Amputate Your Head

"In the US, they can be a serious federal crime under the National Information Infrastructure Protection Act of 1996 with penalties that include years of imprisonment, and many countries have similar laws."

They don't seem to think the same way as you Sleaze.

SleazyDream

Once again you are looking at the text and not the intent of the law.

Kimmykim

Isn't exxxit Babenet????

Kimmykim

Hahaha, this isn't going to turn into some stupid argument about the letter vs. the spirit of the law.

Anyone trying to win on the spirit side better have ALOT of cash to play with.

Timothy

Fuck. Kimmy already posts what i think.
Anybody here ever think about the future? After you put those fuckers who started this in a jail, or fuck them with their b/w bills. What next? The browser still has a backdoor!

Let's see microsoft's patch against this.


............ But i don't see microsoft.com on the list.

Arizona Joe

flashtrack.net is registered with register.com and they told me this site is not hosted anywhere and it points to an IP.

a ping showed the IP for flashtrack.net as 207.106.191.30

ElvisManson

Net Access (NETBLK-NETAXS-BLK2)
PO Box 502
Glenside, PA 19038
US

Netname: NETAXS-BLK2
Netblock: 207.106.0.0 - 207.106.255.255
Maintainer: NTAC

Coordinator:
Support account, Domain Registraion (DRS22-ARIN) [email protected]
(215) 576-8669 (FAX) (215) 576-5820

Domain System inverse mapping provided by:

NS1.NETAXS.COM 207.8.186.1
NS2.NETAXS.COM 207.8.186.2

Record last updated on 09-Aug-2000.
Database last updated on 30-Oct-2001 03:20:27 EDT.



------------------
The All NEW www.PythonVideo.com Portal Page
Python
Dollar Machine
Naughty Mail Pay by click
Awesome Content

Kimmykim

Funny that a site that's not hosted is clear as a bell.

Strangely enough I got Level3 in Atl as the host tho --

Due

Yes that is them

Arizona Joe

what the hell was i looking at...opps! hehe my fault

blacula

i have five sites listed on that damn list and i have a funny feeling there is more domains being affected that is not on the list -- i had a friend check a URL for me that wasn't on the list and she reported back that it did indeed have a pop-up

other than beating these ppl to a pulp -- i have another suggestion --

someone writes a script that undoes what they have done -- they are using sometype of javascript or activescript that changes the IE or the registry

if there was a script available that undoes their damage then we can all install it on our sites to correct it -- i would be 100% behind any project to do this

funkmaster

... has anyone found out which software installed this shit yet. or could this have been done through some activeX scripting ... this would be even worse ...

btw: go fuck yourself book-mark !!!!

------------------
Don't innovate - imitate!
... giving away mass traffic for free !!

[This message has been edited by funkmaster (edited 10-30-2001).]

Kimmykim

Perhaps TheMan can shed some light as to how he found it?????

Crysty

Blacula is right , we could find someone to write a plugin to disable this shit.

blacula

a few hours later and i am STILL pissed off by this crap

starting a few weeks ago, i was wondering why i was getting listed by the big boys but not seeing as much traffic as usual -- i even asked around about if i could get my domains blocked by an angry ISP --

now, i find out that some asshole is adding consoles to my sites MAYBE even redirecting traffic from my domains to theirs

shit, i want to put my foot up so far up this guy's ass that they will be choking on turds for the next year




------------------
SuperPornGuide
webmasters submit your
site here
http://www.superpornguide.com/webmasters

TheMan

Well Kimmy I found this out through a friend mine who got it. He might have downloaded a program that had this with it. I will find out what program it is.

TheMan

Snake

I think this may relate and help solve the problem:
http://www.scumware.com/disinfect.html

I hate fucking thieves.

Snake
snakesworld.com

Kimmykim

That's for Kazaa unfortunately, their Ezula add on.

This won't be recognized as the same code I'm afraid.

TheMan, if you could get your friend to give you a list of EVERYTHING on his computer that he's installed, my guys will be happy to go over it all with a fine tooth comb.

Unfortunately the email addy [email protected] is on the whois for the domain, so I'll bet the rest of it is bogus too. Finding out where it came from and who actually owns it has to happen so that it can be stopped.

Snake

http://www.scumware.com/wm9.html

This shows the fix for Gator...the other page gives webmasters more info on who and how they are gettin fucked.

Snake

Hot Tropical Babes

Ok, i clicked the url, it went to 404...did he take it down? I feel like I am a day late and a dollar short!

Snake Doctor

The legal process is definitely the way to go, unfortunately its a very slow process.
Look at how long it took the recording companies to finally get napster to stop file trading, and they had registered trademarks and copyrights that were being infringed.
While all of our sites are our intellectual property, I'm assuming the vast majority of us haven't had our work copyrighted.

I think the quicker fix will be something that we can do server side to deny access to surfers with this software installed.
Microsoft denied access to MSN from mozilla and opera users recently, I'd imagine code could be written to do something similar for our sites when it comes to programs like gator etc.

Question is who's going to write it, and where do I send my money to get my copy?

------------------
90% of this business is half mental.

Kimmykim

404 eh?

Interesting, that may be progress

Kimmykim

hmmm, hiding them...
http://www.flashtrack.net/target_urls/au__.php

blacula

he moved it http://www.flashtrack.net/target_urls/au__.php

i am checking out this page http://www.scumware.com/disinfect.html

does it take care of the flashtrack.net crap -- the Gator crap looks like it is a program ppl are downloading and would be kind of inappropriate to add to my tgp galleries

------------------
SuperPornGuide
webmasters submit your
site here
http://www.superpornguide.com/webmasters

quiet

traceroute from vario net:

Traceroute to flashtrack.net

Source is www.best.com

1 fa-8-1-0.a01.mtvwca01.us.ra.verio.net (206.184.139.129) 0.486 ms 0.364 ms 0.318 ms (0% loss)
2 ge-1-0-0.a06.mtvwca01.us.ra.verio.net (129.250.122.225) 0.656 ms 0.468 ms 0.398 ms (0% loss)
3 p4-0-0-0.a00.snjsca03.us.ra.verio.net (129.250.122.105) 1.070 ms 1.083 ms 1.257 ms (0% loss)
4 ge-2-1-0.r01.snjsca03.us.bb.verio.net (129.250.28.254) 1.397 ms 1.680 ms 1.368 ms (0% loss)
5 p16-4-0-0.r01.mlpsca01.us.bb.verio.net (129.250.5.79) 1.920 ms 1.685 ms 1.602 ms (0% loss)
6 sl-bb21-sj-3-0.sprintlink.net (144.232.8.165) 3.226 ms 3.415 ms 3.394 ms (0% loss)
7 sl-bb22-sj-15-0.sprintlink.net (144.232.3.162) 4.462 ms 4.273 ms 4.054 ms (0% loss)
8 sl-bb21-rly-15-0.sprintlink.net (144.232.9.126) 69.592 ms 69.621 ms 69.784 ms (0% loss)
9 sl-bb23-rly-11-0.sprintlink.net (144.232.14.134) 69.294 ms 69.380 ms 69.526 ms (0% loss)
10 sl-gw19-rly-10-0.sprintlink.net (144.232.14.42) 69.061 ms 68.952 ms 69.045 ms (0% loss)
11 sl-nexas-1-0.sprintlink.net (160.81.19.254) 69.897 ms 69.968 ms 69.917 ms (0% loss)
12 mae-east-gsr.dc-colo.netaxs.net (207.106.31.50) 69.825 ms 69.814 ms 69.737 ms (0% loss)
13 mae-east.dc-core.netaxs.net (207.106.31.29) 70.846 ms 70.382 ms 70.389 ms (0% loss)
14 blt-dc.balt-core.h1-0-45M.netaxs.net (207.106.2.1) 71.718 ms 76.377 ms 72.181 ms (0% loss)
15 amtrak.phl-core.brain-h1-0-45M.netaxs.net (207.106.2.17) 82.833 ms 74.445 ms 73.194 ms (0% loss)
16 amtrak-core1-ds3.mfn3.phl.netaxs.net (207.106.2.205) 78.860 ms 74.506 ms 76.157 ms (0% loss)
17 core1-main1-100M-2.mfn3.phl.netaxs.net (207.106.0.228) 74.416 ms 76.948 ms 73.586 ms (0% loss)
18 datarealms-t3-r.netaxs.net (207.106.2.130) 74.171 ms 75.303 ms * (33% loss)
19 207.106.191.30 (207.106.191.30) 75.823 ms 75.204 ms 75.149 ms (0% loss)

traceroute from above net:

Traceroute Output

FROM www.bungi.com TO flashtrack.net.

traceroute to flashtrack.net (207.106.191.30): 1-30 hops, 38 byte packets
1 main.bungi.com (207.126.97.9) 1.78 ms 1.53 ms 1.50 ms
2 above-gw1.above.net (207.126.96.249) 4.4 ms 3.68 ms 3.66 ms
3 main2-epe2-fe.sjc1.above.net (64.124.128.13) 3.95 ms 3.77 ms 3.67 ms
4 core6-main2-oc12.sjc1.above.net (209.133.31.189) 3.74 ms 3.76 ms 4.33 ms
5 core3-sjc1-oc48.sjc2.above.net (208.184.102.206) 6.55 ms 4.14 ms 5.38 ms
6 iad1-sjc2-oc48.iad1.above.net (216.200.127.25) 71.3 ms 71.3 ms 71.4 ms
7 core4-core1-oc48.iad1.above.net (208.185.0.138) 71.7 ms 72.2 ms 71.6 ms
8 main1-core4-oc48.iad1.above.net (208.185.0.154) 71.4 ms 71.4 ms 71.3 ms
9 216.200.88.150.netaxs.net (216.200.88.150) 72.0 ms 72.0 ms 71.7 ms
10 mae-east.dc-core.netaxs.net (207.106.31.29) 72.2 ms 72.5 ms 72.3 ms
11 blt-dc.balt-core.h1-0-45M.netaxs.net (207.106.2.1) 73.8 ms 74.3 ms 73.8 ms
12 amtrak.phl-core.brain-h1-0-45M.netaxs.net (207.106.2.17) 87.8 ms 85.7 ms 87.0 ms
13 amtrak-core1-ds3.mfn3.phl.netaxs.net (207.106.2.205) 87.6 ms 139 ms 231 ms
14 core1-main1-100M-2.mfn3.phl.netaxs.net (207.106.0.228) 90.3 ms 85.6 ms 88.1 ms
15 datarealms-t3-r.netaxs.net (207.106.2.130) 87.4 ms 86.2 ms 87.8 ms
16 207.106.191.30 (207.106.191.30) 98.8 ms 88.1 ms 88.7 ms

both appear to go to netaxs.net hosting. I also did traceroutes via 6 other networks with the same result.

LisaMarie

OH MY GOD!!!!!!!

I've been getting these fucking consoles on my OWN sites for WEEKS and I viewed source and downloaded from FTP and everything!
it's even in my TOPLIST ADMIN!

and just when I was starting to think it was all in my head...here you people are!

well, maybe I can shed a little light...

I went to download AudioGalaxy and guess what? I ended up with Gator
granted, it COULD HAVE asked me if I wanted it (but it would've been in the "download now" popup) and here I am now with Gator (which I didn't want or ask for)

I tried to uninstall it, but apparently unsuccessfully, because I'm STILL getting the consoles!

I'll have to check out the links you've all provided!

thanks!!!

I think I'll post a note on my site too
(so my surfers know just who IS fucking them)
because I'm sure they think it's ME



&(*&(*&%^%$!@#$%$%@#Q^%%^&*$%^&*

what's the world coming to?

I'm over here struggling to get my traffic and stats back up (because they've DRAMATICALLY decreased) and those fuckers are over there selling space on my site?!
stealing my traffic and probably losing my bookmarks because of all the fucking consoles!

gator sucks!!!!!!!!

any kami-kazi people around?

Wilber

Location 207.106.191.30 = Glenside, Pennsylvania

Arizona Joe

A couple of things,

First if I understand some of the previous post, netaxs.net is the hosting company for flashtrack.net, if this is true, would it be as simple as sending a request to flashtrack.net to be removed from the list of URL's. If they do not comply with the request would netaxs.net be responsible if they received enough complaints to get the URL's removed.

Second, I checked out this site http://www.cybercrime.gov/

Did not offer much help, so I called the main office (202) 514-1026 and asked if I could file a complaint with them. I was told I could file a complaint, but they do not take direct complaints. I would have to go through the chain of commands and start with either the local police or the local F.B.I. (lol that should be a joy). Gee I wonder how long that should take.

Has this been of any help

Can anyone offer more advice on this

It would not surprise me if the owners of flashtrack.net follow ice cream trucks to rob kids of their money and mug old folks for their SS checks

Kimmykim

Lisa --

Fasttrack isn't gator.

Could you by any chance get a screen shot of the consoles YOU see and email it to me?

[email protected]

There are several programs out there but if this one is coming from one of our own here in adult then we should all know who to vent on.

Thanks
Kim

Wilber

iegator.dll

It's possible this dll is installed. I checked all the Windows machines here and
none have it. Check if you are effected by this flashtrack crap and post if the
dll is on your system.

The link is to bugtoaster.com btw.

LisaMarie

hey Kim

it just made me realize that I've been infected by gator

I've been trying to get rid of it ever since I got it, but I had no idea it was them doing the consoles on MY site

the consoles I'm getting ARE adult related though (usually nocreditcard.com)
so maybe it ISN'T gator
hmmmm

so far the only other one I've seen was for fingerhut (the rest are ALWAYS nocreditcard)

anyway, I already used the scumware to remove gator, so we'll see if it works

I THOUGHT I removed them already, but the consoles are still there (and so are their files)

grrrrr

anyway, if it's still there, I'll know tomorrow morning






[This message has been edited by LisaMarie (edited 10-30-2001).]

Kimmykim

Gator is a bitch that's for sure.

I'm asking for the screen shot so I can see what url is popping up -- I took a long look at flashtrack today and was quite amazed at the results.

LisaMarie

cool!

well, if I get it again, I'll let you know

I used to have the url on my desktop, but I deleted it the last time I SUPPOSEDLY removed gator
hahaha

doesn't that just figure?



story of my life

Snake

Here's another tool to remove the bullshit. It works well. http://www.lavasoftusa.com/aaw.html

Snake

darius

Hi

I'm still pissed from finding myself on their list yesterday.

I went to their site http://www.flashtrack.net/flashtrack.php

and clicked their
flash track presentation.
It took me here
http://www.shadowlesskickonline.com/...lashtrack.html

They are making claims like this:
Over 2 million people are using this product.
Distribution is based on partnerships with many software developers.

I think we need a kick ass programmer to write something that will kill that code when it comes tour sites.

Or make some changes to it. hehe

The Hun

Problem is that these people claim that as long as people agreed to the terms of using this program it's ok to screw a third party, in this case the webmaster... Imgsrcing in this case will turn their own assumptions against them...

If I would put a disclaimer on my site that every time people enter my page they would also download certain other websites then it would be ok, according to for instance Gator's people.

They're bending the rules. It's not ok to screw a third party when that party didn't agree. A FlashTrack or Gator user doesn't have the authority to decide if he can see my banners or not. And it's their bending of the rules that opens possibilities. 'cause how could they sue if we would be doing what they claim is legal...

Gemini

http://www.bugtoaster.com/DW15/Repor...Name=Gator.com has a ton of gator related files that shouldn't be on your systems. Some of them need dug out of the registry too. Amazingly the iegator.dll file had gotten itself shifted to the windows\downloadedfiles\conflict.1 directory in the registry instead of deleting all the way. It hadn't caused any probs from there but its odd it shifted there when we purged the registry of gator.

King Hardcore

Morning Folks-

I have been reading this very interesting thread and I see nocreditcard mentioned a few times. For sometime I couldnt recall where I had seen them from but then I recall having them in my referal server logs a few days back.
I checked them out at the time and didnt see my link anywhere and it just forgot about it. Here are the links to the referal address not sure what you can make of it but maybe you can gather some information to help out.

This is the referal link
http://network.nocreditcardgay.com/i...N&login=131942

and this is the re-direct link that it goes to
http://ams-network.nocreditcard.com/connexion_nccgay_frame.ncc?login=AMS_27431486-941009x131942&password=U&number=1495060748290a0b0a 3918b616950405462708090a3b2a*http://ams-network. nocreditcard.com/cgi-bin/update_visiteurs&referer=http://stats.sexlist.com/visstats/referrer_urls-stats.phtml&GD=1455&url=http://www.nocreditcardgay.com/private/&exe=notused&lg=EN& product=nccgay&entitelogin=131942&appname=Nocredit card%2520Gay&DStyle=01&rs_lic=637&country=1.206.1& X82ZKB=3&KP=Software%5Cegroup%5C1.7&BK=PTLICENCE_$ ()&FK=DataA_1495060748290a0b0a 3918b616950405462708090a3b2a*http://ams-network.nocreditcard.com/cgi-bin/update_visiteurs&FK=DataB_AMS_27431486-941009x131942&FK=DataC_unused&FK=DataD_false&FK=Da taE_Nocreditcard%2 0Gay&FK=DataF_http://www.nocreditcardgay.com/private/&FK=DataG_notused&FK=ParentalLock_False&DK=date&FK =DialStyle_01

Hope this helps in some way

book-mark

Hi,

I think its the
c.\ftapp directory
The files are called:
FTapp.dll and Ftapp.mon

*****
Seems they disabled the consoles today, hehehe

The site looks like shit now !
http://www.flashtrack.net/target_urls/adulturls.php

LisaMarie

well, the ad-aware worked!
no consoles today!

but now I don't have the nocreditcard url
the one listed above looks pretty familiar though, but I can't say 100% if that was the exact same account



well, now that I know how to REMOVE it (thanks again) maybe I should go get audiogalaxy again and make sure it was them
then I'll have the url



boy do I feel stupid!
I kept seeing those damn consoles and bitching to everyone (my isp, my script guys) and they all thought I was crazy
I was just starting to believe it myself
I can't thank you guys (and girls) enough!

Lisa Marie
[email protected]
[email protected]

Kimmykim

The problem remains with the fact that the surfers have to 'disinfect' their boxes.

Just getting it off our systems doesn't really fix the problem, it only masks the symptoms.

TheMan

Well the guy said only thing he think he could have downloaded it from is imesh (this is a guess and not a fact) or got it force downloaded from some sort of active x from a webpage.

TheMan

Kimmykim

What is imesh? Do you have a url?

CPDave

Just to let you all know... I have spoken with the President of Larry Flynt Productions (Hustler) and also Playboys legal department. They have both agreed to join hands with us to fight this problem of scumware. We are now in direct contact with both of them and investigating the best course of action to take against these guys. I guess we need to all work together now to stop this crap.

------------------
Keeping 'em wet!

Kimmykim

Dave,
I cant find you in my icq list now -- I've got to duck off for an hour or so but then I'd like to talk to you --

CPDave

Ok KimmyKim!
Mark G at CWIE or Ron Cadwell has my number. You can call me if you like.... or grab me on ICQ when you get done!



------------------
Keeping 'em wet!

TheEqualizer

Flashtrack.net
IP 207.106.191.30
flashpoint.bm
IP 207.106.191.30

flashtrack.net's mailserver
checkmate.net

flashpoint.bm's mailserver
mail.serve.com or checkmate.net

Just some info about that company for you guys.

CPDave

IMPORTANT

We are in the process of gathering contact information for all of those who wish to receive email and assist with the fighting the use of scumware.

Our current participants is growing fast and includes Playboy, Hustler, CCBill, and numerous other big names ....

Please send an email with your contact info to:

[email protected]


------------------
Keeping 'em wet!

Ludedude

...that's where you went wrong Hun. The USER does have the authority to see what he/she wants. The problem is, it's NOT the user making that decision but a third party that IS stealing from all of us.




------------------
Make BANK with these Babes!
The Webmaster's Folder
The Midnight TGP2 Submitter

jimmyf

ccbill is on this one.