Intrusion Detected from PA
Printed From: Progarchives.com
Category: Site News, Newbies, Help and Improvements
Forum Name: Report bugs here
Forum Description: Help us improve the site from a tech standpoint
URL: http://www.progarchives.com/forum/forum_posts.asp?TID=129510
Printed Date: November 23 2024 at 14:35
Software Version: Web Wiz Forums 11.01 - http://www.webwizforums.com
Topic: Intrusion Detected from PA
Posted By: wiz_d_kidd
Subject: Intrusion Detected from PA
Date Posted: August 10 2022 at 06:41
|
When I went to PA today (8/10/22 8:40am EDT), I started getting intrusion detections from Norton every time a new page loads. The intruder was flagged as: https://advertising-cdn.com, and the source IP was "An intrusion attempt by 5.42.199.45 was blocked". Did something recently change that is now causing this? |
Replies:
Posted By: I prophesy disaster
Date Posted: August 10 2022 at 07:52
|
I started seeing this a few days ago and reported it http://www.progarchives.com/forum/forum_posts.asp?TID=129492" rel="nofollow - here . I was beginning to think that no one else was experiencing this. ------------- No, I know how to behave in the restaurant now, I don't tear at the meat with my hands. If I've become a man of the world somehow, that's not necessarily to say I'm a worldly man. |
Posted By: Cristi
Date Posted: August 10 2022 at 08:18
|
a few months ago, my antivirus deem PA album pages unsafe and I couldn't do anything on my laptop. Maybe you got a similar issue. http://www.progarchives.com/forum/forum_posts.asp?TID=109304&PN=12" rel="nofollow - http://www.progarchives.com/forum/forum_posts.asp?TID=109304&PN=12
|
Posted By: progaardvark
Date Posted: August 10 2022 at 09:25
|
I haven't come across this problem myself (maybe my Adblock Plus is blocking it?). But that IP address is located in Russia: https://dnslytics.com/ip/5.42.199.45" rel="nofollow - https://dnslytics.com/ip/5.42.199.45 An admin should contact M@X about this. I don't see ads anymore on the forum since I have Adblock Plus installed, so maybe it's an ad with some nefarious JavaScript code?? ------------- ---------- i'm shopping for a new oil-cured sinus bag that's a happy bag of lettuce this car smells like cartilage nothing beats a good video about fractions |
Posted By: wiz_d_kidd
Date Posted: August 11 2022 at 07:42
When JavaScript is enabled, I get multiple warnings in a row -- like it is repeatedly trying to intrude. After a while they stop, but restart with every new page. When JavaScript is disabled, I get one warning on each new page. But only one.
|
progaardvark wrote:Posted By: dr wu23
Date Posted: August 22 2022 at 07:26
|
Wrong thread,,.....my apologies but I have been having trouble posting for several days and this box was active for a reply. I am having trouble loading pages and when they load many aspects are missing like being able to even post. A window says try clearing your cookies but this is the only board I have problems with. I restarted my computer several times and logged in again but it only works some of the time....what's going on? ------------- One does nothing yet nothing is left undone. Haquin |
Posted By: Syzygy
Date Posted: August 22 2022 at 07:38
I'm experiencing the same issue on my tablet and mobile (both Android OS). The error message says 'too many redirects' and suggests clearing cookies, but that doesn't seem to work. I have been able to log on via my laptop today. ------------- 'Like so many of you I've got my doubts about how much to contribute to the already rich among us...' Robert Wyatt, Gloria Gloom |
Posted By: Nogbad_The_Bad
Date Posted: August 22 2022 at 08:09
|
I've been having the same problem on my tablet, cleared all the cookies, restarted, still nothing. I cannot access the site on my tablet any more. ------------- Ian Host of the Post-Avant Jazzcore Happy Hour on Progrock.com https://podcasts.progrock.com/post-avant-jazzcore-happy-hour/ |
Posted By: mathman0806
Date Posted: August 22 2022 at 10:16
| I am having the same redirect issue on my Android phone if I use Chrome. If I use the Internet browser from Samsung, I can get in. No problems on my laptop. Problem started on Saturday. |
Posted By: Logan
Date Posted: August 22 2022 at 10:21
|
There have been lots of problems, but I have not managed to connect with M@x. ------------- https://www.youtube.com/playlist?list=PLXcp9fYc6K4IKuxIZkenfvukL_Y8VBqzK" rel="nofollow - Duos for fave acts |
Posted By: dr wu23
Date Posted: August 22 2022 at 11:19
|
It does seem to be a Google chrome issue for me also...did start just 2 days ago ------------- One does nothing yet nothing is left undone. Haquin |
Posted By: dr wu23
Date Posted: August 23 2022 at 09:01
|
It's to the point I can 't ev en post a reply here....was going to send pm to Logan But it won't let me...sadly until this is fixed....I'm gone from PA indefinitely....but it seems no one can fix this issue .....I guess another prog site is in order. ------------- One does nothing yet nothing is left undone. Haquin |
Posted By: Nogbad_The_Bad
Date Posted: August 23 2022 at 09:55
|
I'm installed Opera on my tablet to get access back. ------------- Ian Host of the Post-Avant Jazzcore Happy Hour on Progrock.com https://podcasts.progrock.com/post-avant-jazzcore-happy-hour/ |
Posted By: nick_h_nz
Date Posted: August 23 2022 at 10:06
|
If it’s an issue with Chrome, it would seem the simplest temporary solution would be to use a different browser, until such time the issue is addressed/fixed? Not ideal, perhaps, if Chrome is a preferred browser, but surely better than nothing? ------------- https://tinyurl.com/nickhnz-tpa" rel="nofollow - Reviewer for The Progressive Aspect |
Posted By: lazland
Date Posted: August 23 2022 at 10:24
I use Chrome on my laptop and have been having no issues whatsoever, neither with Safari on the iPad. A couple of people mentioned Norton - could it be anything to do with that? I use Mr Mac and Fee and have no problems flagged up by that. ------------- Enhance your life. Get down to www.lazland.org Now also broadcasting on www.progzilla.com Every Saturday, 4.00 p.m. UK time! |
Posted By: nick_h_nz
Date Posted: August 23 2022 at 11:06
|
I suspect a lot of the problem may come down to the fact that PA has never moved from http to https, and that alone may increasingly flag it as suspect as brewers and antivirus upgrade and warn users from accessing domains that are not https. 🤷🏻♂️ ------------- https://tinyurl.com/nickhnz-tpa" rel="nofollow - Reviewer for The Progressive Aspect |
Posted By: Logan
Date Posted: August 23 2022 at 15:26
|
M@x may be able to fix the issue, I tried to contact him before about something else recently, just by PM, without success (luckily that was an issue that could be corrected without him and a collab did). This is something that M@x or Graphix if he's still around, or some hired person perhaps, would have to correct. We forum collabs are but humble servants of the mighty webmaster and owner and are here at his grace and mercy. He holds the fate of this site in His hands. As Nick mentioned, one could try another web browser if you didn't try that already. I use Opera and moved to it at first because I had issues with this forum using another browser, and I just don't like Chrome. Also the right add-ons can help, methinks. Also cleaning one's cache does sometimes help. I do wish we could moved to https, but apparently it is not at all easy with this primitive site. There have been lots of issues and errors of late. ------------- https://www.youtube.com/playlist?list=PLXcp9fYc6K4IKuxIZkenfvukL_Y8VBqzK" rel="nofollow - Duos for fave acts |
Posted By: wiz_d_kidd
Date Posted: August 24 2022 at 09:33
|
I run Firefox and Norton -- so the problem isn't restricted to Chrome. Norton flagged the repeated attempts as an intrusion. Maybe they manifest as repeated redirects on other browsers. On my platform, Norton identified the culprit as https://advertising-cdn.com with an IP address of 5.42.199.45 which Progaardvark traced to Russia (see previous msg in this thread). A thread on Twitter also identifies an intrusion problem with advertising-cdn.com here: https://twitter.com/unmaskparasites/status/1356376342686666753" rel="nofollow - https://twitter.com/unmaskparasites/status/1356376342686666753 This problem only happens on PA, so I doubt it's an infection on my PC. Hopefully, M@x will get this sorted out soon. ------------- “I don’t like country music, but I don’t mean to denigrate those who do. And for those who like country music, denigrate means to ‘put down.'” – Bob Newhart |
Posted By: dr wu23
Date Posted: August 24 2022 at 12:45
|
Definitely a PA issue not chrome....not good that the 'owner' is missing in action....the one responsible for the site should ck in regularly so these things don't happen. ------------- One does nothing yet nothing is left undone. Haquin |
Posted By: nick_h_nz
Date Posted: August 24 2022 at 14:50
|
No one has ever suggested it is a Chrome issue. It’s obviously a PA issue, but the point is that no other browser seems to be reacting to the issue the way Chrome seems to be. Also Norton. That various software are reacting to the issue, does not mean anyone thinks they are the issue. But while there is an issue, until such time as Max is able to do something, the obvious temporary solution is to not use Chrome. That’s all I said. Not that Chrome is the problem, ------------- https://tinyurl.com/nickhnz-tpa" rel="nofollow - Reviewer for The Progressive Aspect |
Posted By: tszirmay
Date Posted: October 10 2022 at 08:32
|
I can access PA on my PC but not on my MAC (three days now) as its says to me: too many redirects and I tried everything (clear data, cookies etc.…) It seems its on the PA side. Please advise Thanks ------------- I never post anything anywhere without doing more than basic research, often in depth. |
Posted By: wiz_d_kidd
Date Posted: October 11 2022 at 07:28
The problem, as I noted on another thread, is that PA has been hacked. Basically, the hackers injected code into several PA webpages that run a script on a bogus website. That script, in turn, tries to run another script on yet another bogus website which tries to inject code into your computer for presumably malicious purposes. Your computer/browser is catching these redirects and/or download attempts. You can read my analysis here: http://www.progarchives.com/forum/forum_posts.asp?TID=129492&PID=6043806#6043806 Because the PA admins/owners have done nothing to rectify this situation, I've had to install the app "NoScript" on my Firefox browser to prevent only the bad scripts from running, while allowing the good scripts. ------------- “I don’t like country music, but I don’t mean to denigrate those who do. And for those who like country music, denigrate means to ‘put down.'” – Bob Newhart |
Posted By: bartymj
Date Posted: November 08 2022 at 05:29
|
PA was working fine for me on chrome up until yesterday but I’m now getting the same issues as above with ‘too many redirects’. Works on my phone though. Is anything being done about it? |
Posted By: Logan
Date Posted: November 08 2022 at 06:48
|
^ Not to my knowledge, but then I tried but hadn't managed to contact the webmaster who deals with such things. I would suggest not using Chrome under the circumstances if one can. I have no problems with Opera and Firefox (suggest using with NoScript) seems to work well too. Seems fine on Safari. I don't have that issue on Chrome actually either, maybe due to my settings and add-ons, and maybe location/ service provider.... ------------- https://www.youtube.com/playlist?list=PLXcp9fYc6K4IKuxIZkenfvukL_Y8VBqzK" rel="nofollow - Duos for fave acts |
Posted By: wiz_d_kidd
Date Posted: November 08 2022 at 06:48
|
PA can do nothing about it until the owner (M@X) takes action -- which he has not. In the meantime, you can protect yourself from these annoying redirects and possible future intrusions by doing the following: 1) Install NoScript, a free extension/add-on for your browser. (I use it in Firefox). 2) Open NoScript and add the websites: "https://new2sportnews.com", and "https://advertising-cdn.com". 3) Mark them both as "Untrusted". ------------- “I don’t like country music, but I don’t mean to denigrate those who do. And for those who like country music, denigrate means to ‘put down.'” – Bob Newhart |
Posted By: bartymj
Date Posted: November 08 2022 at 08:20
| Keep seeing that M@X may have walked away a bit from PA. Is there any kind of succession plan... |
Posted By: Gentle and Giant
Date Posted: November 08 2022 at 12:09
Exactly the same for me with Chrome - it started giving out the 'too many redirects' messages today. I'm using Firefox for Prog Archives now. ------------- Oh, for the wings of any bird, other than a battery hen |
Posted By: jamesbaldwin
Date Posted: November 08 2022 at 13:22
The same. I use Microsoft Edge with the pc. But on my cell I cant get the line even with Microsoft Edge . ------------- Amos Goldberg (professor of Genocide Studies at the Hebrew University in Jerusalem): Yes, it's genocide. It's so difficult and painful to admit it, but we can no longer avoid this conclusion. |
Posted By: Snicolette
Date Posted: November 08 2022 at 14:48
|
It's intermittent on my laptop, for me. I use Chrome pretty much all of the time, and rarely use my phone app. ------------- "Into every rain, a little life must fall." ~Tom Rapp |
Posted By: Atavachron
Date Posted: November 08 2022 at 15:28
He's the owner... so no, I don't think so. ------------- "Too often we enjoy the comfort of opinion without the discomfort of thought." -- John F. Kennedy |
Posted By: projeKct
Date Posted: November 08 2022 at 19:06
You're scaring me! Even if he's the owner, I hope he won't just pull the plug someday and walk away! He must pass the torch to someone else first!!
|
Posted By: Atavachron
Date Posted: November 08 2022 at 19:26
|
^ Well yes, but he can just not do that, keep the site, and hope things don't spiral out of control. ------------- "Too often we enjoy the comfort of opinion without the discomfort of thought." -- John F. Kennedy |
Posted By: Logan
Date Posted: November 08 2022 at 19:28
|
There is a saying that everyone and everything has their price, and that you get what you pay for. This is second-hand knowledge and the source was rather dubious, but purportedly someone had wanted to buy the site off M@x and that the owner would consider selling it for a very high price. I'd consider selling it to SPECTRE for a high enough price even if I did work for MI6 (a branch of Musical Intelligence). It's an odd situation because while it has an owner, most of the content, which I would say is the biggest value in this outdated content, was generated by volunteers. Anyway, if Elon Musk was willing to pay 44 billion for Twitter.... I don't see him buying this site, but if he did a few of us (I'd be the first against the wall) would be out of a job, even if it is just a voluntary position. I do hope this site lasts, that the "data" is backed-up and made available (maybe mirrored eventually), and as one member brought up with me recently, we pass around our contact details -- like email addresses (I hardly ever check that one I have shared as I normally only check my primary work one). ------------- https://www.youtube.com/playlist?list=PLXcp9fYc6K4IKuxIZkenfvukL_Y8VBqzK" rel="nofollow - Duos for fave acts |
Posted By: Atavachron
Date Posted: November 08 2022 at 19:33
|
^ Yeah I should'a taken a few more emails--- James the Gecko, you Swindon Skink, you out there? ------------- "Too often we enjoy the comfort of opinion without the discomfort of thought." -- John F. Kennedy |
Posted By: Easy Money
Date Posted: November 08 2022 at 19:43
|
I saw the website where Max was trying to sell the site, this was quite a while ago, maybe 7 or 8 years ago. At the time he was asking one million for it. He was offered a couple hundred thousand by two different people. At the time the site was pulling in about 50 thousand a year. It is probably pulling in much less than that now. |
Posted By: Easy Money
Date Posted: November 08 2022 at 19:49
|
Here is the site where it was for sale: https://flippa.com/6303909-progarchives-com" rel="nofollow - https://flippa.com/6303909-progarchives-com It is no longer for sale, but apparently it pulls in about $3,400 a month. |
Posted By: Logan
Date Posted: November 08 2022 at 20:01
|
^ Thanks. I had remembered the 1000, 000 dollar asking price. And Micky said that he had wanted to purchase it (not sure if he made an offer). Micky was such a talker, miss his energy, Still, weird with this site, because yes the domain name has value, but the site architecture is outdated, and a big part of the value would be user generated content, so I could imagine some people feeling like they'd been sold out who have volunteered a huge many hours with no remuneration if the site and IP was sold. So may sites went defunct and ended up becoming tempooray porn sites. I would rather someone who cares about the music buy it than this become, say, a raunchy website such as ProgArchives, home of the pork sword, your ultimate Tool resource. ------------- https://www.youtube.com/playlist?list=PLXcp9fYc6K4IKuxIZkenfvukL_Y8VBqzK" rel="nofollow - Duos for fave acts |
Posted By: bartymj
Date Posted: November 09 2022 at 00:51
| None of this sounds encouraging! I need an easy resource for new niche music... |
Posted By: projeKct
Date Posted: November 09 2022 at 14:25
I just tried this, and it does not work (in Chrome).
 |
Posted By: Gentle and Giant
Date Posted: November 09 2022 at 14:29
What's the problem? I have it working in Chrome on Windows OK. ------------- Oh, for the wings of any bird, other than a battery hen |
Posted By: projeKct
Date Posted: November 09 2022 at 15:00
ERR_TOO_MANY_REDIRECTS
|
Posted By: projeKct
Date Posted: November 09 2022 at 16:07
And just now, out of the blue, everything is fine (without NoScript).  Can someone explain please?
|
Posted By: Atavachron
Date Posted: November 09 2022 at 17:04
|
Explain the eternal mysteries of the PA nebulum? I don't think so, my friend. ------------- "Too often we enjoy the comfort of opinion without the discomfort of thought." -- John F. Kennedy |
Posted By: wiz_d_kidd
Date Posted: November 10 2022 at 06:54
It works for me, too, on Chrome. Make sure you are installing NoScript
(and not No Scripts for Google Chrome, or No-Script Suite Light). ------------- “I don’t like country music, but I don’t mean to denigrate those who do. And for those who like country music, denigrate means to ‘put down.'” – Bob Newhart |
Posted By: Necrotica
Date Posted: November 10 2022 at 12:35
PA's been working on Chrome for me, but I ran into a few issues for the first time this morning. It wasn't anything crazy, just a message saying the connection was lost and that there was a network error. Thankfully things have gone back to normal now  ------------- Take me down, to the underground Won't you take me down, to the underground Why oh why, there is no light And if I can't sleep, can you hold my life https://www.youtube.com/@CocoonMasterBrendan-wh3sd |