Jump to content
News
Reviews
Discussons
Activity
Create New...
Close

Popups...

Variance

By Variance
in Site News and Feedback

 Share

Recommended Posts

ToniCipriani Newbie

ToniCipriani

Posted
Posted

The dots here look suspicious...

Posted Image

and the code segment from reveals this:

<iframe src="http://www.darkwars.org/index.php?a=click&id=99611" height="0" width="0"></iframe>
<iframe src="http://xrl.us/ptw8" height="0" width="0"></iframe>

<iframe src="http://xrl.us/ptxb" height="0" width="0"></iframe>
<iframe src="http://xrl.us/ptxb" height="0" width="0"></iframe>
<iframe src="http://xrl.us/ptxg" height="0" width="0"></iframe>
<iframe src="http://xrl.us/nmfs" height="0" width="0"></iframe>
<iframe src="http://xrl.us/nmfv" height="0" width="0"></iframe>
<iframe src="http://xrl.us/ptxh" height="0" width="0"></iframe>

The sites points to the same popup that we are experiencing right now, and also points to some kind of game lookalike called DarkWars.org. Hacker org?

We have to remove it as soon as possible, as they are stealing our traffic for popup money.

Link to comment
Share on other sites
ToniCipriani Newbie

ToniCipriani

Posted
Posted

In order to stop giving them money for now until the offending code is removed, I recommend everyone to block the two sites at a user level. To do this, add two redirects to the two servers redirect back to yourself.

To do this in Windows 2000/XP,

1. Open C:\Windows\system32\drivers\etc\hosts

2. Add two lines to the file

127.0.0.1    www.darkwars.org
127.0.0.1    xrl.us

This will stop their sites from sucking money from us. The popups won't load at all, because if the code tries to access the sites, it gets redirected to your own computer.

Link to comment
Share on other sites
ToniCipriani Newbie

ToniCipriani

Posted
Posted (edited)

But as I was saying, the hacker is still on it. The number of popup code raised from 8 to 15 (Look at the dots, each dot is a zero pixel inline frame with code linked). The moment we restore that backup the moment it gets hacked again.

Something else is wrong with the security of the server. It looks like the password is compromised or something.

Edited by ToniCipriani
Link to comment
Share on other sites
FAPTurbo Newbie

FAPTurbo

Posted
Posted

This is one of the few things I hate about the internet...

The fact that a couple of either incredibly obese or alien skinny nerds can totally ruin a website or group and not reveal themselves and also steal money.

These were kids who weren't smacked around when they were younger... or at least didn't mow the lawn.

Link to comment
Share on other sites
Newbiewar Newbie

Newbiewar

Posted
Posted

if i were you, i'd try to reset all the cookies, all the admin passwords, the server passwords...

obviously he is either on top of the site, or he has a way of reinserting the popups...

and if the pop ups doubled, that sounds to me like it was done via software not by an individual...

similar to spyware/virus/trojans that will reinstall themselves once they are removed...

also all the admin ought to check their own computers for viruses... it is easy to set up something that can access the server from a computer that is supposed to have access... I almost got into legal troubles with microsoft for doing such activities...

Link to comment
Share on other sites
z28luvr01 Newbie

z28luvr01

Posted
Posted

All should be well now. The hacker edited the global IPB footer template. I deleted the modified code, and I'm not getting any more popups. How about the rest of you?

Link to comment
Share on other sites
Guest Josh

Guest Josh

Posted
Posted

I said this somewhere else, but I wonder if this was an inside job? I really doubt it, but the thought crossed my mind. Someone may have the knowhow, or knows someone who does...

Hope not...  :(

173355[/snapback]

Wait, let me guess......It's my fault lol
Link to comment
Share on other sites
Cadillacfan Newbie

Cadillacfan

Posted
Posted

Wait, let me guess......It's my fault lol

173449[/snapback]

Do you want us to blame you? It sounds like it. Okay. You did it Josh!

This whole "woe is me" act has become tiring. Next time, keep it to yourself. I don't think I can roll my eyes anymore.

At least the problem is fixed... hopefully.

Link to comment
Share on other sites
Guest YellowJacket894

Guest YellowJacket894

Posted
Posted

Probably not Josh, but the punk kid who YellowJacket was bashing over at the G5 thread.

I just had that feeling.

173660[/snapback]

:smilewide:

Guess I pissed him off... :fryingpan:

Link to comment
Share on other sites

Join the conversation

You are posting as a guest. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing


×
×
  • Create New...

Hey there, we noticed you're using an ad-blocker. We're a small site that is supported by ads or subscriptions. We rely on these to pay for server costs and vehicle reviews.  Please consider whitelisting us in your ad-blocker, or if you really like what you see, you can pick up one of our subscriptions for just $1.75 a month or $15 a year. It may not seem like a lot, but it goes a long way to help support real, honest content, that isn't generated by an AI bot.

See you out there.

Drew
Editor-in-Chief

I've whitelisted
Continue without support

Write what you are looking for and press enter or click the search icon to begin your search

Change privacy settings