Archvile
User Profile | Member List | F.A.Q | Privacy Policy | New Blog | Search Forums | Forums Home
Doomworld Forums : Powered by vBulletin version 2.2.5 Doomworld Forums > Classic Doom > Doom General > Something wrong with Realm667.
Pages (4): « 1 2 [3] 4 »  
Author
All times are GMT. The time now is 11:11. Post New Thread    Post A Reply
Avoozl
Forum Staple


Posts: 3551
Registered: 06-09



Tormentor667 said:
You must be the greatest idiot possible on this planet :D

Well they did say they were joking. :P

Anyways it's a good thing you managed to get the site back up.

Last edited by Avoozl on Dec 28 2012 at 16:04

Old Post Dec 28 2012 04:51 #
Avoozl is offline Youtube || Blog || PM || Post History || Add Buddy IP || Edit || Quote
djvero
Mini-Member


Posts: 65
Registered: 04-10


Yea, good to see the site back!

Old Post Dec 28 2012 15:26 #
djvero is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
buttspit
Member


Posts: 619
Registered: 04-11



Tormentor667 said:
You must be the greatest idiot possible on this planet :D

Anyway, we are back online!

Didn't you try to convince people you had an imp outside your window?

Old Post Dec 28 2012 19:49 #
buttspit is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Gez
Why don't I have a custom title by now?!


Posts: 12525
Registered: 07-07


Aaaaaaand it's hacked again.


If you do visit, please make sure to TURN OFF JAVASCRIPT FIRST.

I found an iframe injection code in the shoutbox js.

Old Post Dec 28 2012 21:14 #
Gez is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Blzut3
Member


Posts: 584
Registered: 06-04


I'm guessing the answer is no, but since I haven't been keeping up with this: Have you tried taking the forums offline (as in remove them from a public area on the server) and seeing if it's Joomla that's being hacked? Running Joomla 1.5 doesn't seem all that secure to me. (Apparently 1.5 is from before we learned publishing version numbers on the website is a really bad idea.)

Old Post Dec 28 2012 23:07 #
Blzut3 is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
printz
CRAZY DUMB ZEALOT


Posts: 9261
Registered: 06-06



Gez said:
Aaaaaaand it's hacked again.


If you do visit, please make sure to TURN OFF JAVASCRIPT FIRST.

I found an iframe injection code in the shoutbox js.

If I don't turn off Javascript, can it harm my pc/macbook/tablet (regardlessly)?

__________________
Top /idgames WADsAutomatic Wolfenstein - Version 1.0.1 - also on Android (Updated 28/03/2015)

Old Post Dec 28 2012 23:18 #
printz is offline Twitter account Youtube Github || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Gez
Why don't I have a custom title by now?!


Posts: 12525
Registered: 07-07


Maybe? I have no idea what range of OS will be affected by the malware it tries to make you download. And I don't especially care to find out.

Old Post Dec 29 2012 00:00 #
Gez is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
NaturalTvventy
Forum Regular


Posts: 836
Registered: 06-09


Wasn't there a WIP compilation of sky textures on the forum? If anyone has it, please let me know.

Old Post Jan 1 2013 17:46 #
NaturalTvventy is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Blue Shadow
Member


Posts: 314
Registered: 09-12



NaturalTvventy said:
Wasn't there a WIP compilation of sky textures on the forum? If anyone has it, please let me know.

This one?

Old Post Jan 1 2013 23:52 #
Blue Shadow is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
NaturalTvventy
Forum Regular


Posts: 836
Registered: 06-09



Blue Shadow said:
This one?

Maybe! I don't think I ever actually looked at it. Thanks for the link.

Old Post Jan 2 2013 01:32 #
NaturalTvventy is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Pirx
Forum Regular


Posts: 930
Registered: 11-04


dumb shit, i don't quite get the point in hacking a site dedicated to an old game...

Old Post Jan 2 2013 05:40 #
Pirx is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
playerlin
Junior Member


Posts: 103
Registered: 01-06



Pirx said:
dumb shit, i don't quite get the point in hacking a site dedicated to an old game...

Actually, many of them doesn't really care what site it is.
They just hackin' and profit(?) from it, or just use it to hackin' more.

Old Post Jan 2 2013 12:44 #
playerlin is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Clonehunter
Forum Legend


Posts: 4741
Registered: 03-10



Pirx said:
dumb shit, i don't quite get the point in hacking a site dedicated to an old game...

Just hackin for fun. Good sites have fallen before, like Panel Monkey.

Old Post Jan 2 2013 13:42 #
Clonehunter is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
PRIMEVAL
Senior Member


Posts: 2037
Registered: 03-09


For the lulz, 'cause they can, for the gits and shiggles, etc.

__________________
Facebook | Twitter | Music on Facebook | Youtube | SoundCloud | ReverbNation

Old Post Jan 2 2013 19:23 #
PRIMEVAL is offline Twitter account Youtube Twitch Github || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Gez
Why don't I have a custom title by now?!


Posts: 12525
Registered: 07-07


I think it's mostly done by bots anyway. When the same file contains the injected malware code 14 times redundantly, that's not the sign of a hand-made hack...

Old Post Jan 2 2013 19:55 #
Gez is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Egregor
Member


Posts: 299
Registered: 11-12



Gez said:
Aaaaaaand it's hacked again.


If you do visit, please make sure to TURN OFF JAVASCRIPT FIRST.

I found an iframe injection code in the shoutbox js.

Any update on this? I visited the site yesterday. Later, my comp started getting shuddery so I did a virus check, and I had one. It was simple enough to get rid of, but now I'm not sure if it was related to the site or other internet randomness. Is it safe to download DECORATE resources IF the Javascript is turned off? Any other experiences?

Is Realm667 the only DECORATE resource on the internet?

Old Post Jan 3 2013 02:52 #
Egregor is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Gez
Why don't I have a custom title by now?!


Posts: 12525
Registered: 07-07


Downloading resources should be safe; I only found an injection on the forum (and it seems to be gone now, though I can't say if it's gone for good or not).

However, downloading stuff requires to be registered and logged in now. Apparently, Torm has had its bandwidth leeched and is trying to curtail that in this way.

Old Post Jan 3 2013 11:31 #
Gez is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Clonehunter
Forum Legend


Posts: 4741
Registered: 03-10


I think I just got a Trojan trying out the forums...

Old Post Jan 10 2013 02:31 #
Clonehunter is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Blue Shadow
Member


Posts: 314
Registered: 09-12


Make sure to disable JavaScript when visiting the forums.

Old Post Jan 10 2013 02:43 #
Blue Shadow is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Hectic
Junior Member


Posts: 155
Registered: 04-10


I don't have Java, and I (stupidly) visited the site while hacked. All I saw was a picture of an inverted cross with the sentence "No rest for the living" below it. That means I did not get infected, right?

Old Post Jan 10 2013 14:45 #
Hectic is offline Youtube || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Gez
Why don't I have a custom title by now?!


Posts: 12525
Registered: 07-07



Hectic said:
I don't have Java, and I (stupidly) visited the site while hacked. All I saw was a picture of an inverted cross with the sentence "No rest for the living" below it. That means I did not get infected, right?

1. Java is not JavaScript. Totally different things. If you go here and hear some weird music, you have JavaScript.

2. The petrine cross thing was just a placeholder picture because Torm wanted something doomier than "the site is offline for repairs". Just to be clear, the site was safe to visit during that time (even if there was no reason to visit it).

Old Post Jan 10 2013 15:31 #
Gez is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
printz
CRAZY DUMB ZEALOT


Posts: 9261
Registered: 06-06



Clonehunter said:
I think I just got a Trojan trying out the forums...

Did you run it? Or the computer did it? I hope not…

I understand that you primarily should browse the Internet with Java disabled, I believe that is insecure. Even if in this case JavaScript is cracked, it may lead to Java exploits in the iframe, correct? Or non-Java.

__________________
Top /idgames WADsAutomatic Wolfenstein - Version 1.0.1 - also on Android (Updated 28/03/2015)

Old Post Jan 10 2013 16:15 #
printz is offline Twitter account Youtube Github || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Hectic
Junior Member


Posts: 155
Registered: 04-10



Gez said:
1. Java is not JavaScript. Totally different things. If you go here and hear some weird music, you have JavaScript.

Well, I thought they were at least related because the name. I have it then. Love Post Hell. Thanks Gez.

Old Post Jan 10 2013 18:34 #
Hectic is offline Youtube || Blog || PM || Post History || Add Buddy IP || Edit || Quote
Clonehunter
Forum Legend


Posts: 4741
Registered: 03-10



printz said:
Did you run it? Or the computer did it? I hope not…

I understand that you primarily should browse the Internet with Java disabled, I believe that is insecure. Even if in this case JavaScript is cracked, it may lead to Java exploits in the iframe, correct? Or non-Java.

I believe I had Java off, as it was working fine before and I remember going through the process of disabling it. I refreshed the forum page and it all went off by itself.

Old Post Jan 11 2013 02:19 #
Clonehunter is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
D_GARG
Forum Regular


Posts: 926
Registered: 12-09



playerlin said:
Actually, many of them doesn't really care what site it is.
They just hackin' and profit(?) from it, or just use it to hackin' more.

look up if there is a guilty IP connection, find his ass and ask him to hack something that would get him on the news instead while he's at it.

Old Post Jan 11 2013 09:45 #
D_GARG is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
MarkAnthony89
Banned


Posts: 58
Registered: 01-13


This is crazy? Why Realm667? Why didn't they (don't know who or what) hack dead sites instead? Doomwadstation, NewDoom or teamTNT for example?

Old Post Jan 11 2013 23:36 #
MarkAnthony89 is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
GreyGhost
I have a custom title now!


Posts: 9412
Registered: 01-08


The culprit is most likely a web-crawling bot that's exploiting vulnerabilities in Joomla, php or whatever in order to deliver its payload of popup advertising. It doesn't care whose site it is, though one with regular traffic is preferable to an online mausoleum.

Old Post Jan 12 2013 01:07 #
GreyGhost is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
AzaryDoom2020
Mini-Member


Posts: 98
Registered: 03-10


Oh great! Realms667 website is hacked by stupid virus, malware etc...

I hope they fixed soon. :)

Old Post Jan 28 2013 03:04 #
AzaryDoom2020 is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
DoomFan421
Newbie


Posts: 7
Registered: 06-10


Well, there goes my mapping for a good while, was looking to add a new weapon, but I only knew of it ever being hosted at 667 (y'know, like a lonnnng list of other great custom stuff that's there). Google didn't help me out either, so I guess I'm at kind of a loss for now.

Old Post Jan 28 2013 05:56 #
DoomFan421 is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
GreyGhost
I have a custom title now!


Posts: 9412
Registered: 01-08


Didn't spot any nasties when I visited the Realm a short time ago, unless I'm already blocking all of them. As has been said several times in this thread, you should be fine if you disable javascript in your browser and virus check all downloads - not that the Bestiary's content appears to have been touched by the malware, it's just a worthwhile precaution.

Old Post Jan 28 2013 07:18 #
GreyGhost is offline || Blog || PM || Post History || Add Buddy IP || Edit || Quote
All times are GMT. The time now is 11:11. Post New Thread    Post A Reply
Pages (4): « 1 2 [3] 4 »  
Doomworld Forums : Powered by vBulletin version 2.2.5 Doomworld Forums > Classic Doom > Doom General > Something wrong with Realm667.

Show Printable Version | Email this Page | Subscribe to this Thread

 

Forum Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is OFF
vB code is ON
Smilies are OFF
[IMG] code is ON
 

< Contact Us - Doomworld >

Powered by: vBulletin Version 2.2.5
Copyright ©2000, 2001, Jelsoft Enterprises Limited.