TP-Docs
HTML5 Icon HTML5 Icon HTML5 Icon
TP on Social Media

Recent

User

Welcome to TinyPortal. Please login or sign up.

Stats

Members
Stats
  • Total Posts: 195,828
  • Total Topics: 21,286
  • Online today: 59
  • Online ever: 8,223 (February 19, 2025, 04:35:35 AM)
Users Online
  • Users: 1
  • Guests: 58
  • Total: 59
  • @rjen

Hacked today,, I think??

Started by anyoldcard, March 19, 2008, 06:13:38 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

anyoldcard

March 19, 2008, 06:13:38 AM Last Edit: March 22, 2008, 10:16:06 PM by G6
I deleted a post today that stated that I was hacked by AnCesTorBLooD. I thought he was goofy so I banned and deleted him. I was later looking through the visitors of today and I clicked on a link and it led me to this hackers reporting site or I think thats what it is. My site is on the list and most of the other sites I looked at also were smf forums with TP installed. Is there any connection and is this a legit site?

http://www.zone-h.org/component/option,com_attacks/Itemid,43/filter_defacer,AnCesTorBLooD/page,1

Hairy

#1
March 19, 2008, 06:35:52 AM
It sounds to me like it is just spam and by going to that link you may have just compromised your own PC  ::)

I would submit a report at SMF about it just in case

G6Cad

#2
March 19, 2008, 06:40:15 AM
We are aware of this anyoldcard, and we are looking in to it as we speak.
Noting seem to be happening with the sites besides posts made in the forum so far.
But we know and are looking into it.

Smoky

#3
March 19, 2008, 06:47:14 AM
and if it did corrupt your pc, you can contact the owner of the site, curtesty of godaddy:

Quote

Domain ID:D83634669-LROR
Domain Name:ZONE-H.ORG
Created On:14-Feb-2002 14:34:58 UTC
Last Updated On:15-Feb-2008 01:23:55 UTC
Expiration Date:14-Feb-2009 14:34:58 UTC
Sponsoring Registrar:Register.IT SPA (R124-LROR)
Status:OK
Registrant ID:RR1367-EURO
Registrant Name:As Domina Privacy & Security
Registrant Organization:As Domina Privacy & Security
Registrant Street1:Suur Patarei 3-8
Registrant Street2:
Registrant Street3:
Registrant City:Tallinn
Registrant State/Province:TL
Registrant Postal Code:40115
Registrant Country:EE
Registrant Phone:+372.6273030
Registrant Phone Ext.:
Registrant FAX:+00.00000000
Registrant FAX Ext.:
Registrant Email:admin@zone-h.org
Admin ID:a6a2f4d82c0d
Admin Name:Preatoni Roberto
Admin Organization:Roberto Preatoni
Admin Street1:Suur Patarei 3-8
Admin Street2:
Admin Street3:
Admin City:Tallinn
Admin State/Province:TL
Admin Postal Code:40115
Admin Country:EE
Admin Phone:+372.6273030
Admin Phone Ext.:
Admin FAX:
Admin FAX Ext.:
Admin Email:admin@zone-h.org
Tech ID:REGISTER-TECH
Tech Name:REGISTER.IT S.p.a.
Tech Organization:REGISTER.IT S.p.a.
Tech Street1:via A. Ponti, 6
Tech Street2:
Tech Street3:
Tech City:Bergamo
Tech State/Province:BG
Tech Postal Code:24126
Tech Country:IT
Tech Phone:+39.0353230400
Tech Phone Ext.:
Tech FAX:+39.0353230312
Tech FAX Ext.:
Tech Email:support@register.it
Name Server:NS0.XNAME.ORG
Name Server:NS1.XNAME.ORG
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:

Hairy

#4
March 19, 2008, 07:00:52 AM Last Edit: March 19, 2008, 07:03:49 AM by Hairy
You go Smoky :)

You should be fine, that site appears to be a common place for defaced sites to be posted.

But I myself am very wary of clicking links like that, you never know what's waiting for you at the other end  ;)


Something interesting I found while searching:
QuoteTuesday, January 9, 2007
Zone-h got defaced on Christmas
Zone-h.org was defaced on Christmas by Cyber-Terrorist, and the problem was due to human error. The forensic is now publish on a zone-h post and seems like a simple hack like grabbing cookie from a hotmail xss bug can get you on defacing the biggest defacer mirror in the world.

anyoldcard

#5
March 19, 2008, 07:45:58 AM
Thanks everyone. I found the link through my sitemeter and it was not one that he had left or anything. Just like you, I pay real close attention before clicking.

The site has other url's that were actually defaced (different page put up) but he did not do anything at my forum other than make a post that he had hacked it. Heck, I did not even worry about it much until I found that site and my forum was number 4 on the list.

I was hacked about 5 years ago by K-4 but he got in through PHP-Nuke because I did not install the security mod. Not many of them hack, it's actually just finding known vulnerabilities in different programs.

Just when things start going well, I was up to average of 250 unique vistors a day and had even made a post about it in the forum. Guess I'll learn to keep my mouth shut. Thanks again for the posts.

IchBin

#6
March 19, 2008, 01:05:56 PM
Just a spammer...

anyoldcard

#7
March 20, 2008, 06:08:16 PM
Thanks Ichbin, do you believe that I blocked that guy's server and I lost over half my traffic. It's ok though, who needs that kind of traffic anyway?

IchBin

#8
March 20, 2008, 08:03:21 PM
haha... that is awesome. I don't know what it is about the Turkish hackers....

G6Cad

#9
March 22, 2008, 10:15:54 PM
Seems like it's solved in a way so i will change this to solved.  :)
Print
Go Up Pages1
User actions

This website is proudly hosted on Crocweb Cloud Website Hosting.