I was hacked by pimpxxx.com therefor I lost the stats for the last 1½ hour
Here is the good news.
I got the SUCKERS IP
If I was would blok his IP from your entire server. I know he has hacked other sites also. Here is his IP: 212.187.65.164
Don't worry this won't effect any of our trades :-)
Gonna kill this asshole...
Anyway happy trading


------------------
Happy Trading
Click here to trade with Pussy Lovers (150% RATIO ~ UNIQUE) (http://www.mdue.dk/tsp/add_site.html)

Click here to trade with Elite Sex Gallery(150% RATIO ~UNIQUE) (http://www.sextop.dk/tsp/add_site.html)

Regards
Due
ICQ - 7694991

He also own t65.com - A Toplist running on the script from Solutionscripts. Easy to cheat with a 0*0 image

------------------
Happy Trading
Click here to trade with Pussy Lovers (150% RATIO ~ UNIQUE) (http://www.mdue.dk/tsp/add_site.html)

Click here to trade with Elite Sex Gallery(150% RATIO ~UNIQUE) (http://www.sextop.dk/tsp/add_site.html)

Regards
Due
ICQ - 7694991

Ok, how do we know it's him.. By IP address?

Let's get the facts straight.



------------------
Anthony
anthony@freesmutpics.com
<Hit me up for real clean trades, ICQ 21239908>

Well the fucker got me too, all my trades are deleted,and all traffic was forwarded to his site......unfortunatly everything is gone
so who ever was trading with thepussyhouse
sorry

My fact:
1: 3 places he entered his domain pimpxxx.com in my script config file
2: Got his IP logged - Talking to somebody who knows him on ICQ. First he said:

"I know him and he would not do it "
My message for him:

"I got his IP and the time right here:
11.17.1999 17:12 212.187.65.164
He set my script to send to his domain"
(danish time)
His message:
"shit that is him"
Now that we have the facts straight I have been thinking on how to stop this sucker and found a pretty good way
The first 10,15,45 giga in transfer is in included in his hosting plan. After that he pay $6/gig
If we loaded his site or some of his pics in a 1x1 image he would have to close his site in no time because he can't pay the bandwith bills
I think that would be pretty fair :-)


------------------
Happy Trading
Click here to trade with Pussy Lovers (150% RATIO ~ UNIQUE) (http://www.mdue.dk/tsp/add_site.html)

Click here to trade with Elite Sex Gallery(150% RATIO ~UNIQUE) (http://www.sextop.dk/tsp/add_site.html)

Regards
Due
ICQ - 7694991

Just added this code to my pages:
<!-- Start Fucking Hacker Code // -->
<img src="http://www.pimpxxx.com/index.html" height="1" width="1">
<img src="http://www.pimpxxx.com/submit.html" height="1" width="1">
<img src="http://www.pimpxxx.com/pamela.html" height="1" width="1">
<!-- End Fucking Hacker Code // -->
Hit him hard. Now he get like 3 million hits more a day.... Pretty cool :-)
Well he wanted the visitors.. Why should he hack our site if it was not for the visitors?

------------------
Happy Trading
Click here to trade with Pussy Lovers (150% RATIO ~ UNIQUE) (http://www.mdue.dk/tsp/add_site.html)

Click here to trade with Elite Sex Gallery(150% RATIO ~UNIQUE) (http://www.sextop.dk/tsp/add_site.html)

Regards
Due
ICQ - 7694991

I think he did the same with Private Zone
http://www.privatezone.com/cgi-bin/tsp/tsin.cgi

Dr. Fetish
Let's trade.

that explains why my stats are low today...the hacker might of screwed alot of other sites
i trade with alot of you guys...
Due this happen to me also...my users got deleted also...but it was my fault because i made it too easy...i posted previously which was deleted in the upgrade..that your .dat file can be downloaded with your password not being encrypted...move your .dat file to another secure directory..and put the full path of that file on top all your .cgi files...also you should place your script in the cgi-bin which should secure your files...also a just in case backup your members...
this was Phun wrote also http://209.67.52.186/ubb/Forum6/HTML/000019.html
if anyone else got hacked feel free to signup at my site again because i might of deleted your site



------------------
---------
lets trade
http://blackgallery.com/cgi-bin/tsp/tswebmaster.cgi

Playa,
all my shit was secure, i remeber th esecurity issue with the tsp scripts brought forward about a month ago,and my site was not opened up that way.in fact i remeber informing Due and a few otheres using the TSP script that thier site (.dat file)was wide open and they fixed them. As far as the fucker getting in this time i am not sure how.

could be using a password hurler?

password hurler?
i remember reading about that in the last sex swap mail...
some script that hits your password site like a million times until it gets in...
i think thats how Due got the hackers ip thru the hackers site..how about moving the admin file to another directory..do any of you'll think this can help for added security..

------------------
---------
lets trade
http://blackgallery.com/cgi-bin/tsp/tswebmaster.cgi

Due, with your Hotlinkfucker code, you would be best to link several of his jpg and gif files rather than his html files

I know it would be easier to link to his jpg's but there is no large jpg... the html files is bigger than his jpgs I think.. this way it is costing him more bandwith. Hmm think I will move the tsadmin script to a more secure place...
Anybody know how to protect your self against password hurlers?
He can't access my site anymore. Blocked his IP from the entire server :-)


------------------
Happy Trading
Click here to trade with Pussy Lovers (150% RATIO ~ UNIQUE) (http://www.mdue.dk/tsp/add_site.html)

Click here to trade with Elite Sex Gallery(150% RATIO ~UNIQUE) (http://www.sextop.dk/tsp/add_site.html)

Regards
Due
ICQ - 7694991

Wooow try ftp into 212.187.65.164
Just ftp://212.187.65.164
no pass/username
You get right into his HD
Cool
He is using Serv-U FTP server...

------------------
Happy Trading
Click here to trade with Pussy Lovers (150% RATIO ~ UNIQUE) (http://www.mdue.dk/tsp/add_site.html)

Click here to trade with Elite Sex Gallery(150% RATIO ~UNIQUE) (http://www.sextop.dk/tsp/add_site.html)

Regards
Due
ICQ - 7694991

Hmm his ICQ uin seems to be: 18948886

Sorry that was NOT his UIN

Okay I talked to the owner of pimpxxx.com
He says it is some dude he has giving access to hack through his computer through a proxy so he can do it anom. and he won't tell who the person is.
His UIN# 14491533
He says the dude that hack the sites are going to stop hacking CJ sites and hack something else.
Anyway this is his right ICQ uin# 14491533
I would make a host.deny in your server
config file just to be sure :-)
IP: 212.187.65.164


------------------
Happy Trading
Click here to trade with Pussy Lovers (150% RATIO ~ UNIQUE) (http://www.mdue.dk/tsp/add_site.html)

Click here to trade with Elite Sex Gallery(150% RATIO ~UNIQUE) (http://www.sextop.dk/tsp/add_site.html)

Regards
Due
ICQ - 7694991

well one way to block off the pass cracker script is to use the 404 redirect, except when you try to access a cgi file which is chmodded not to let outside world view it- the server gives off another error page, in my "chinese secret" file i put every possible error I know off, 500,503 and so on, so now even if there is a way to get around the chmodding the script should stop because it won't be able to even access my cgi-bin because of the redirection...
another thing, if you want to get back at him, the wingates(proxy) are normally on port 8080 or 80. in netscape go to preferences, advanced, proxy, manual and put his ip as host and port 8080 or 80, and that should waste some of his bandwidth too, plus you'll be serfing annonimously... =)

I didn't read the msg before this one, shovel showed a good way to protect yourself. http://209.67.52.186/ubb/Forum1/HTML/000154.html

this lamer messed up with 2 of my sites .
my responce was hacking his host (entagledweb.com) , and doing 2 simple things .
1 : i erased all his sites , and made my site to open in full window popup
2 : i made his index.shtml to be 1.5 megs size long .

his site gets 40k per day , take a caculator and figure what was his bandwith usage that day http://209.67.52.186/ubb/smile.gif
anyways he emailed me with very sppologizing tone .

if any of u will get hacked by him again , dont hasitate to msg me .

Hi,

By img sourcing you won't get me...
I have 30 gig bandwidth a day and am using only 10k a day right now...

And Due you know what friends of mine can do with your sites...

Any site that will img source one of the DOA sites will get hacked or ping flooded via a 18 gigabit glass fiber connection.

That's all I have to say right now.

C ya

Bart

well my db was erased today too.
after thinking all this shit over I figured out an exploit for the free ucj script which probably works on c-ucj also. I haven't tested it out but I'm pretty sure I can get into other sites and erase their db's in 10min or less.
it's easily fixed, icq me if you need assistance.
oh and BART, beware SOME adult webmasters have linux boxes too, on t-3's and with packeting scripts >=)

ok, I posted my theory at http://www.69delight.com/ucjfix.htm
some1 plz verify wether I'm right or completely wrong. thanx.

hmm DOA i remeber them, i thik they were allied with the former NSF..

hmm strange ass shit ;-)

not that i have any connection to them NOW but back in the day maybe. hehe

------------------
ICQ
41830788

I didn't hack anything the last 4 weeks.

If you guys appreciate it I tell you how cj sites are easily "hacked" (it's not hacking but you call it that way so it's fine with me...)

I don't want to make someone angry here, just want to tell you about the things that can happen when someone messes with me...

And another thing, webmasters still think I was the one that screwed up their site. Well I didn't do it or didn't ask someone to do it...

so how are they easily hacked?