Zach
05-13-2004, 10:00 PM
I read a few posts about url spamming and spyware screwing with members homepages -
Just threw this together - just copying my post from over at .com -
Ok this should at least screw with em and slow em down (very simple)
find
// ############################### start dst autodetect switch ###############################
in profile.php (html|php3|etc)
add this right above that line
$homepage=$$bbuserinfo[username];
Then in templates - find the modifyprofile template
find
<td>$vbphrase[home_page_url]:<br /><input type="text" class="bginput" name="homepage" id="tb_homepage" value="$bbuserinfo[homepage]" size="50" maxlength="200" /></td>
make it this
<td>$vbphrase[home_page_url]:<br /><input type="text" class="bginput" name="$bbuserinfo[username]" id="tb_homepage" value="$bbuserinfo[homepage]" size="50" maxlength="200" /></td>
Let me know if this works - I am not sure if it will get past init.php or not - some of my files are not very vBulletinish anymore
Also, if anyone that is getting this, do me a favor - pm me the sites, urls - I personally have not had this at all that I have noticed - which makes me wonder if the spyware garbage is keying in on either urls that have forum in it, or its looking for profile.php, or if it is just looking for formfields name hompage. (I use .html so if its looking for profile.php, it would never hit me)
Gonna go see if I can get infected now - then I can see exactly what this garbage is doing - but this fix I am pretty sure will fix it from happening anymore.
Just threw this together - just copying my post from over at .com -
Ok this should at least screw with em and slow em down (very simple)
find
// ############################### start dst autodetect switch ###############################
in profile.php (html|php3|etc)
add this right above that line
$homepage=$$bbuserinfo[username];
Then in templates - find the modifyprofile template
find
<td>$vbphrase[home_page_url]:<br /><input type="text" class="bginput" name="homepage" id="tb_homepage" value="$bbuserinfo[homepage]" size="50" maxlength="200" /></td>
make it this
<td>$vbphrase[home_page_url]:<br /><input type="text" class="bginput" name="$bbuserinfo[username]" id="tb_homepage" value="$bbuserinfo[homepage]" size="50" maxlength="200" /></td>
Let me know if this works - I am not sure if it will get past init.php or not - some of my files are not very vBulletinish anymore
Also, if anyone that is getting this, do me a favor - pm me the sites, urls - I personally have not had this at all that I have noticed - which makes me wonder if the spyware garbage is keying in on either urls that have forum in it, or its looking for profile.php, or if it is just looking for formfields name hompage. (I use .html so if its looking for profile.php, it would never hit me)
Gonna go see if I can get infected now - then I can see exactly what this garbage is doing - but this fix I am pretty sure will fix it from happening anymore.