The Arcive of Official vBulletin Modifications Site.

Lionel · #1 06-14-2005, 02:54 PM

I posted about it last week but could not find the posts.

Strangely, in the posts (so far looks like it's only in the quotes) some words are being linked to some searchmiracle.php.

Some people here told me that I had spyware on my PC. Problem is I have not posted for one day, and everyone else sees those links. So could be that my users have the spyware. How do I prevent them to be transferred to forums?

Marco van Herwaarden · #2 06-14-2005, 02:57 PM

Could you provide a link to one of those posts and a test login.

Lionel · #3 06-14-2005, 03:07 PM

username test
password test

the first post on that page... words bank, radio, forum etc...
here

Marco van Herwaarden · #4 06-14-2005, 03:19 PM

What is overlib.js?

That is not a standard vB javascript file.

And my browser go totally crazy from all blocked cookies if i try to visit that page.

Edit: most blocked cookies are also because you where linking me to the www. version of your site, and all links/cookies use your site without www.

Lionel · #5 06-14-2005, 03:22 PM

overlib has been there for a while. it is being used to display certain texts in a box, like the geek's autolink

Corriewf · #6 06-14-2005, 03:24 PM

You have that hack enabled where you can link certain words right? If so I would chat with the coder and or check your coding. Can you access searchmiracle.php from your ftp? I would also notify vbulletin.com if all else fails as this could mean an exploit of some kind.

Marco van Herwaarden · #7 06-14-2005, 03:24 PM

I think those links are from a hack you installed: Geek Auto Linker.

Edit: Not hte only one with that answer

Lionel · #8 06-14-2005, 03:24 PM

Quote:

Originally Posted by MarcoH64

What is overlib.js?

Edit: most blocked cookies are also because you where linking me to the www. version of your site, and all links/cookies use your site without www.

I am not sure I follow you on that

don't have searchmiracle anywhere in my coding... and this seems to happen only with a certain user.

Quote:

Originally Posted by MarcoH64

I think those links are from a hack you installed: Geek Auto Linker.

Edit: Not hte only one with that answer

geek autolink displays all links differently

what is HTE?

the automerge keeps on posting in same post and uou might have missed it.

Corriewf · #9 06-14-2005, 03:46 PM

Its hard to tell because of the lang used but the coding for vbpager looks wrong and the searchmiracle is coming from coding from within.

Also wheres the code for the warning system?

 

I would check the code for the autolinker for the source of your problem.

Lionel · #10 06-14-2005, 03:53 PM

I just finished checking all codes. No mention of searchmiracle.php This seems to happen from quotes made by a specific user. Maybe she is the one who is infected and transfering to me?

At vb.com they are going to tell me no support because of the hacking.

Marco, 2 questions:

1-what is hte?

2-you just solved a cookie issue i had for the longest time and posted http://www.vbulletin.com/forum/showthread.php?t=141069

how can I have both? http://site and http://www.site ?

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.04635 seconds Memory Usage 2,247KB Queries Executed 13 (?)
More Information
Template Usage: (1)SHOWTHREAD (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)ad_showthread_beforeqr (1)ad_showthread_firstpost (1)ad_showthread_firstpost_sig (1)ad_showthread_firstpost_start (2)bbcode_quote (1)footer (1)forumjump (1)forumrules (1)gobutton (1)header (1)headinclude (1)navbar (3)navbar_link (120)option (1)pagenav (1)pagenav_curpage (2)pagenav_pagelink (10)post_thanks_box (10)post_thanks_button (1)post_thanks_javascript (1)post_thanks_navbar_search (10)post_thanks_postbit_info (10)postbit (10)postbit_onlinestatus (10)postbit_wrapper (1)spacer_close (1)spacer_open (1)tagbit_wrapper Phrase Groups Available: global inlinemod postbit posting reputationlevel showthread	Included Files: ./showthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/functions_bigthree.php ./includes/class_postbit.php ./includes/class_bbcode.php ./includes/functions_reputation.php ./includes/functions_post_thanks.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete showthread_start showthread_getinfo forumjump showthread_post_start showthread_query_postids showthread_query bbcode_fetch_tags bbcode_create showthread_postbit_create postbit_factory postbit_display_start post_thanks_function_post_thanks_off_start post_thanks_function_post_thanks_off_end post_thanks_function_fetch_thanks_start post_thanks_function_fetch_thanks_end post_thanks_function_thanked_already_start post_thanks_function_thanked_already_end fetch_musername postbit_imicons bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete postbit_display_complete post_thanks_function_can_thank_this_post_start pagenav_page pagenav_complete tag_fetchbit_complete forumrules navbits navbits_complete showthread_complete
Messages:

The Arcive of Official vBulletin Modifications Site.

It is not a VB3 engine, just a parsed copy!