Forum was hacked?

starcrescendo · Jan 18, 2015

As a web guy that thankfully is not working this weekend I sympathize and wish you luck!

Tsukihime · Jan 21, 2015

I'm still getting the issue, but I don't know if it's the forums or my own computer.

Mur · Jan 21, 2015

Tsukihime said:
I'm still getting the issue, but I don't know if it's the forums or my own computer.

Hmm, very strange. Forum don't set cookies "modtids=%2C" any more. Did you clear your browser cache and cookie?

Tsukihime · Jan 21, 2015

No, that might be why.

I'm afraid to clear my cookies cause I'm not sure how many places I might have to re-log though lol

GrandmaDeb · Jan 21, 2015

Nathanial B. said:
I wish to make note that this is a *minor* albeit, annoying problem. It will be taken care of though!

I'll post an update once I have it taken care of.

Thanks, as always.

For now, stop using Google to search for forum topics and use the forums built in search function.

Of course archived topics are the big problem.

Nathanial B. said:
Okay, I think I may have fixed this but I'm not 100% sure as testing this/getting the redirect isn't always guranteed.

Since the code injection seems to be time based (you won't always get it) I would love if some people could verify if they're having this issue anymore or not.

Just hit the problem again, sorry. ]=

For folks who use Google to find archived topics, you can still use google to find the location and date of the topic and then browse to it through the forum.

*******************************

*******************************

Remember that you can use this handy little fella at the bottom of the page to browse topics with hundreds of pages a little more quickly. [=

Mur · Jan 21, 2015

Confirm. Got it again!

GrandmaDeb · Jan 21, 2015

I went to google search right away to see if it came back for me too. (It did disappear as you mentioned, Nathanial.)

It seems google has dropped this site from their search lists for a bit. ]=

No entries of this site came up except one. Will try again.

***

Yeah. But I missed the urlshortlink prob.

_Shadow_ · Jan 22, 2015

Mur said:
Confirm. Got it again!

OH!!!

THAT THING!!!

I was wondering, WTF where did these @$$^*&%$ came from?

And NO, it's NOT on this forum only.

Freaking annoying, I wont even read this ****.

Good riddance!

Message to the IT team: Hang in there!

Nathanial · Jan 22, 2015

Dreadshadow said:
And NO, it's NOT on this forum only.

Yeah, it's a pain for a lot of forum owners right now. Thanks for reporting that it's back. IPS needs to take a look at this at this point, clearly there's something open in the software that keeps hitting forums over and over.

_Shadow_ · Jan 22, 2015

Nathanial B. said:
Thanks for reporting that it's back.

I did not.

Mur did.

But I had such redirections in the past ans was like WTF....

Athryl · Jan 22, 2015

Hopefully they can sort it out soon - sounds like a royal pain to track down. Thanks for all the work you guys put into keeping the site in shape.

Sakif X9 · Jan 22, 2015

When I disabled the interent on my computer and go to the website it still takes me there, but I can't go to any other website only when online it would take me to other sites.

Tsuyu · Jan 23, 2015

I clicked a link to this site via Twitter and it redirected me to that site.

Funplayer · Jan 23, 2015

Guys please, just install Malwarebytes and get rid of the malware.

Edit:

I see its a forum-wide issue, and that its the reason for the downtime the other day. I'd suggest doing a filter, and limiting the classes to a finite list of white-listed hash key confirmed classes. Anything out of the ordinary would simply not run. Thus the re-installs of the redirect virus will never occur.

Edit 2:

I also suggest Avast Premiere, as I have not seen any of these issues described.

Edit 3:

I took the advice of the posts, and decided to poke around google. Your servers are indeed redirecting to urlshort still, and avast automatically blocked the website. Nothing harmful happened to my PC based on this, short of them obtaining my IP in one of their logs.

You should probably verify with your official hosting company, that these occurrences are based on your server software. If your servers are the cause, then take steps to fix it. Otherwise consult the best course of action from your official .com hosting company.

AceOfAces_Mod · Jan 23, 2015

Click jacking huh?

Funplayer said:
Guys please, just install Malwarebytes and get rid of the malware.

Edit:

I see its a forum-wide issue, and that its the reason for the downtime the other day. I'd suggest doing a filter, and limiting the classes to a finite list of white-listed hash key confirmed classes. Anything out of the ordinary would simply not run. Thus the re-installs of the redirect virus will never occur.

Edit 2:

I also suggest Avast Premiere, as I have not seen any of these issues described.

Also install Microsoft EMET.

Nathanial · Jan 24, 2015

Funplayer said:
Guys please, just install Malwarebytes and get rid of the malware.

Edit:

I see its a forum-wide issue, and that its the reason for the downtime the other day. I'd suggest doing a filter, and limiting the classes to a finite list of white-listed hash key confirmed classes. Anything out of the ordinary would simply not run. Thus the re-installs of the redirect virus will never occur.

Edit 2:

I also suggest Avast Premiere, as I have not seen any of these issues described.

Edit 3:

I took the advice of the posts, and decided to poke around google. Your servers are indeed redirecting to urlshort still, and avast automatically blocked the website. Nothing harmful happened to my PC based on this, short of them obtaining my IP in one of their logs.

You should probably verify with your official hosting company, that these occurrences are based on your server software. If your servers are the cause, then take steps to fix it. Otherwise consult the best course of action from your official .com hosting company.

Yeah I've been aware it's on the forums.

This is based on a hole in IP.Board and the developers need to fix it. Thanks though.

I'm going to lock this thread until I can report back that this is fixed once and for all.

Will report back when it's fixed.

Sakif X9 · Jan 24, 2015

Funplayer said:
Guys please, just install Malwarebytes and get rid of the malware.

Edit:

I see its a forum-wide issue, and that its the reason for the downtime the other day. I'd suggest doing a filter, and limiting the classes to a finite list of white-listed hash key confirmed classes. Anything out of the ordinary would simply not run. Thus the re-installs of the redirect virus will never occur.

Edit 2:

I also suggest Avast Premiere, as I have not seen any of these issues described.

Edit 3:

I took the advice of the posts, and decided to poke around google. Your servers are indeed redirecting to urlshort still, and avast automatically blocked the website. Nothing harmful happened to my PC based on this, short of them obtaining my IP in one of their logs.

You should probably verify with your official hosting company, that these occurrences are based on your server software. If your servers are the cause, then take steps to fix it. Otherwise consult the best course of action from your official .com hosting company.

https://forums.malwarebytes.org/index.php?/topic/163659-url4shortinfo-problem/

Malwarebytes can't remove this, I had to make a post on the forums to get it removed

Forum was hacked?

Stargazer

Veteran

Veteran

Veteran

Modern Exteriors Posted!

Veteran

Modern Exteriors Posted!

Tech Magician Level:

Veteran

Tech Magician Level:

The Reticent

Level 99 Persona User

Warper

Self proclaimed sponge.

Engineering to infinity!

Veteran

Level 99 Persona User

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

Newest members

Forum statistics