I keep getting a message on my screen from Webmaster saying that the forum has been compromised. Anyone else get ever this?
Printable View
I keep getting a message on my screen from Webmaster saying that the forum has been compromised. Anyone else get ever this?
not me anyway
yeah it pops up every time i log in or change forums
Forum won't let me log in 1st time keeps showing password then directing me to a second log-in attempt
Thought this would have been about the Rovers forum
Nothing happening here lads but we'll look into it
BTW if you use saintsforum.net instead of www.saintsforum.net it won't remember your log in (so use www.saintsforum.net)
Getting this too. It says "if you see this notice then you are linking to our site via an iframe likely in the footer of yoir forum and/or website. Go to your admin area in your forum and check your templates for an iframe, remove it, then this message will go away."
Staerted yesterday, and it's a pain - comes back everytime you go to another page or thread.
getting it also
The message appears if I'm using Internet Explorer, but not if I'm using Chrome.
thats my next question. What browser and forum are people using?
Nothing for me on firefox and 'default' (the blue one)
Happens me aswell. Using Internet Explorer
I get the message when I use IE. Chrome and Firefox give no warnings.
If it's any help this is what Norton comes up with when that message is shown.....
Category: Intrusion Prevention
Date & Time,Risk,Activity,Status,Recommended Action,IPS Alert Name,Default Action,Action Taken,Attacking Computer,Attacker URL,Destination Address,Source Address,Traffic Description
2012-07-01 15:45:10,High,An intrusion attempt by yeivna.info was blocked.,Blocked,No Action Required,Web Attack: JRE Concurrency CVE-2012-0507,No Action Required,No Action Required,"yeivna.info (37.59.136.63, 80)",yeivna.info/getfile.php?i=4&key=e80e7508f56b6b1f08a4d733ceb3fc f7,
Network traffic from <b>yeivna.info/getfile.php?i=4&key=e80e7508f56b6b1f08a4d733ceb3fc f7</b> matches the signature of a known attack. The attack was resulted from \DEVICE\HARDDISKVOLUME2\PROGRAM FILES\JAVA\JRE6\BIN\JAVA.EXE.
IP address seems to be from Paris, most likely on a vpn mods should report this to abuse@ovh.com
Is ther anything that can be done about this?
Maybe it's a Bray hacker ?
I'd imagine kdjac is waiting for his offer of a bag of cans to fix it
If it's really an intrusion attack it's more than likely someone trying to set up a JDB so that they can spread bots on a forum
If it's really an intrusion attack it's more than likely someone trying to set up a JDB so that they can spread bots on a forum[/QUOTE]
For the benefit of oldies like me, can you give the Computers for Dummies version of that?
And for the benefit of the rest of us can he give us a solution?
For the benefit of oldies like me, can you give the Computers for Dummies version of that?[/QUOTE]
Spread bots ( a virus that can receive a command )
JBD ( Java Drive By )
Bots are used for downloading files or else people can sell Youtube watches , Facebook Likes or Twitter follows
People also use bots to install RATS ( Remote Access Terminals )
If your ratted , people can control your computer ( If I have you ratted I coukd turn on your webcam and you wouldn't know , fuck around with computer ect.. )
Looks like dodge has it sorted tho
Dodge hasn't a breeze. I'm just saying 'people' are working on it.
It seems it only affects Internet Exporer
Could someone post a screenshot of the " message " and not the warning from norton, I would know a JDB if u seen one
BTW I've used chrome , safari & IE and had no problems
We're all fucked. That latvian tina and the chap Dan stole a scarf from have it in for us.