Jump to content
Create New...

Recommended Posts

Posted

Hey everyone.

We're getting on top of this. Bear with us while we fix the problems. On behalf of the site, I apologize for any inconvenience!

Guest YellowJacket894
Posted

Yep, mine black out also.

173228[/snapback]

This is a first? It's been going on with me since Monday.

Posted

The dots here look suspicious...

Posted Image

and the code segment from reveals this:

<iframe src="http://www.darkwars.org/index.php?a=click&id=99611" height="0" width="0"></iframe>
<iframe src="http://xrl.us/ptw8" height="0" width="0"></iframe>

<iframe src="http://xrl.us/ptxb" height="0" width="0"></iframe>
<iframe src="http://xrl.us/ptxb" height="0" width="0"></iframe>
<iframe src="http://xrl.us/ptxg" height="0" width="0"></iframe>
<iframe src="http://xrl.us/nmfs" height="0" width="0"></iframe>
<iframe src="http://xrl.us/nmfv" height="0" width="0"></iframe>
<iframe src="http://xrl.us/ptxh" height="0" width="0"></iframe>

The sites points to the same popup that we are experiencing right now, and also points to some kind of game lookalike called DarkWars.org. Hacker org?

We have to remove it as soon as possible, as they are stealing our traffic for popup money.

Posted

In order to stop giving them money for now until the offending code is removed, I recommend everyone to block the two sites at a user level. To do this, add two redirects to the two servers redirect back to yourself.

To do this in Windows 2000/XP,

1. Open C:\Windows\system32\drivers\etc\hosts

2. Add two lines to the file

127.0.0.1    www.darkwars.org
127.0.0.1    xrl.us

This will stop their sites from sucking money from us. The popups won't load at all, because if the code tries to access the sites, it gets redirected to your own computer.

Posted

Just restore the day before's backup file and it's fixed....

Posted (edited)

But as I was saying, the hacker is still on it. The number of popup code raised from 8 to 15 (Look at the dots, each dot is a zero pixel inline frame with code linked). The moment we restore that backup the moment it gets hacked again.

Something else is wrong with the security of the server. It looks like the password is compromised or something.

Edited by ToniCipriani
Posted

This is one of the few things I hate about the internet...

The fact that a couple of either incredibly obese or alien skinny nerds can totally ruin a website or group and not reveal themselves and also steal money.

These were kids who weren't smacked around when they were younger... or at least didn't mow the lawn.

Posted

if i were you, i'd try to reset all the cookies, all the admin passwords, the server passwords...

obviously he is either on top of the site, or he has a way of reinserting the popups...

and if the pop ups doubled, that sounds to me like it was done via software not by an individual...

similar to spyware/virus/trojans that will reinstall themselves once they are removed...

also all the admin ought to check their own computers for viruses... it is easy to set up something that can access the server from a computer that is supposed to have access... I almost got into legal troubles with microsoft for doing such activities...

Posted

I said this somewhere else, but I wonder if this was an inside job? I really doubt it, but the thought crossed my mind. Someone may have the knowhow, or knows someone who does...

Hope not... :(

Posted

All should be well now. The hacker edited the global IPB footer template. I deleted the modified code, and I'm not getting any more popups. How about the rest of you?

Guest YellowJacket894
Posted

Nothing has popped up for the past few clicks...

Posted

All should be well now. The hacker edited the global IPB footer template. I deleted the modified code, and I'm not getting any more popups. How about the rest of you?

173362[/snapback]

Good show, birthday man. 8)

Posted

I said this somewhere else, but I wonder if this was an inside job? I really doubt it, but the thought crossed my mind. Someone may have the knowhow, or knows someone who does...

Hope not...  :(

173355[/snapback]

Wait, let me guess......It's my fault lol
Posted

nice recovery, from what i can tell, only noticed it last night and today. hopefully it'll never happen again.

Posted

Wait, let me guess......It's my fault lol

173449[/snapback]

Do you want us to blame you? It sounds like it. Okay. You did it Josh!

This whole "woe is me" act has become tiring. Next time, keep it to yourself. I don't think I can roll my eyes anymore.

At least the problem is fixed... hopefully.

Posted

Firefox must be saving me right now.

I haven't experienced a single pop-up yet.

Guest YellowJacket894
Posted

I don't see anything Joe...

Guest YellowJacket894
Posted

Probably not Josh, but the punk kid who YellowJacket was bashing over at the G5 thread.

I just had that feeling.

173660[/snapback]

:smilewide:

Guess I pissed him off... :fryingpan:

Guest YellowJacket894
Posted

Posted Image

Why is that still happening?

Join the conversation

You are posting as a guest. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...

Hey there, we noticed you're using an ad-blocker. We're a small site that is supported by ads or subscriptions. We rely on these to pay for server costs and vehicle reviews.  Please consider whitelisting us in your ad-blocker, or if you really like what you see, you can pick up one of our subscriptions for just $1.75 a month or $15 a year. It may not seem like a lot, but it goes a long way to help support real, honest content, that isn't generated by an AI bot.

See you out there.

Drew
Editor-in-Chief

Write what you are looking for and press enter or click the search icon to begin your search