Garbage texts in posts
Printed From: Web Wiz Forums
Category: Web Wiz Web App Support Forums
Forum Name: Web Wiz Forums
Forum Description: Support forum for Web Wiz Forums application.
URL: https://forums.webwiz.net/forum_posts.asp?TID=30022
Printed Date: 31 March 2026 at 1:18pm
Software Version: Web Wiz Forums 12.08 - https://www.webwizforums.com
Topic: Garbage texts in posts
Posted By: dbramley
Subject: Garbage texts in posts
Date Posted: 06 December 2011 at 1:29pm
|
Hi, Not sure if anyone else has experienced this but I have a member that has the following text automatically inserted on each post, reply, PM etc.: < ="text/" ="" ="/B1D671CF-E532-4481-99AA-19F420D90332etdefender/huidhui.js?0=0&0=0&0=0"> All we've managed to come up with is its possibly due to BitDefender Total Security 2012 he has installed. Any ideas? Thanks
|
Replies:
Posted By: stevehal
Date Posted: 06 December 2011 at 1:45pm
|
Yes, I have seen this in our forums. It seems that something with a scanner, such as BitDefender, sees something in the WWG forums and does some of its own inserting. Just search huidhui.js on google and you will see how this modifies WWG forums.
Personally, any product that does something like this, whether it is bit defender or something else, would not be on my system unless there was a way of changing settings so it would not interfere with browsing. One could do a simple text search on a post in the script, such as "huidhui.js" and let the user know he cannot post with that feature turned on. I hate seeing that text in our forums.
Steve
|
Posted By: WebWiz-Bruce
Date Posted: 06 December 2011 at 1:45pm
|
Some badly behaving browser plugins and applications inject code in to web pages. It looks like Bit Defender is doing this on your members PC. They either need to change the settings in Bit Defender or they will have to edit their forum profile to disable the RTE WYSIWYG Editor for posting.
------------- https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting |
Posted By: stevehal
Date Posted: 06 December 2011 at 1:47pm
"Badly behaving" is the perfect way to say it. 
|
Posted By: WebWiz-Bruce
Date Posted: 06 December 2011 at 2:10pm
|
It appears that BitDefender injects the following JavaScript in to web pages:- <script language="javascript" type="text/javascript" src="/B1D671CF-E532-4481-99AA-19F420D90332/netdefender/hui/ndhui.js?0&0&0"></script> A search of Google shows this code coming up in thousands of blog comments, forum posts, etc. Most security software that did this last decade have stopped using this bad method in their security protection. Looks like BitDefender is a decade behind! Anyway, now have the full code and not the partial injected code will be able to look in to stripping this injected code from users posts.
------------- https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting |
Posted By: dbramley
Date Posted: 07 December 2011 at 12:42pm
Thanks for the replies folks 
|
Posted By: trackdayrider
Date Posted: 02 April 2012 at 7:52pm
|
did anyone find a solution to this? We have one member who is getting the same text in his posts 1/3000 isnt so bad lol
|
Posted By: WebWiz-Bruce
Date Posted: 03 April 2012 at 7:35am
|
There is a fix for the BitDefender injected JavaScript in the next release. Till then the only option is to get your member to see if they can whitelist your website in BitDefender. ------------- https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting |
Posted By: GhOs+
Date Posted: 03 April 2012 at 8:46pm
|
if you can't wait until the next release or want a quick fix, consider adding these three "bad words" and replace with "" [blank]. You have to break up the full string that bitdefender inserts b/c of the limit on the length of the 'bad word' field. Keep in mind this may strip posts of a legit string - for example, the first line item below may actually be used intentionally in a post if you have an IT/web type forum. But if your forum about automobiles, photography, or basket weaving you should be safe: <script language="javascript" type="text/javascri
pt" src="/B1D671CF-E532-4481-99AA-19F420D90332/ne tdefender/hui/ndhui.js?0&0&0"></script> |
Posted By: dbramley
Date Posted: 14 May 2012 at 2:42pm
| Also, get your member to switch off the WYSIWYG editor in their control panel. IIRC without this enabled the code doesn't get inserted. |