Hi all. Running a site on Apache Linux with Elgg Release - 1.9.7. My windows users are getting prompts to download a bunch of seemingly random .swf files , e.g. 1TwOKtv8PnY.swf, 2CGyDXCABQo.swf .... etc. I've scanned them for malwmare/antivirus with clam and avast, and they don't appear to trigger any alerts.
Does anyone know what these are? have I been hacked? Any way to get rid of them?
Thanks for the help
info@elgg.org
Security issues should be reported to security@elgg.org!
©2014 the Elgg Foundation
Elgg is a registered trademark of Thematic Networks.
Cover image by RaĆ¼l Utrera is used under Creative Commons license.
Icons by Flaticon and FontAwesome.
- iionly@iionly
iionly - 0 likes
- knussear@knussear
knussear - 0 likes
- iionly@iionly
iionly - 0 likes
- knussear@knussear
knussear - 0 likes
You must log in to post replies.You might want to ask the support of your webhoster about it. Maybe they inject these files (ads?).
On further investigation this only happens (for me) with IE in windows, and only happens when there is a video preview/still pushed from youtube in flash. I'm using the Webgalli videos plugin V1.5.
Then it's most likely just the video player flash executable (swf file) that's not correctly handled by IE. Instead of executing it it's handled as downloadable file. Do you have the flash plugin installed in IE? If yes, the problem is likely caused by the way the video is embedded in the page by the Videos plugin (oftenly IE needs such kind of things handled differently than any other browser). If the flash plugin is not installed in IE, install it and try again.
Yes that works. I'm not a windows users but I installed the flash player in IE in my parallels test OS and that fixes the problem. Thanks!!!