I have Norton. I clicked on the link provided by xviper and I didn't get a warning. It looks like it's that signpost thing on the guy's sig telling you your IP address, ISP, and browser.

 

You could be right. I guess it depends how your Norton is set up.

 

Correct. Danasoft is the company that makes those signpost sigs that show your IP address etc., hence the appearance that Danasoft is probing your machine. Indeed they are to a certain extent, but it's not really malicious.

 

hmmm, it'd be great if perhaps the mod could ask him to remove it. Everytime I see the danasoft sigs, I repeatedly get the warning pop up until I exit the site. Seems like a few people get this annoyance as well.

 

Going by xviper's information, it's not danasoft probing your machine, it's your machine (the internal IP) probing/ "attacking" (this is likely a false positive) www.danasoft.com.

Likely that fellow's got a malformed URL with extra slashes in it in his sig for loading that image. Extra slashes in a URL look like that exploit to Norton.

The URL being used for that sig contains the string:

\\\\\ \THIDE.jpg

\ is the HTML Special encoding value for the backslash. As his URL has 6 of these for some reason, when your machine requests the image from danasoft, it ends up looking like an attack from your machine against danasoft.com; In reality the 'attack', if it truly is one, would be the fault of the person who used that URL in their sig.

 

Gnome, you are right. Luke's sig with that banner is not working right. It just gives a red X and "user posted image". The ones that work don't give a virus warning. I've alerted him to this thread and hopefully, he'll get that damn thing out of his sig.

 

Wow... That's really strange, I had no idea.

Anyways, it's gone now.... or at least should be

it looked fine on my computer, i didn't think it would be any different on other computers.

 

Thanks, man. Now that it's gone, no more "worm" alerts from Norton.