Garbage texts in posts

Post Reply

Page 12 >

Author	Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic
dbramley Members Profile Find Members Posts Groupie Joined: 24 April 2008 Status: Offline Points: 118	Post Options Post Reply Quote dbramley Report Post Thanks(0) Quote Reply Topic: Garbage texts in posts Posted: 06 December 2011 at 1:29pm
	Hi, Not sure if anyone else has experienced this but I have a member that has the following text automatically inserted on each post, reply, PM etc.: < ="text/" ="" ="/B1D671CF-E532-4481-99AA-19F420D90332etdefender/huidhui.js?0=0&0=0&0=0"> All we've managed to come up with is its possibly due to BitDefender Total Security 2012 he has installed. Any ideas? Thanks

WebWiz-Bruce Members Profile Find Members Posts Admin Group Web Wiz Developer Joined: 03 September 2001 Location: Bournemouth Status: Offline Points: 9844	Answer Post Options Post Reply Quote WebWiz-Bruce Report Post Thanks(1) Quote Reply Posted: 06 December 2011 at 2:10pm
	It appears that BitDefender injects the following JavaScript in to web pages:- <script language="javascript" type="text/javascript" src="/B1D671CF-E532-4481-99AA-19F420D90332/netdefender/hui/ndhui.js?0&0&0"></script> A search of Google shows this code coming up in thousands of blog comments, forum posts, etc. Most security software that did this last decade have stopped using this bad method in their security protection. Looks like BitDefender is a decade behind! Anyway, now have the full code and not the partial injected code will be able to look in to stripping this injected code from users posts.

stevehal Members Profile Find Members Posts Groupie Joined: 07 December 2003 Status: Offline Points: 32	Post Options Post Reply Quote stevehal Report Post Thanks(1) Quote Reply Posted: 06 December 2011 at 1:45pm
	Yes, I have seen this in our forums. It seems that something with a scanner, such as BitDefender, sees something in the WWG forums and does some of its own inserting. Just search huidhui.js on google and you will see how this modifies WWG forums. Personally, any product that does something like this, whether it is bit defender or something else, would not be on my system unless there was a way of changing settings so it would not interfere with browsing. One could do a simple text search on a post in the script, such as "huidhui.js" and let the user know he cannot post with that feature turned on. I hate seeing that text in our forums. Steve

WebWiz-Bruce Members Profile Find Members Posts Admin Group Web Wiz Developer Joined: 03 September 2001 Location: Bournemouth Status: Offline Points: 9844	Post Options Post Reply Quote WebWiz-Bruce Report Post Thanks(0) Quote Reply Posted: 06 December 2011 at 1:45pm
	Some badly behaving browser plugins and applications inject code in to web pages. It looks like Bit Defender is doing this on your members PC. They either need to change the settings in Bit Defender or they will have to edit their forum profile to disable the RTE WYSIWYG Editor for posting.
	Web Wiz Forums Hosting ASP.NET Web Hosting

stevehal Members Profile Find Members Posts Groupie Joined: 07 December 2003 Status: Offline Points: 32	Post Options Post Reply Quote stevehal Report Post Thanks(0) Quote Reply Posted: 06 December 2011 at 1:47pm
	"Badly behaving" is the perfect way to say it.

WebWiz-Bruce Members Profile Find Members Posts Admin Group Web Wiz Developer Joined: 03 September 2001 Location: Bournemouth Status: Offline Points: 9844	Answer Post Options Post Reply Quote WebWiz-Bruce Report Post Thanks(1) Quote Reply Posted: 06 December 2011 at 2:10pm
	It appears that BitDefender injects the following JavaScript in to web pages:- <script language="javascript" type="text/javascript" src="/B1D671CF-E532-4481-99AA-19F420D90332/netdefender/hui/ndhui.js?0&0&0"></script> A search of Google shows this code coming up in thousands of blog comments, forum posts, etc. Most security software that did this last decade have stopped using this bad method in their security protection. Looks like BitDefender is a decade behind! Anyway, now have the full code and not the partial injected code will be able to look in to stripping this injected code from users posts.
	Web Wiz Forums Hosting ASP.NET Web Hosting

dbramley Members Profile Find Members Posts Groupie Joined: 24 April 2008 Status: Offline Points: 118	Post Options Post Reply Quote dbramley Report Post Thanks(0) Quote Reply Posted: 07 December 2011 at 12:42pm
	Thanks for the replies folks

trackdayrider Members Profile Find Members Posts Newbie Joined: 05 December 2006 Location: United Kingdom Status: Offline Points: 12	Post Options Post Reply Quote trackdayrider Report Post Thanks(0) Quote Reply Posted: 02 April 2012 at 7:52pm
	did anyone find a solution to this? We have one member who is getting the same text in his posts 1/3000 isnt so bad lol

WebWiz-Bruce Members Profile Find Members Posts Admin Group Web Wiz Developer Joined: 03 September 2001 Location: Bournemouth Status: Offline Points: 9844	Post Options Post Reply Quote WebWiz-Bruce Report Post Thanks(0) Quote Reply Posted: 03 April 2012 at 7:35am
	There is a fix for the BitDefender injected JavaScript in the next release. Till then the only option is to get your member to see if they can whitelist your website in BitDefender.
	Web Wiz Forums Hosting ASP.NET Web Hosting

Post Reply	Page 12 >

Forum Jump

Forum Permissions View Drop Down

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot delete your posts in this forum
You cannot edit your posts in this forum
You cannot create polls in this forum
You cannot vote in polls in this forum