Hey Guys, Whilst I was away enjoying my ban (for a lousy thread bump) I was up against several hacked sites, even DP was returning these dodgy results, I am presuming it or they were hacked, the results keep coming up when I am in direct competition with them .... <<<< WARNING THESE SITES MAY HARM YOUR COMPUTER >>>> I spot these sites by looking for this : /title%3E%3CFRAMESET%3E%3CFRAME Example of infected site : http://www.cityofattleboro.us/searc...AMESET><FRAME/SRC='//0131.0225.0363.0311/a/'> </title><frameset><frame/src='numbers'> - is always on the URL with exactly the same 'Number's where it says numbers above - which gives further evidence that all these individual sites are hacked by the same person / site. If I find another DP one I will place it in this thread. ~~~~~~ To find several of these hacked sites search for : compaq cq 50 139wm Within Google - the results are on the front page and second page, scroll over the URLs to see the </frameset> that I mentioned above, click on the URLs and you will get the same warning each time. Thanks, Jason
i have noticed one thing the part of url "/title%3E%3CFRAMESET%3E%3CFRAME" is with search.asp which is an active server page, seems to botnet attack.... The hacker is running up solicited frameset hack embedded into a web page.
Im lost... but what kind of hack... each site is hacked ? or you have had your browser hijacked ? sorry i dont quite understand, what you mean. edit: compaq cq 50 139wm <-- aww isee what you mean at the bottom thats very very strange, i think someone should try and contact the owners of these sites
Yeah .... scroll over the URL above and you will see </title><frameset><frame/src='numbers'> at the end of the URL .... that alone is getting him enough SEO to dominate the long tail searches - same as what I am trying to get visitors from - to a legitimate site .... sucks that he's always behind me or (worse in front of me) and when I was seeing DP pages attacked also - I was shocked. Yup each site, compaq cq 50 139wm is really popular at the moment and he's dominating the search results with the hacked pages/sites - just search that in Google and you will see the results in Google on page one and two.
But it is a nice thing firefox prevents me from getting to these sites. The question is: is it really enough for these hackers to get some good backlinks to this malformed URL to appear in the third place on google results page?!
Yeah I haven't viewed one of these sites either .... actually stumbled upon these whilst spying on competitors. Unfortunately not everyone will have the privilege of the warnings. I know - I loose front page posi's to these hackers daily .... and it's not just one or two searches : Here's a popular one with competition : Racist Obama Jokes << Google Search Only Again dominating results from various web sites.
This is a XSS (cross site scripting) attack. Sites that don't properly validate inputs will be vulnerable to this. The numbers are actually a Octal Value of the domain.
I got banned for a thread bumbed too...sorta crazy... Ontopic: how did you know DP was doing tihs? Like when did you see it?
LoL nah DP wasn't doing this - it happened to DP, I seen several DP pages hacked with this technique.