Go Back   vb.org Archive > vBulletin Modifications > Archive > vB.org Archives > General > General Hosting/Server Discussions
Reload this Page Someone trying to steal site/log user accounts?
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools
Someone trying to steal site/log user accounts? Details »»
Someone trying to steal site/log user accounts?
Version: , by TRR TRR is offline
Developer Last Online: Oct 2008 Show Printable Version Email this Page
Version: Unknown Rating:
Released: 01-11-2007 Last Update: Never Installs: 0
 
No support by the author.

When I was looking at my site using Google, the following link shows up in the top 10. It is a site that is not mine, but appears to be trying to act like mine. WTF?
My site is at http://qweeky.com

This guy is at
Code:
http://www.dylanhq.com/cgiproxy/nph-proxy.pl/111000A/http/qweeky.com/1/
Is this person trying to steal log-in information from my users? If so, how do I get rid of this shitbird?

Show Your Support

  • This modification may not be copied, reproduced or published elsewhere without author's permission.

Comments
  #2  
Old 01-11-2007, 12:23 PM
davidw's Avatar
davidw davidw is offline
 
Join Date: Jul 2005
Location: Arkansas
Posts: 2,815
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
From what I understand about the method being used - it is sort of a filter for browsing anonymously, allowing users to search for things and go to sites without revealing their ip/proxy/etc. Of course, I've not had much time to look into this so I'm not 100% sure.
Reply With Quote
  #3  
Old 01-11-2007, 01:14 PM
TRR TRR is offline
 
Join Date: Jan 2005
Location: San Antonio, TX
Posts: 79
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Thanks for the reply; what about commerce software? I have been playing around with some and recently added it to my site: should I just create a link so that users escape that site before they put any credit card information in? I am really not comfortable with another site pretending it is mine.

Also, isn't that supposed to be bad for search ranking? I am cleaning out my garage right now, but as soon as I get done I am about to go research this a little more and try and find out what the deal is.
Reply With Quote
  #4  
Old 01-11-2007, 01:29 PM
davidw's Avatar
davidw davidw is offline
 
Join Date: Jul 2005
Location: Arkansas
Posts: 2,815
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
If you have commerce or anything that uses credit (or any other form of payment) I would strongly advise using SSL for that. This will help protect your customers/users.
Reply With Quote
  #5  
Old 01-11-2007, 06:57 PM
TRR TRR is offline
 
Join Date: Jan 2005
Location: San Antonio, TX
Posts: 79
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Quote:
Originally Posted by christianb View Post
If you have commerce or anything that uses credit (or any other form of payment) I would strongly advise using SSL for that. This will help protect your customers/users.

I do have SSL for the portion of my site that takes payments; I am still wondering about that site though. I don't like that it represents itself as my site.
Reply With Quote
  #6  
Old 01-11-2007, 07:03 PM
noppid noppid is offline
 
Join Date: Mar 2003
Location: Florida
Posts: 1,875
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Maybe you can just block their IP? 72.21.56.34 seems to be the site and primary DNS IP A Record. 72.21.56.35 is the second DNS server.

EDIT: I tested this and it worked to stop them. I did it at the server level for .34 and .35.
Reply With Quote
  #7  
Old 01-11-2007, 08:07 PM
amykhar's Avatar
amykhar amykhar is offline
 
Join Date: Oct 2001
Location: PA
Posts: 4,438
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Check with your members. Some people are blocked from browsing forums at work, so they go through proxies like this one to gain access. You might have an active member of your forums who is just desperate to play while at work or school.
Reply With Quote
  #8  
Old 01-12-2007, 11:51 AM
TRR TRR is offline
 
Join Date: Jan 2005
Location: San Antonio, TX
Posts: 79
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Quote:
Originally Posted by noppid View Post
Maybe you can just block their IP? 72.21.56.34 seems to be the site and primary DNS IP A Record. 72.21.56.35 is the second DNS server.

EDIT: I tested this and it worked to stop them. I did it at the server level for .34 and .35.
Quote:
Originally Posted by amykhar View Post
Check with your members. Some people are blocked from browsing forums at work, so they go through proxies like this one to gain access. You might have an active member of your forums who is just desperate to play while at work or school.

Thanks for both replies. You have both given me something to consider. I was about to do the block until I read your post, Amy. I guess I better ask my users first. It also appears that https doesn't work through that site, but I am wondering if he couldn't also set up an SSL certificate and make pointers work that way...
Reply With Quote
Reply

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 08:34 PM.

Contact Us - Archive - Top

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.04357 seconds
  • Memory Usage 2,270KB
  • Queries Executed 21 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)bbcode_code
  • (3)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)modsystem_post
  • (1)navbar
  • (6)navbar_link
  • (120)option
  • (8)post_thanks_box
  • (8)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (8)post_thanks_postbit_info
  • (7)postbit
  • (8)postbit_onlinestatus
  • (8)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 
Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete