http://www.suzukisavage.com/cart/index.php

Go there. What Im seeing is some very strange things and a lot of what appears to be an eastern european language. I dont know much about computers but I know something isnt right on that page.

".ata System:.
Disable Function:NONE
Op.System:Linux||Ip.server:173.244.96.23
Safe ModeFF
Temp:
Uname:Linux olyweb1 2.6.32-3-amd64 #1 SMP Wed Feb 24 18:07:42 UTC 2010 x86_64
PhpVersi:5.2.13

Greetz::netheroes crews>>fitri,lyly^,Hellhag,gunX,black,quintin,ckarh,mzloveme,h_ganteng,ncezz,ben
ny,wendy,napicatra,dyvilz & all (scrolling)

total 288
630262392   4 drwxr-x--- 14 www www   4096 May 25 03:32 .
95700155   4 drwxr-x--- 14 www www   4096 Apr 12 15:43 ..
918966067   8 drwxr-x---  5 www www   4096 Sep  4  2008 admin
568287914 164 -rw-r--r--  1 www www 166031 May 25 03:31 c99.php
918966076  16 drwxr-x---  2 www www  12288 May 24 07:47 cache
568287919   4 -rw-r--r--  1 www www   2404 May 25 03:32 db_scaner.php
95700166   4 drwxr-x---  2 www www   4096 May  1  2008 docs
401260575   0 drwxr-x---  2 www www    133 May  1  2008 download
630262869   0 drwxr-x---  3 www www     54 May  1  2008 editors
918977282   4 drwxr-x---  2 www www   4096 May  1  2008 email
95700172   4 drwxr-x---  2 www www   4096 May  1  2008 extras
401260581  16 drwxr-x--- 14 www www  12288 May 25 19:31 images
95700177   4 drwxr-x--- 13 www www   4096 May 13 14:39 includes
630400080   8 -rw-r-----  1 www www   4666 Feb  1  2006 index.php
630400081  20 -rw-r-----  1 www www  16672 Nov 27  2007 ipn_main_handler.php
630400082  16 -rw-r-----  1 www www  15039 Jan 21  2006 license.txt
401296754   0 drwxr-x---  2 www www     43 May  1  2008 media
630400083   4 -rw-r-----  1 www www   2154 Mar 27  2006 nddbc.html
630400084   4 -rw-r-----  1 www www   4076 Aug 19  2007 nochex_apc_handler.php
630400085   4 -rw-r-----  1 www www    675 Dec 30  2005 page_not_found.php
630263549   0 drwxr-x---  2 www www     39 May  1  2008 pub
918978145   0 drwxr-x---  3 www www     64 May  1  2008 tmp"

Perintah: (next to a text bar)

Eksekusi / Berishi (bottons)

/mnt/raid/webserver/virtual/suzukisavage.com/html/cart (in a text bar)


ndelok (another button)

Susep file:

kirim (another button)"

Anyone know wtf this means? My immediate assumption is the sites cart section has be hacked/hijacked. Doesnt matter much since no one's bought anything directly from the site for as long as Ive been around and thats about 2 years, but personal info may be in danger. I dont really know. Just thought Id give a heads up and maybe someone else knows whats going on. In any case, I think this is a good time to suggest making the backup forum a sticky if possible or as widely known as possible.

Know what? I think this is in Albanian.

dasch wrote on 05/26/10 at 00:16:18:


Mistyped, it's not Albanian. Don't want to falsly accuse my neighbors...

I did order a SS.com decal a month ago and never got it.  I recently wrote to "contact us" about and got no answer.  Looks like I'm out $3.

It does look like the home page was hacked, but apparently they did not touch the forum.  If I was concerned about catching something I'd just set the "noscript" extension on Firefox to not allow javascripts from the site, which BTW needs to be pruned down to just the part that is used, and the forum software updated.

Thanks prechermike for the heads up.

Thanks moof.  

Is this the backdoor that the bigX has gotten thru?

And or left open?

WHOOO HOOO! Moofed to the rescue!

Thanks!

Moofed wrote on 05/26/10 at 09:28:06:



"Big X" is Verslagen's name for the coward anonymous poster who has posted a variety of sexually obscene attack posts under a variety of "member/ex member" names.  As every member who has been here for a few years well knows, he has been on this site for at least 2+ years and is one of the original early members who is now using  additional fake names to hide from the disgust of other members. He is friends with some of the early members, and they know who is he but play stupid.  He works with the cooperation of the moderators because they have been on site and logged in, while he attacks members with sexually descriptive, obscene scenarios.  They do nothing about it, and he is the first to ever become so sexually descriptive and obscene in his attacks.
It does not take a hacker to do this.  Anyone can log in as a member, say anything they want, and then log out as an ex member.  Feel free to do so, as absolutely nothing will happen to anyone who wants to do it.