somebody's signature, or else one of the ads. Can you post a specific URL that triggers your browser to warn about it, or otherwise is associated with the cookie? If it's tied to a specific thread then it's probably somebody's signature. If not, I'm guessing it's one of the ads that is placed by one of the advertising networks. While it would be simple to blackhole *.hermoment.com in your hosts file, I'm more interested in making a pariah out of the advertiser, if it is in fact an ad that's doing this. Or if it's a user, they can answer. But this is the sort of thing I normally associate with advertisers that buy placements through 3rd-party ad networks. They tend to be the sort of companies that no rational site owner would directly cut a deal with. Daniel is in charge of these decisions nowadays, but if it's an advertiser that's acting up, he'd probably like to know about it.
|
|
|
|
|
sbaclimber
Dec 29, 2005, 8:33 PM
Post #14 of 14
(2253 views)
Shortcut
Registered: Jan 22, 2004
Posts: 3118
|
I am off to go climbing for 2 days, so I have not let Daniel know about this. Someone else will have to.... The PLANETCANCER.ORG banner ad is what is setting these cookies!!! No 1337 h@x3r sk1||z here, just a couple of minutes of bouncing back and forth to the home page, and watching which content changed and when those cookies appeared :wink:
|
|
|
|
|
|