View Full Version : Someone trying to steal site/log user accounts?
When I was looking at my site using Google, the following link shows up in the top 10. It is a site that is not mine, but appears to be trying to act like mine. WTF?
My site is at http://qweeky.com
This guy is at
http://www.dylanhq.com/cgiproxy/nph-proxy.pl/111000A/http/qweeky.com/1/
Is this person trying to steal log-in information from my users? If so, how do I get rid of this shitbird?
davidw
01-11-2007, 12:23 PM
From what I understand about the method being used - it is sort of a filter for browsing anonymously, allowing users to search for things and go to sites without revealing their ip/proxy/etc. Of course, I've not had much time to look into this so I'm not 100% sure.
Thanks for the reply; what about commerce software? I have been playing around with some and recently added it to my site: should I just create a link so that users escape that site before they put any credit card information in? I am really not comfortable with another site pretending it is mine.
Also, isn't that supposed to be bad for search ranking? I am cleaning out my garage right now, but as soon as I get done I am about to go research this a little more and try and find out what the deal is.
davidw
01-11-2007, 01:29 PM
If you have commerce or anything that uses credit (or any other form of payment) I would strongly advise using SSL for that. This will help protect your customers/users.
If you have commerce or anything that uses credit (or any other form of payment) I would strongly advise using SSL for that. This will help protect your customers/users.
I do have SSL for the portion of my site that takes payments; I am still wondering about that site though. I don't like that it represents itself as my site.
noppid
01-11-2007, 07:03 PM
Maybe you can just block their IP? 72.21.56.34 seems to be the site and primary DNS IP A Record. 72.21.56.35 is the second DNS server.
EDIT: I tested this and it worked to stop them. :) I did it at the server level for .34 and .35.
amykhar
01-11-2007, 08:07 PM
Check with your members. Some people are blocked from browsing forums at work, so they go through proxies like this one to gain access. You might have an active member of your forums who is just desperate to play while at work or school.
Maybe you can just block their IP? 72.21.56.34 seems to be the site and primary DNS IP A Record. 72.21.56.35 is the second DNS server.
EDIT: I tested this and it worked to stop them. :) I did it at the server level for .34 and .35.
Check with your members. Some people are blocked from browsing forums at work, so they go through proxies like this one to gain access. You might have an active member of your forums who is just desperate to play while at work or school.
Thanks for both replies. You have both given me something to consider. I was about to do the block until I read your post, Amy. I guess I better ask my users first. It also appears that https doesn't work through that site, but I am wondering if he couldn't also set up an SSL certificate and make pointers work that way...
vBulletin® v3.8.12 by vBS, Copyright ©2000-2025, vBulletin Solutions Inc.