|
Title: XAPO Script - Hacked Post by: 5ub_zer0 on July 21, 2016, 06:33:11 PM My Xapo-Faucet faucet.today got attaked .. as you can see in the list below .. my 30min timer is useless :-) ..
Here is my statement of account: https://xapofau.xyz/wp-content/uploads/2016/07/Personal-Wallet_2016-07-21.csv (https://xapofau.xyz/wp-content/uploads/2016/07/Personal-Wallet_2016-07-21.csv) Be careful all with the same script ... Title: Re: XAPO Script - Hacked Post by: vodaljepa on July 21, 2016, 06:49:29 PM Is this the script Gifted was sharing with people on here?
Title: Re: XAPO Script - Hacked Post by: Gifted on July 21, 2016, 08:27:51 PM hmm, i see my faucet is getting hit with a bot with same email address. I have been trying to figure out a way to stop this but any faucet can be hit with this tech.
Title: Re: XAPO Script - Hacked Post by: Gifted on July 21, 2016, 08:32:54 PM I think i need to add a timer to email and btc addresses not just ip
Title: Re: XAPO Script - Hacked Post by: vodaljepa on July 21, 2016, 09:35:32 PM Gifted you sure you aren't behind these attacks? I will investigate the code and see if any backdoor was planted by you
Title: Re: XAPO Script - Hacked Post by: Salmen on July 21, 2016, 09:50:16 PM Gifted you sure you aren't behind these attacks? I will investigate the code and see if any backdoor was planted by you I just reviewed fast the code and couldn't see any backdoors.Title: Re: XAPO Script - Hacked Post by: alfaboy23 on July 22, 2016, 01:22:53 AM I'm not too much knowledgeable in PHP, but I believed that Gifted's distributed script had no backdoors.
I was also hit previously but in a different approach (not the same hack method base on the OP's log), mine is this: https://bitcointalk.org/index.php?topic=1517483.msg15274896#msg15274896 Then, I just block the whole country where the user's IP is in, until now, I haven't been hit and I hope not ever. Title: Re: XAPO Script - Hacked Post by: torbente on July 22, 2016, 01:24:42 AM I'm not too much knowledgeable in PHP, but I believed that Gifted's distributed script had no backdoors. I was also hit previously but in a different approach (not the same hack method base on the OP's log), mine is this: https://bitcointalk.org/index.php?topic=1517483.msg15274896#msg15274896 Then, I just block the whole country where the IP is in, until now, I haven't been hit and I hope not ever. Which country ? Could you say? Title: Re: XAPO Script - Hacked Post by: alfaboy23 on July 22, 2016, 01:35:07 AM I'm not too much knowledgeable in PHP, but I believed that Gifted's distributed script had no backdoors. I was also hit previously but in a different approach (not the same hack method base on the OP's log), mine is this: https://bitcointalk.org/index.php?topic=1517483.msg15274896#msg15274896 Then, I just block the whole country where the IP is in, until now, I haven't been hit and I hope not ever. Which country ? Could you say? But before I block that country, I first block the IP ranges he used, but he just uses another IP range, but still in that country :D , and he hit me for the second time with the same method. That's the time that I decided to block the whole country or technically, just most IP's on that country. The effect is I do not have any visitors from that country anymore. Title: Re: XAPO Script - Hacked Post by: Omegasun on July 22, 2016, 01:54:28 AM My Xapo-Faucet faucet.today got attaked .. as you can see in the list below .. my 30min timer is useless :-) .. Here is my statement of account: https://xapofau.xyz/wp-content/uploads/2016/07/Personal-Wallet_2016-07-21.csv (https://xapofau.xyz/wp-content/uploads/2016/07/Personal-Wallet_2016-07-21.csv) Be careful all with the same script ... so many cheater today. hahaha. maybe because of the timer of the faucet is too long and the pay rate is too low. thats why they attempt to use bot. im dissappoint to the faucet user that using bot on faucet.. i am discourage now to create my own faucet. tsk Title: Re: XAPO Script - Hacked Post by: Gifted on July 22, 2016, 11:40:11 AM I assure you there is no back doors in the script but someone is always smarter then the next. we must join together to figure out a solution to this problem for the sake of everyone.
Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on July 22, 2016, 01:20:19 PM so many cheater today. hahaha. maybe because of the timer of the faucet is too long and the pay rate is too low. thats why they attempt to use bot. im dissappoint to the faucet user that using bot on faucet.. i am discourage now to create my own faucet. tsk I dont have a problem with ot if a user have a script witch brings him to a faucet (like rotators) and only solve the captcha ... the problem ist if a user uses a lot of bots or find a way to disable to timer .. so he can make your faucet emtpy in a short time ... The script i used is from here: https://github.com/destinybogan/Faucet-Builder the only thing what ive edited was the proxy detection i putted into the main index.php ... but maybe that was the problem .. at the moment i let my faucets down .. Also i checked the server Server Against the HTTPoxy Vulnerability but it was ok ... also i had no phpmyadmin installed .. and as one of the few faucets around it was with ssl protected. So i have no idea whats going wrong but in the moment iam busy. @Salem can you check my script too for a small tip ? https://github.com/Subzeroxapo/xapo-script-hacked.git Title: Re: XAPO Script - Hacked Post by: Gifted on July 23, 2016, 04:49:19 AM so many cheater today. hahaha. maybe because of the timer of the faucet is too long and the pay rate is too low. thats why they attempt to use bot. im dissappoint to the faucet user that using bot on faucet.. i am discourage now to create my own faucet. tsk I dont have a problem with ot if a user have a script witch brings him to a faucet (like rotators) and only solve the captcha ... the problem ist if a user uses a lot of bots or find a way to disable to timer .. so he can make your faucet emtpy in a short time ... The script i used is from here: https://github.com/destinybogan/Faucet-Builder the only thing what ive edited was the proxy detection i putted into the main index.php ... but maybe that was the problem .. at the moment i let my faucets down .. Also i checked the server Server Against the HTTPoxy Vulnerability but it was ok ... also i had no phpmyadmin installed .. and as one of the few faucets around it was with ssl protected. So i have no idea whats going wrong but in the moment iam busy. @Salem can you check my script too for a small tip ? https://github.com/Subzeroxapo/xapo-script-hacked.git Let me know if you still have problems ! I plan on making a login page for this faucet script for security, when i finish i will include in this download and notify everyone when finished. Title: Re: XAPO Script - Hacked Post by: viralalert on July 23, 2016, 07:09:15 AM so many cheater today. hahaha. maybe because of the timer of the faucet is too long and the pay rate is too low. thats why they attempt to use bot. im dissappoint to the faucet user that using bot on faucet.. i am discourage now to create my own faucet. tsk I dont have a problem with ot if a user have a script witch brings him to a faucet (like rotators) and only solve the captcha ... the problem ist if a user uses a lot of bots or find a way to disable to timer .. so he can make your faucet emtpy in a short time ... The script i used is from here: https://github.com/destinybogan/Faucet-Builder the only thing what ive edited was the proxy detection i putted into the main index.php ... but maybe that was the problem .. at the moment i let my faucets down .. Also i checked the server Server Against the HTTPoxy Vulnerability but it was ok ... also i had no phpmyadmin installed .. and as one of the few faucets around it was with ssl protected. So i have no idea whats going wrong but in the moment iam busy. @Salem can you check my script too for a small tip ? https://github.com/Subzeroxapo/xapo-script-hacked.git Let me know if you still have problems ! I plan on making a login page for this faucet script for security, when i finish i will include in this download and notify everyone when finished. Wow! really! this would be great if you make a login page for a xapo faucet. I'm also using xapo faucet script and I have not had any problems with it. I'm happy using it. This is my first faucet I have ever created. You can check mine's faucet as well. http://viral-alert.com/xapo If you ever created a login page for the script, I would love to share it with me. By the way do you know how to integrate antibot links to xapo faucet? Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on July 23, 2016, 04:44:53 PM Wait. you had no admin ??? how dd you setup your faucet without it?? Also did you use a branch of the faucet you installed?? People can make changes in GitHub and save as a branch for someone to download.. Are you sure you downloaded the original?? Here why don't you use this one and see if this fixes the problem.. This is a clone of my faucet To use instead http://bitcoinfaucetrelay.com/wp-content/uploads/2016/06/Faucet-builder-clone-of-my-faucet.zip (http://bitcoinfaucetrelay.com/wp-content/uploads/2016/06/Faucet-builder-clone-of-my-faucet.zip) Let me know if you still have problems ! I plan on making a login page for this faucet script for security, when i finish i will include in this download and notify everyone when finished. Sure there is admin ... and its a fork of the original Faucet-Builder what i written in the README ..but anyway everything on github can manipulated not only my one :-) Yeah a login whould be nice .. Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on July 23, 2016, 05:33:52 PM FYI - https://faucet.today is now online again .. with the version from gifted ..
Title: Re: XAPO Script - Hacked Post by: sabotag3x on July 23, 2016, 07:30:23 PM We are all f*****, that's the truth, we need to collect all IP's range/btc address from bots and put it in the same topic
Title: Re: XAPO Script - Hacked Post by: Newcoins2020 on July 23, 2016, 08:19:30 PM We are all f*****, that's the truth, we need to collect all IP's range/btc address from bots and put it in the same topic Collecting IP's is just the start, since proxy's are very cheap. Best way is to audit the script by a security expert. If you don't do that, you run a risk being hacked and losing all your btc. Best way is to make withdrawals manual if you are not sure about your scripts security. Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on July 23, 2016, 09:38:12 PM This fu***ng Guy is back again .... now diabled reward system .. goin to sleep :-)
Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on July 24, 2016, 12:28:26 AM Cant sleep .. two things are very strange in my opinion and maybe usefull for investigation.
1. if you see the List above .. this guy gets also the refferals (25%) ?? .. 2. i dit not see an armee of bots (with analytics or piwik) .. just one ip from ukraine has ~18 activites but without an referallink. The other ips looking normal ... Anyway .. i closed the Faucet .. maybe reopen if it is secure P.S: i used the script from gifted --- Strange peoples in a strange world ... Title: Re: XAPO Script - Hacked Post by: viralalert on July 24, 2016, 12:36:08 AM This is true, my site was attacked and a user zervo lemurian was able to claim every minute. I've disabled my api while investigate the issue. It's not something that it was hacked but it's something that they can reduce between the time of claim. If it's hacked for example they were able to get my xapo api key then they can still claim even I disabled the faucet. So we need to concentrate on the time of claim. Hopefully someone can help us.
Title: Re: XAPO Script - Hacked Post by: FaucetRank.com on July 24, 2016, 10:41:38 AM Cant sleep .. two things are very strange in my opinion and maybe usefull for investigation. I don't think gifted is behind this kind of trick. It seems me that there is weak coding in the script that should be fixed and after this fix the script should work properly.1. if you see the List above .. this guy gets also the refferals (25%) ?? .. 2. i dit not see an armee of bots (with analytics or piwik) .. just one ip from ukraine has ~18 activites but without an referallink. The other ips looking normal ... Anyway .. i closed the Faucet .. maybe reopen if it is secure P.S: i used the script from gifted --- Strange peoples in a strange world ... Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on July 24, 2016, 11:10:09 AM I don't think gifted is behind this kind of trick. It seems me that there is weak coding in the script that should be fixed and after this fix the script should work properly. I never said that it is gifted .. just a information because i should give this/his version a try .. and the result was the same as with the original faucet-builder script i used in the first post. Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 11:14:57 AM I don't think gifted is behind this kind of trick. It seems me that there is weak coding in the script that should be fixed and after this fix the script should work properly. I never said that it is gifted .. just a information because i should give this/his version a try .. and the result was the same as with the original faucet-builder script i used in the first post. Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 12:13:11 PM I want everyone to know i have found a solution 99% sure this will work but will take some time to write.. i should be done in a few hours and will be able to implement into your faucet i promise. no adding code, just upload into the root and thats it.. i will let you guys know when im done.
Title: Re: XAPO Script - Hacked Post by: viralalert on July 24, 2016, 12:41:39 PM I want everyone to know i have found a solution 99% sure this will work but will take some time to write.. i should be done in a few hours and will be able to implement into your faucet i promise. no adding code, just upload into the root and thats it.. i will let you guys know when im done. I'm looking forward to it. Can you also make a script to ban email addresses? I have seen some that using multiple email addresses. It would be great if you can add setting to the admin page to block email address. I recommend to check your phpmyadmin to see those are abusing the site. When I checked my database, I've seen a user that has over 50 email addresses that is why he was able to claim in my faucet every minute. Here are the email addresses. I think adding some setting to block email address in the admin panel would be great. la.tu.gio@gmail.com la.tu.gi.o@gmail.com la.tu.g.io@gmail.com la.tu.g.i.o@gmail.com la.t.ugio@gmail.com la.t.ugi.o@gmail.com la.t.ug.io@gmail.com la.t.u.gio@gmail.com la.t.u.g.io@gmail.com la.t.u.gi.o@gmail.com la.t.ug.i.o@gmail.com la.t.u.g.i.o@gmail.com l.at.ugi.o@gmail.com l.at.ug.io@gmail.com l.at.ug.i.o@gmail.com l.at.u.gio@gmail.com l.at.u.gi.o@gmail.com l.at.u.g.io@gmail.com l.at.u.g.i.o@gmail.com l.a.tugio@gmail.com l.a.tugi.o@gmail.com l.a.tug.io@gmail.com lat.ugi.o@gmail.com latugi.o@gmail.com latug.io@gmail.com latug.i.o@gmail.com latu.gio@gmail.com latu.gi.o@gmail.com latu.g.io@gmail.com latu.g.i.o@gmail.com lat.ugio@gmail.com lat.ug.io@gmail.com lat.ug.i.o@gmail.com lat.u.gio@gmail.com lat.u.gi.o@gmail.com lat.u.g.io@gmail.com lat.u.g.i.o@gmail.com la.tugio@gmail.com la.tugi.o@gmail.com la.tug.io@gmail.com la.tug.i.o@gmail.com l.atugi.o@gmail.com l.atug.i.o@gmail.com l.atu.gio@gmail.com l.at.ugio@gmail.com l.atu.g.i.o@gmail.com l.atu.gi.o@gmail.com l.atug.io@gmail.com l.atugio@gmail.com Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 01:24:52 PM I want everyone to know i have found a solution 99% sure this will work but will take some time to write.. i should be done in a few hours and will be able to implement into your faucet i promise. no adding code, just upload into the root and thats it.. i will let you guys know when im done. I'm looking forward to it. Can you also make a script to ban email addresses? I have seen some that using multiple email addresses. It would be great if you can add setting to the admin page to block email address. I recommend to check your phpmyadmin to see those are abusing the site. When I checked my database, I've seen a user that has over 50 email addresses that is why he was able to claim in my faucet every minute. Here are the email addresses. I think adding some setting to block email address in the admin panel would be great. la.tu.gio@gmail.com la.tu.gi.o@gmail.com la.tu.g.io@gmail.com la.tu.g.i.o@gmail.com la.t.ugio@gmail.com la.t.ugi.o@gmail.com la.t.ug.io@gmail.com la.t.u.gio@gmail.com la.t.u.g.io@gmail.com la.t.u.gi.o@gmail.com la.t.ug.i.o@gmail.com la.t.u.g.i.o@gmail.com l.at.ugi.o@gmail.com l.at.ug.io@gmail.com l.at.ug.i.o@gmail.com l.at.u.gio@gmail.com l.at.u.gi.o@gmail.com l.at.u.g.io@gmail.com l.at.u.g.i.o@gmail.com l.a.tugio@gmail.com l.a.tugi.o@gmail.com l.a.tug.io@gmail.com lat.ugi.o@gmail.com latugi.o@gmail.com latug.io@gmail.com latug.i.o@gmail.com latu.gio@gmail.com latu.gi.o@gmail.com latu.g.io@gmail.com latu.g.i.o@gmail.com lat.ugio@gmail.com lat.ug.io@gmail.com lat.ug.i.o@gmail.com lat.u.gio@gmail.com lat.u.gi.o@gmail.com lat.u.g.io@gmail.com lat.u.g.i.o@gmail.com la.tugio@gmail.com la.tugi.o@gmail.com la.tug.io@gmail.com la.tug.i.o@gmail.com l.atugi.o@gmail.com l.atug.i.o@gmail.com l.atu.gio@gmail.com l.at.ugio@gmail.com l.atu.g.i.o@gmail.com l.atu.gi.o@gmail.com l.atug.io@gmail.com l.atugio@gmail.com Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 01:26:25 PM I will be finished with some code for us in a few hours as far as the emails go there is no need to fix this because im sure he cannot have that many ID's lol
Title: Re: XAPO Script - Hacked Post by: viralalert on July 24, 2016, 01:34:34 PM I will be finished with some code for us in a few hours as far as the emails go there is no need to fix this because im sure he cannot have that many ID's lol I believe those email addresses were valid. It was deducted on my balance. If you're saying I will get refund, about how many days I can get it? Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 01:54:13 PM I will be finished with some code for us in a few hours as far as the emails go there is no need to fix this because im sure he cannot have that many ID's lol I believe those email addresses were valid. It was deducted on my balance. If you're saying I will get refund, about how many days I can get it? Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 01:55:15 PM keep checking this post because i will be posting the download here soon for the fix
Title: Re: XAPO Script - Hacked Post by: viralalert on July 24, 2016, 02:00:43 PM I will be finished with some code for us in a few hours as far as the emails go there is no need to fix this because im sure he cannot have that many ID's lol I believe those email addresses were valid. It was deducted on my balance. If you're saying I will get refund, about how many days I can get it? HOw is it come that those email addresses have real names when I checked my xapo account. Having real names means that those accounts were verified. I have already contacted the support of xapo and I hope they can get back my bits taken from these email addresses. Title: Re: XAPO Script - Hacked Post by: FaucetRank.com on July 24, 2016, 02:05:21 PM I will be finished with some code for us in a few hours as far as the emails go there is no need to fix this because im sure he cannot have that many ID's lol I believe those email addresses were valid. It was deducted on my balance. If you're saying I will get refund, about how many days I can get it? Although it is possible to create many accounts because with single xapo account we can add 4 extra emails (in total 5) and to create 50 emails you need 10 mobile numbers (sim cards). I 4 accounts with 20 emails each account have 5 emails attached. In case the scammer do not have those id then the amount should be refunded in your balance within 7 days as far I know. Title: Re: XAPO Script - Hacked Post by: viralalert on July 24, 2016, 03:15:56 PM keep checking this post because i will be posting the download here soon for the fix Can you also make an antibot links for xapo faucet? Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 04:25:13 PM I have create a new .htaccess for the root but somewhere is a error give me time to find it.
Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 05:33:05 PM I believe they are using tor to get around the timer.. this blocks all tor nodes.
Create a file named .htaccess in your root if you haven't already and add this code and Code: <Files 403.shtml> Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on July 24, 2016, 05:39:41 PM I recommend to check your phpmyadmin to see those are abusing the site. When I checked my database, I've seen a user that has over 50 email addresses that is why he was able to claim in my faucet every minute. Here are the email addresses. I think adding some setting to block email address in the admin panel would be great. la.tu.gio@gmail.com la.tu.gi.o@gmail.com *snip* i have checked my database i dont have these entrys i have 2 or 3 cheaters with double or tripple email accounts .. but not like you have Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 05:42:30 PM for proxies you can add this
Code: # Block Proxy but i dont use this because i use a proxie for my internet service Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on July 24, 2016, 05:53:35 PM I believe they are using tor to get around the timer.. this blocks all tor nodes. Create a file named .htaccess if you haven't already and add this code Code: <Files 403.shtml> What does this option do please ? .. i have asked google because i don't known this .. but can't find a good answer Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on July 24, 2016, 06:18:47 PM for proxies you can add this Code: # Block Proxy but i dont use this because i use a proxie for my internet service This kicked me instant out .. without using a proxy .. but a lot of faucets dont let me in .. because of tor/proxy/vpn using .. if i go to http://whatismyipaddress.com/proxy-check all i green (proxy not detectet) ;D so this dectection is i dont now the right english words for it .. useless ? Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 06:24:12 PM for proxies you can add this Code: # Block Proxy but i dont use this because i use a proxie for my internet service This kicked me instant out .. without using a proxy .. but a lot of faucets dont let me in .. because of tor/proxy/vpn using .. if i go to http://whatismyipaddress.com/proxy-check all i green (proxy not detectet) ;D so this dectection is i dont now the right english words for it .. useless ? Code: //We do not allow proxy here Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 06:26:34 PM I believe they are using tor to get around the timer.. this blocks all tor nodes. Create a file named .htaccess if you haven't already and add this code Code: <Files 403.shtml> What does this option do please ? .. i have asked google because i don't known this .. but can't find a good answer This blocks all tor addresses but you cut off the addresses Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on July 24, 2016, 06:39:31 PM I am banned at http://check.getipintel.net/ to mutch requests .. i was in contact with this guy .. he told me i can make a custom tarif but .. lol .. seriously??? i give satohis away .. the advertising payment never covered this .. and than a damn **** steals satoshi and i should pay for this useless proxycheck ?
Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on July 24, 2016, 06:42:20 PM Code: <Files 403.shtml> This blocks all tor addresses but you cut off the addresses i know deny and so on options - so i cut it off because i would only know what this option means Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 06:45:37 PM Code: <Files 403.shtml> This blocks all tor addresses but you cut off the addresses i know deny and so on options - so i cut it off because i would only know what this option means look here http://blamcast.net/articles/block-bots-hotlinking-ban-ip-htaccess (http://blamcast.net/articles/block-bots-hotlinking-ban-ip-htaccess) Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 06:48:15 PM I am banned at http://check.getipintel.net/ to mutch requests .. i was in contact with this guy .. he told me i can make a custom tarif but .. lol .. seriously??? i give satohis away .. the advertising payment never covered this .. and than a damn **** steals satoshi and i should pay for this useless proxycheck ? you should try the code i left and put your faucet back upTitle: Re: XAPO Script - Hacked Post by: viralalert on July 24, 2016, 07:23:39 PM Gifted, all the codes you posted are already implemented on my site before you even post it. It's not your own code, you just get it somewhere else. I thought the codes you are about to share are from yours. :( . I think I wasted my time waiting for your codes as it was already implemented on my site :(.
Title: Re: XAPO Script - Hacked Post by: Ratnet on July 24, 2016, 08:13:45 PM I am banned at http://check.getipintel.net/ to mutch requests .. i was in contact with this guy .. he told me i can make a custom tarif but .. lol .. seriously??? i give satohis away .. the advertising payment never covered this .. and than a damn **** steals satoshi and i should pay for this useless proxycheck ? In order to not get banned from IPGetIntel you should make some kind of "cache" (store in db) of the result returned from them and not to make a request again if you already made one for an IP in the past (some amount of time). I have 3 faucets with one email on IPGetIntel and never had any problem. Cheers! Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 08:55:52 PM Gifted, all the codes you posted are already implemented on my site before you even post it. It's not your own code, you just get it somewhere else. I thought the codes you are about to share are from yours. :( . I think I wasted my time waiting for your codes as it was already implemented on my site :(. so your saying you have all the tor nodes ip's in htaccess?? and i did make the htaccess ::) feel free to help too !!!!Title: Re: XAPO Script - Hacked Post by: Gifted on July 24, 2016, 08:58:06 PM I am banned at http://check.getipintel.net/ to mutch requests .. i was in contact with this guy .. he told me i can make a custom tarif but .. lol .. seriously??? i give satohis away .. the advertising payment never covered this .. and than a damn **** steals satoshi and i should pay for this useless proxycheck ? In order to not get banned from IPGetIntel you should make some kind of "cache" (store in db) of the result returned from them and not to make a request again if you already made one for an IP in the past (some amount of time). I have 3 faucets with one email on IPGetIntel and never had any problem. Cheers! Title: Re: XAPO Script - Hacked Post by: zenitzz on July 25, 2016, 01:29:52 AM My Xapo-Faucet faucet.today got attaked .. as you can see in the list below .. my 30min timer is useless :-) .. Yes now it's too bad for anyone who wants to have a faucet sites will suffer an attack of bots to make up for losses, if that attacked from bot so not a problem with a script.Here is my statement of account: https://xapofau.xyz/wp-content/uploads/2016/07/Personal-Wallet_2016-07-21.csv (https://xapofau.xyz/wp-content/uploads/2016/07/Personal-Wallet_2016-07-21.csv) Be careful all with the same script ... Title: Re: XAPO Script - Hacked Post by: FaucetRank.com on July 25, 2016, 01:35:27 AM My Xapo-Faucet faucet.today got attaked .. as you can see in the list below .. my 30min timer is useless :-) .. Yes now it's too bad for anyone who wants to have a faucet sites will suffer an attack of bots to make up for losses, if that attacked from bot so not a problem with a script.Here is my statement of account: https://xapofau.xyz/wp-content/uploads/2016/07/Personal-Wallet_2016-07-21.csv (https://xapofau.xyz/wp-content/uploads/2016/07/Personal-Wallet_2016-07-21.csv) Be careful all with the same script ... It doesn't seem a bot attack because user is using different emails and I think he is manually doing this but little bit faster. His all emails should be banned and than his game over. Title: Re: XAPO Script - Hacked Post by: Gifted on July 25, 2016, 11:04:38 AM My Xapo-Faucet faucet.today got attaked .. as you can see in the list below .. my 30min timer is useless :-) .. Yes now it's too bad for anyone who wants to have a faucet sites will suffer an attack of bots to make up for losses, if that attacked from bot so not a problem with a script.Here is my statement of account: https://xapofau.xyz/wp-content/uploads/2016/07/Personal-Wallet_2016-07-21.csv (https://xapofau.xyz/wp-content/uploads/2016/07/Personal-Wallet_2016-07-21.csv) Be careful all with the same script ... It doesn't seem a bot attack because user is using different emails and I think he is manually doing this but little bit faster. His all emails should be banned and than his game over. here my thought... with vpn or proxie you can own so many but with TOR there is over 3000 of them so Blocking TOR is the solution Title: Re: XAPO Script - Hacked Post by: Gifted on July 25, 2016, 11:24:00 AM Ok, so that didn't work ! I will be personally building a login and extra CAPTCHA for the Script and putting together a ready download. This will take a few days or a week because i have a day job that takes a lot out of me, so i will work a few hours a day with it and when i'm done i will post the improved Xapo Script.
Title: Re: XAPO Script - Hacked Post by: alfaboy23 on July 25, 2016, 01:59:11 PM These known Xapo faucets are also using the same script as Gifted's:
www.aliensbitcoin.eu www.animalscoin.eu www.freebtc.kz www.gentlebitcoin.eu www.goldcoinjar.com www.ilovebtc.eu www.jupiterbitcoin.com www.onoxvo.es www.pandabitcoin.eu www.storesxbox.es www.sunbitcoin.com www.whalebitcoin.in www.xapobtc.com Althought they used the same script, most of them modified the script. I wonder if they also experienced the same attack? Title: Re: XAPO Script - Hacked Post by: Gifted on July 25, 2016, 04:42:40 PM These known Xapo faucets are also using the same script as Gifted's: ok, so i figured out that the timer only applies to the ip not the email or btc address... this is the mistake "its needs both"www.aliensbitcoin.eu www.animalscoin.eu www.freebtc.kz www.gentlebitcoin.eu www.goldcoinjar.com www.ilovebtc.eu www.jupiterbitcoin.com www.onoxvo.es www.pandabitcoin.eu www.storesxbox.es www.sunbitcoin.com www.whalebitcoin.in www.xapobtc.com Althought they used the same script, most of them modified the script. I wonder if they also experienced the same attack? Title: Re: XAPO Script - Hacked Post by: dibon on July 26, 2016, 07:54:14 AM Hey guys,
Im using different script which checks IPs & emails also, but.... Im getting drained by people with multi accounts (that is sure) and some bots may be too. They found a method for creating multiple accounts. This is how it works: 1. create temporary email 2. go to textnow.com and create virtual phone number (for free!) 3. create another xapo account veryfing it using these fake emails and phones 4. join all your accounts so they can be operated from one xapo account 5. use proxies, vpns As I can see in my phpmyadmin there is a lot of people that have 5-8 accounts. Even with the same login just in different provider (mostly from RU and UA). But there is also A LOT (!!!!) of accounts like tyejsalinjet1988@yandex.ru, webcokoku1985@yandex.ru etc.. Random letters and year... So what can we do?!?! At this moment I turned on another captcha verification for those countries in Cloud Flare. But it did not stopped some of them.. Title: Re: XAPO Script - Hacked Post by: dibon on July 26, 2016, 09:15:34 AM Sorry guys from yandex.ru, you will not be able to payout from my faucet.
Also there is a huge problem with determining proxy when you are behind cloudflare, so I decided to turn it off and check for proxies.. We will see if that helps. Title: Re: XAPO Script - Hacked Post by: alfaboy23 on July 26, 2016, 12:45:27 PM Sorry guys from yandex.ru, you will not be able to payout from my faucet. Also there is a huge problem with determining proxy when you are behind cloudflare, so I decided to turn it off and check for proxies.. We will see if that helps. After the last attack on my faucet, aside from Ind0n3s!a, I also block most IP's that is using yandex.ru, and most of them are in Ru5s!a, but some of them are using non-Ru5s!an IP. Title: Re: XAPO Script - Hacked Post by: Gifted on July 26, 2016, 03:58:15 PM So even if i built a login and timed by emails and ips it still would have no effect... The best thing i can think of is blocking the whole country
Block Russia like this in .htaccess https://www.countryipblocks.net/deny_russia.txt Title: Re: XAPO Script - Hacked Post by: Gifted on July 28, 2016, 02:24:38 PM Blocking whole countries do not work either... i see one email collecting every couple of min.. this is due to not having a timer on the email but if they are making false email accounts whats the point....i am at a dead stop with this problem..
Title: Re: XAPO Script - Hacked Post by: Salmen on July 28, 2016, 02:33:21 PM Blocking whole countries do not work either... i see one email collecting every couple of min.. this is due to not having a timer on the email but if they are making false email accounts whats the point....i am at a dead stop with this problem.. From which email provider comes the most bots attack?Title: Re: XAPO Script - Hacked Post by: ardodd on August 02, 2016, 04:24:23 AM Blocking whole countries do not work either... i see one email collecting every couple of min.. this is due to not having a timer on the email but if they are making false email accounts whats the point....i am at a dead stop with this problem.. @Gifted I am new here but been reading this post for about two hours now. And been wondering how to effectively STOP BOTS from doing so much damage. I know everyone here has way more experience than myself. I am ( In my little squirrel brain ) ( And yes not much room for thinking either ) mind ( hint smoke coming out of ears ) two things that come to mind are Log-in and Time on Site after Log-in. Example #1 1) ABC user comes to site. 2) ABC user has to enter bitcoin wallet address or for Xapo a email address. 3) ABC user has to Solve Captcha. 4) ABC user is credited with xxx amount of satoshi. ***BOTS use a Captcha Service to Solve the Captcha's*** If the previous BOT or Hacker is running consecutive transactions is he/she or it having to Solve Captcha's before the transaction or has this BOT or person found a weakness in the script where they can call the same Captcha over and over. Not exactly sure how they would be able to freeze that Captcha but in theory it is possible and can explain how they are able to process so many transactions in a short period of time. I would like to ask if you are able to incorporate two ideas into the script and close all back doors for Captcha problems. 1) I know it is more of a bother than anything for any site to use a Password. But if we want the script to be secure we need to incorporate counter measures to STOP them. I would propose to add a Random Password from Random ORG with a Timer on it to input the Password or PassCode ( In theory it takes 20 seconds to see the code or password and enter it ) maybe longer if you are blind like me. By limiting the time on the Password or PassCode it stops the BOT from having time get it solved from a outsourcing place. This is for being able to STOP the BOT from entering. As the Password or PassCode is a one time thing and can not be duplicated for other users to benefit from. 2) If that is too much trouble then I would suggest as a last resort to have the user verify the Xapo email by sending them a Password or PassCode to enable automatic withdrawals. Which means the BOT or person would be hindered and frustrated so they would quit trying to hack it. As it keeps Honest Users Honest and DisHonest Users Away. 3) Use both methods and change the time limit on the Captcha Solving to under 20 seconds and Password or PassCode times to less than 20 seconds to respond. Adjust the time accordingly if needed. BOT ;D = Password or PassCode ??? = BOT >:( = Owner ::) = Owner Reply :P Title: Re: XAPO Script - Hacked Post by: Gifted on August 02, 2016, 08:43:18 PM Blocking whole countries do not work either... i see one email collecting every couple of min.. this is due to not having a timer on the email but if they are making false email accounts whats the point....i am at a dead stop with this problem.. @Gifted I am new here but been reading this post for about two hours now. And been wondering how to effectively STOP BOTS from doing so much damage. I know everyone here has way more experience than myself. I am ( In my little squirrel brain ) ( And yes not much room for thinking either ) mind ( hint smoke coming out of ears ) two things that come to mind are Log-in and Time on Site after Log-in. Example #1 1) ABC user comes to site. 2) ABC user has to enter bitcoin wallet address or for Xapo a email address. 3) ABC user has to Solve Captcha. 4) ABC user is credited with xxx amount of satoshi. ***BOTS use a Captcha Service to Solve the Captcha's*** If the previous BOT or Hacker is running consecutive transactions is he/she or it having to Solve Captcha's before the transaction or has this BOT or person found a weakness in the script where they can call the same Captcha over and over. Not exactly sure how they would be able to freeze that Captcha but in theory it is possible and can explain how they are able to process so many transactions in a short period of time. I would like to ask if you are able to incorporate two ideas into the script and close all back doors for Captcha problems. 1) I know it is more of a bother than anything for any site to use a Password. But if we want the script to be secure we need to incorporate counter measures to STOP them. I would propose to add a Random Password from Random ORG with a Timer on it to input the Password or PassCode ( In theory it takes 20 seconds to see the code or password and enter it ) maybe longer if you are blind like me. By limiting the time on the Password or PassCode it stops the BOT from having time get it solved from a outsourcing place. This is for being able to STOP the BOT from entering. As the Password or PassCode is a one time thing and can not be duplicated for other users to benefit from. 2) If that is too much trouble then I would suggest as a last resort to have the user verify the Xapo email by sending them a Password or PassCode to enable automatic withdrawals. Which means the BOT or person would be hindered and frustrated so they would quit trying to hack it. As it keeps Honest Users Honest and DisHonest Users Away. 3) Use both methods and change the time limit on the Captcha Solving to under 20 seconds and Password or PassCode times to less than 20 seconds to respond. Adjust the time accordingly if needed. BOT ;D = Password or PassCode ??? = BOT >:( = Owner ::) = Owner Reply :P Xapo itself and changing ip addreses seems no big deal for these guys. there is no security flaw in the capcha its in xapo wallet itself. i have written the security team on this issue and hopefully this will be fixed. im pretty sure the are doing it manual not by a bot because someone with programming knowlegde usaly wont waste their time with faucets when they are making six figure income. some bots do work but i think they were just someones hobby. but no bot can change ip's put new address in and solve captcha and turn to next website it would just seem very unlikely what your saying is just another captcha but custom. that works for bots but i think we are dealing with manual inputs "maybe paying for captcha services with a pool share" Title: Re: XAPO Script - Hacked Post by: Gifted on August 02, 2016, 09:00:39 PM Blocking whole countries do not work either... i see one email collecting every couple of min.. this is due to not having a timer on the email but if they are making false email accounts whats the point....i am at a dead stop with this problem.. From which email provider comes the most bots attack?Title: Re: XAPO Script - Hacked Post by: ardodd on August 03, 2016, 09:36:05 AM Gifted,
As I said before I did not much experience in this but just wanted to give it a try. Thats no problem I have been called worse by better. And yes I am a idiot, I dont claim to be a genius by any means. Put a ROCK beside me and the ROCK would look like a ROCKET Scientist. But to enhance this thread I went out looking for ways to get Bitcoins Fast and come back with this little contraption. It is called CoinCollector and I got it for $1.00 online. Now I did have to do some digging into it before I learned how it operated ( 30 Minutes to be exact ). And it was up and running gathering Bitcoins for me. And this may not even be what you are talking about nor the whole conversation. But it is how I interpreted it. #1 CoinCollector v4 http://www.imagehostingforall.com/images/ardodd/coincollectorv4.jpg #2 CoinCollector v4 Settings http://www.imagehostingforall.com/images/ardodd/coincollectorv4settings.jpg #3 CoinCollector v4 ProxyList http://www.imagehostingforall.com/images/ardodd/coincollectorv4proxylist.jpg #4 CoinCollector v4 Captcha Reading Services http://www.imagehostingforall.com/images/ardodd/coincollectorv4captchaservices.jpg I am sure any idiot could figure this out...I just need a little longer than your normal idoit... Title: Re: XAPO Script - Hacked Post by: babo on August 03, 2016, 11:54:02 AM @Gifted
thank you for your amazing script, i ear about security problem of your code.. if you want i can help to fix the problems. Title: Re: XAPO Script - Hacked Post by: Gifted on August 03, 2016, 06:05:11 PM Gifted, yes i have seen those.. in fact they have my faucet list posted next to the download as you can see here http://thebot.net/threads/coincollector-v4-multi-faucet-bot.316973/page-36#post-3488787 (http://thebot.net/threads/coincollector-v4-multi-faucet-bot.316973/page-36#post-3488787)As I said before I did not much experience in this but just wanted to give it a try. Thats no problem I have been called worse by better. And yes I am a idiot, I dont claim to be a genius by any means. Put a ROCK beside me and the ROCK would look like a ROCKET Scientist. But to enhance this thread I went out looking for ways to get Bitcoins Fast and come back with this little contraption. It is called CoinCollector and I got it for $1.00 online. Now I did have to do some digging into it before I learned how it operated ( 30 Minutes to be exact ). And it was up and running gathering Bitcoins for me. And this may not even be what you are talking about nor the whole conversation. But it is how I interpreted it. #1 CoinCollector v4 http://www.imagehostingforall.com/images/ardodd/coincollectorv4.jpg #2 CoinCollector v4 Settings http://www.imagehostingforall.com/images/ardodd/coincollectorv4settings.jpg #3 CoinCollector v4 ProxyList http://www.imagehostingforall.com/images/ardodd/coincollectorv4proxylist.jpg #4 CoinCollector v4 Captcha Reading Services http://www.imagehostingforall.com/images/ardodd/coincollectorv4captchaservices.jpg I am sure any idiot could figure this out...I just need a little longer than your normal idoit... Title: Re: XAPO Script - Hacked Post by: Gifted on August 03, 2016, 06:07:56 PM @Gifted what can you do?? @babothank you for your amazing script, i ear about security problem of your code.. if you want i can help to fix the problems. Title: Re: XAPO Script - Hacked Post by: crairezx20 on August 03, 2016, 06:15:19 PM I heard in bitcoinblackhat i forgot the name of the forum that they have a script for timer resetter that can claim every minute.
so i think according to the claim in the first page in this thread i saw that every 2 seconds claim. So i think he is using a complete bot. coin collector v4 dont work just like the same that every 2 seconds claim. because coin collector has only selected faucet.. Title: Re: XAPO Script - Hacked Post by: Gifted on August 03, 2016, 06:20:50 PM timer reset:
Open the source "inspect element" through the dev tools and remove the disabled attribute from the button/input tag. Simple On Chrome, use ctrl-shift-I to bring up the dev panel. This can even be automated with a plugin such as tampermonkey. Write a script that modifies the site's DOM to remove those annoyances and have tampermonkey run it everytime you visit that faucet. new fix listed below Title: Re: XAPO Script - Hacked Post by: Lionidas on August 03, 2016, 06:49:56 PM Another hack job? :o
Is anything to do with bitcoin not safe to use anymore? These things seem to be affecting it more and more these days that I am starting to worry if my coins will be available whenever I go and check to see if they are still there. Xapo wallets can be affected if this script takes their wallet address associated to what they used for this faucet. Title: Re: XAPO Script - Hacked Post by: ardodd on August 03, 2016, 10:03:06 PM WOW !!!!!
Guess I am glad I come here to read up on some the problems before I started the project I have been wanting to do. Gifted your script was and still is what I been looking for. But i wanted to add a Bitcoin Cycler on the side to double the bitcoins for users. But knowing that information here does make me very hesitant to start on it. And since I do not have any experience with manipulating code I might would need to seek professional help on this matter. If you get the bugs fixed I definitely am interested in using the script and having the bitcoin cycler script running together. Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 01:36:09 AM Code to stop timer reset has been implemented and disables right click for source and F12
Put in public_html/style/template/index.php right before </head> Disable right click: Code: <script language="JavaScript"> Code: coming soon Code: <script language="JavaScript"> Code: <noscript><center id=b6b2><p>Please enable JavaScript!<br>Bitte aktiviere JavaScript!<br>S'il vous pla&icirc;t activer JavaScript!<br>Por favor,activa el JavaScript!<br><a href="http://antiblock.org/">antiblock.org</a></p></div></noscript> Code: <script>(function(w,u){var d=w.document,z=typeof u;function b6b2(){function c(c,i){var e=d.createElement('b'),b=d.body,s=b.style,l=b.childNodes.length;if(typeof i!=z){e.setAttribute('id',i);s.margin=s.padding=0;s.height='100%';l=Math.floor(Math.random()*l)+1}e.innerHTML=c;b.insertBefore(e,b.childNodes[l-1])}function g(i,t){return !t?d.getElementById(i):d.getElementsByTagName(t)};function f(v){if(!g('b6b2')){c('<p>Please disable your ad blocker to claim! (AdBlock, Adlock Plus, uBlock etc.)<br>Bitte deaktiviere Deinen Werbeblocker!<br>Veuillez désactiver votre bloqueur de publicité!<br>Por favor, desactive el bloqueador de anuncios!<br><br>Our faucet provides the service of giving small fractions of Bitcoin visitors.<br>This service can provide through advertising on the site. <br>Please disable ad blocker! and help to give more Bitcoin free for all!<br><a href="http://www.bitcoinfaucetexchange.com/">I disable ad blocker and want to refresh the page!</a></p>','b6b2')}};(function(){var a=['AdBar1','ad_468_60','adsbox-left','adspot-295x60','headeradvertholder','kaufDA-widget','sidebar_ad','ad','ads','adsense'],l=a.length,i,s='',e;for(i=0;i<l;i++){if(!g(a[i])){s+='<a id="'+a[i]+'"></a>'}}c(s);l=a.length;setTimeout(function(){for(i=0;i<l;i++){e=g(a[i]);if(e.offsetParent==null||(w.getComputedStyle?d.defaultView.getComputedStyle(e,null).getPropertyValue('display'):e.currentStyle.display)=='none'){return f('#'+a[i])}}},250)}());(function(){var t=g(0,'img'),a=['.org/gads/','/adhandler.','/adleaderboardtop.','/ads/300.','/adv/ads/ad','/advertising.','/advertorial_','/no_ads.','/twgetad3.','.480x60.'],i;if(typeof t[0]!=z&&typeof t[0].src!=z){i=new Image();i.onload=function(){this.onload=z;this.onerror=function(){f(this.src)};this.src=t[0].src+'#'+a.join('')};i.src=t[0].src}}());(function(){var o={'http://pagead2.googlesyndication.com/pagead/show_ads.js':'google_ad_client','http://js.adscale.de/getads.js':'adscale_slot_id','http://get.mirando.de/mirando.js':'adPlaceId'},S=g(0,'script'),l=S.length-1,n,r,i,v,s;d.write=null;for(i=l;i>=0;--i){s=S[i];if(typeof o[s.src]!=z){n=d.createElement('script');n.type='text/javascript';n.src=s.src;v=o[s.src];w[v]=u;r=S[0];n.onload=n.onreadystatechange=function(){if(typeof w[v]==z&&(!this.readyState||this.readyState==="loaded"||this.readyState==="complete")){n.onload=n.onreadystatechange=null;r.parentNode.removeChild(n);w[v]=null}};r.parentNode.insertBefore(n,r);setTimeout(function(){if(w[v]===u){f(n.src)}},2000);break}}}())}if(d.addEventListener){w.addEventListener('load',b6b2,false)}else{w.attachEvent('onload',b6b2)}})(window);</script>Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 01:48:00 AM Ive decided to make a fresh copy with all added security to it and display download sometime tomorrow. i was waiting for answers before i made a new copy . if someone would like to contribute more security code plz feel free to post
Title: Re: XAPO Script - Hacked Post by: sabotag3x on August 04, 2016, 02:02:32 AM It HIDE the source code? or you just can't open the source code window?
Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 02:10:45 AM It HIDE the source code? or you just can't open the source code window? fixed both Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 02:23:55 AM so now there is now inspect element at all blocking right click and f12 with the codes i listed above
but now there is ctr-shift-I to stop lol The problem is people will have a hard time pasting their btc address this i will have to think about how to get around Title: Re: XAPO Script - Hacked Post by: sabotag3x on August 04, 2016, 02:33:12 AM are you testing here -> http://www.bitcoinfaucetexchange.com (http://www.bitcoinfaucetexchange.com) ?
because I can right click, F12, CTRL+U, CTRL+SHIFT+I Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 02:34:37 AM are you testing here -> http://www.bitcoinfaucetexchange.com (http://www.bitcoinfaucetexchange.com) ? refresh the pagebecause I can right click, F12, CTRL+U, CTRL+SHIFT+I Title: Re: XAPO Script - Hacked Post by: sabotag3x on August 04, 2016, 02:42:26 AM are you testing here -> http://www.bitcoinfaucetexchange.com (http://www.bitcoinfaucetexchange.com) ? refresh the pagebecause I can right click, F12, CTRL+U, CTRL+SHIFT+I Now I can't right click.. however F12 and others keys still working.. what about make a full javascript or flash faucet? :D I really don't know what more we can do against bots.. edit: I'm using Maxthon browser Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 02:46:24 AM to many browsers use diffrent code so this will take a little while
Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 03:15:04 AM ok, i think i got it now but not sure if its for all browsers
Code to stop timer exploit or source goes in <head> Code: <script language="JavaScript"> Put this in the body: Code: <body onkeypress="return disableCtrlKeyCombination(event);" onkeydown="return disableCtrlKeyCombination(event);" > You can test here http://www.bitcoinfaucetexchange.com (http://www.bitcoinfaucetexchange.com) and let me know if it works with what browsers Title: Re: XAPO Script - Hacked Post by: viralalert on August 04, 2016, 04:05:34 AM ok, i think i got it now but not sure if its for all browsers Code to stop timer exploit or source Code: <script language="JavaScript"> You can test here http://www.bitcoinfaucetexchange.com (http://www.bitcoinfaucetexchange.com) and let me know if it works with what browsers Great! It's working. Good job! Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on August 04, 2016, 04:05:51 AM Tested with Chrome - F12 - Strg+U - Strg+Shift+I doesnt work anymore
Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on August 04, 2016, 04:26:25 AM ok, i think i got it now but not sure if its for all browsers Code to stop timer exploit or source Code: <script language="JavaScript"> You can test here http://www.bitcoinfaucetexchange.com (http://www.bitcoinfaucetexchange.com) and let me know if it works with what browsers Just FYI - i have insert this code into my page for testing purpose ... but STRG+U are still works there - yeah i did a refresh and all this necessary :-) .. you can see on https://faucet.today (https://faucet.today) if you press Strg+U that the code is implemented Title: Re: XAPO Script - Hacked Post by: sabotag3x on August 04, 2016, 05:05:29 AM Good job Gifted, right click and CTRL commands don't work! good job!
I was thinking about CTRL+V on address but this function works fine.. now try to deal with it.. ;D https://talkimg.com/images/2023/07/24/QUqt8.png Always will have a way.. maybe you wanna try php obfuscator like this http://phpobfuscator.net/examples.html (http://phpobfuscator.net/examples.html) Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 05:45:32 AM ok, i think i got it now but not sure if its for all browsers Code to stop timer exploit or source Code: <script language="JavaScript"> You can test here http://www.bitcoinfaucetexchange.com (http://www.bitcoinfaucetexchange.com) and let me know if it works with what browsers Just FYI - i have insert this code into my page for testing purpose ... but STRG+U are still works there - yeah i did a refresh and all this necessary :-) .. you can see on https://faucet.today (https://faucet.today) if you press Strg+U that the code is implemented Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 05:47:14 AM Good job Gifted, right click and CTRL commands don't work! good job! lol, i didnt even know that was thereI was thinking about CTRL+V on address but this function works fine.. now try to deal with it.. ;D https://i.imgur.com/fG0UCIU.png Always will have a way.. maybe you wanna try php obfuscator like this http://phpobfuscator.net/examples.html (http://phpobfuscator.net/examples.html) ill get back to you on that. Thanks for showing me this Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 06:01:17 AM ok, i think i got it now but not sure if its for all browsers Code to stop timer exploit or source Code: <script language="JavaScript"> You can test here http://www.bitcoinfaucetexchange.com (http://www.bitcoinfaucetexchange.com) and let me know if it works with what browsers Just FYI - i have insert this code into my page for testing purpose ... but STRG+U are still works there - yeah i did a refresh and all this necessary :-) .. you can see on https://faucet.today (https://faucet.today) if you press Strg+U that the code is implemented Code: <body onkeypress="return disableCtrlKeyCombination(event);" onkeydown="return disableCtrlKeyCombination(event);" > Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on August 04, 2016, 06:13:48 AM ok, i think i got it now but not sure if its for all browsers Code to stop timer exploit or source Code: <script language="JavaScript"> You can test here http://www.bitcoinfaucetexchange.com (http://www.bitcoinfaucetexchange.com) and let me know if it works with what browsers Just FYI - i have insert this code into my page for testing purpose ... but STRG+U are still works there - yeah i did a refresh and all this necessary :-) .. you can see on https://faucet.today (https://faucet.today) if you press Strg+U that the code is implemented Code: <body onkeypress="return disableCtrlKeyCombination(event);" onkeydown="return disableCtrlKeyCombination(event);" > Thats it - now it works .. thankx a lot .. (i use Chrome) .. Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 06:18:26 AM @ 5ub_zer0 : Your welcome, im trying guys just give me some more time and i will have a new download. 8)
Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 06:22:34 AM make sure you allow ctr+v so they can paste the address (i have modified it here below) list of commands to disable http://anti-code.com/devtools-cheatsheet/ (http://anti-code.com/devtools-cheatsheet/)
Here is the modified code : Code: /////////make sure java script is on////// Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 07:01:36 AM LOL, so this extension in chrome kills my code https://chrome.google.com/webstore/detail/enable-right-click/hhojmcideegachlhfgfdhailpfhgknjm/related (https://chrome.google.com/webstore/detail/enable-right-click/hhojmcideegachlhfgfdhailpfhgknjm/related)
So i need a different approach :-\ :-\ :-\ :-\ :-\ Title: Re: XAPO Script - Hacked Post by: babo on August 04, 2016, 07:13:46 AM @Gifted what can you do?? @babothank you for your amazing script, i ear about security problem of your code.. if you want i can help to fix the problems. improve your script, for work im a real frontenders fullstack.. im working with javascript but i also know php :) Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 07:44:44 AM @Gifted what can you do?? @babothank you for your amazing script, i ear about security problem of your code.. if you want i can help to fix the problems. improve your script, for work im a real frontenders fullstack.. im working with javascript but i also know php :) I think it needs some kind of better admin for banning ip's and seeing whos been claiming, also better security for multi claiming with proxies vpn etc. maybe a timer for button to get better bounce rate Feel free to give it a shot ;) Title: Re: XAPO Script - Hacked Post by: ardodd on August 04, 2016, 08:46:29 AM @Gifted what can you do?? @babothank you for your amazing script, i ear about security problem of your code.. if you want i can help to fix the problems. improve your script, for work im a real frontenders fullstack.. im working with javascript but i also know php :) I think it needs some kind of better admin for banning ip's and seeing whos been claiming, also better security for multi claiming with proxies vpn etc. maybe a timer for button to get better bounce rate Feel free to give it a shot ;) @Gifted, I know I don't contribute much to this topic other than stirring things up. I was looking at some backend app's that can actually steal the information and download it into CSV files and they can program their Bot to work. I am wondering if you have looked into ( iMacros ) for Chrome and Firefox as I just got them to see if they can in anyway effect your Script. Not sure how to use them but adding them and the Free Proxy List from Chrome it may be possible for them to find backdoors. Again I am new to this and am trying to fully understand the script so i can use it. iMacros for Chrome #1: http://www.imagehostingforall.com/images/ardodd/imacrosforchrome.jpg Free Proxy List for Chrome: http://www.imagehostingforall.com/images/ardodd/proxylistonchrome.jpg iMacros for Firefox #1: http://www.imagehostingforall.com/images/ardodd/imacrosforfirefox.jpg iMacros for Firefox #2: http://www.imagehostingforall.com/images/ardodd/imacrosforfirefox2.jpg Title: Re: XAPO Script - Hacked Post by: sabotag3x on August 04, 2016, 08:49:53 AM I'm testing your scripts here Gifted http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet)
less the adblock one(got some bug here) Thanks for all! Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 09:18:28 AM I'm testing your scripts here Gifted http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) says im on a proxie and im notless the adblock one(got some bug here) Thanks for all! Title: Re: XAPO Script - Hacked Post by: viralalert on August 04, 2016, 09:19:36 AM Check my faucet as well and let me know what you think about. http://viral-alert.com/xapo
Title: Re: XAPO Script - Hacked Post by: sabotag3x on August 04, 2016, 09:21:11 AM I'm testing your scripts here Gifted http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) says im on a proxie and im notless the adblock one(got some bug here) Thanks for all! Yeap, other user tell me the same thing, I'm trying to fix it.. With this code I'm blocking everyone ??? ??? ??? Code: <?PHP and with other script, any proxy can enter on the faucet.. ??? ??? well.. I go to sleep and try again tomorrow Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 09:23:25 AM @Gifted what can you do?? @babothank you for your amazing script, i ear about security problem of your code.. if you want i can help to fix the problems. improve your script, for work im a real frontenders fullstack.. im working with javascript but i also know php :) I think it needs some kind of better admin for banning ip's and seeing whos been claiming, also better security for multi claiming with proxies vpn etc. maybe a timer for button to get better bounce rate Feel free to give it a shot ;) @Gifted, I know I don't contribute much to this topic other than stirring things up. I was looking at some backend app's that can actually steal the information and download it into CSV files and they can program their Bot to work. I am wondering if you have looked into ( iMacros ) for Chrome and Firefox as I just got them to see if they can in anyway effect your Script. Not sure how to use them but adding them and the Free Proxy List from Chrome it may be possible for them to find backdoors. Again I am new to this and am trying to fully understand the script so i can use it. iMacros for Chrome #1: http://www.imagehostingforall.com/images/ardodd/imacrosforchrome.jpg Free Proxy List for Chrome: http://www.imagehostingforall.com/images/ardodd/proxylistonchrome.jpg iMacros for Firefox #1: http://www.imagehostingforall.com/images/ardodd/imacrosforfirefox.jpg iMacros for Firefox #2: http://www.imagehostingforall.com/images/ardodd/imacrosforfirefox2.jpg Title: Re: XAPO Script - Hacked Post by: ardodd on August 04, 2016, 09:24:55 AM I'm testing your scripts here Gifted http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) less the adblock one(got some bug here) Thanks for all! When I go there it just tells me that I am using a Proxy. And nothing else. But I am looking into the source page for it right now and this is what I am seeing on it under properties. body aLink:"" accessKey:"" attributes:NamedNodeMap background:"" baseURI:"http://www.bitcoinamerica.com.br/faucet/" bgColor:"" childElementCount:0 childNodes:NodeList[1] children:HTMLCollection[0] classList:DOMTokenList[0] className:"" clientHeight:775 clientLeft:0 clientTop:0 clientWidth:1042 contentEditable:"inherit" dataset:DOMStringMap dir:"" draggable:false firstChild:text firstElementChild:null hidden:false id:"" innerHTML:"You are using a proxy!" innerText:"You are using a proxy!" isConnected:true isContentEditable:false lang:"" lastChild:text lastElementChild:null link:"" localName:"body" namespaceURI:"http://www.w3.org/1999/xhtml" nextElementSibling:null nextSibling:null nodeName:"BODY" nodeType:1 nodeValue:null offsetHeight:759 offsetLeft:0 offsetParent:null offsetTop:0 offsetWidth:1026 onabort:null onbeforecopy:null onbeforecut:null onbeforepaste:null onbeforeunload:null onblur:null oncancel:null oncanplay:null oncanplaythrough:null onchange:null onclick:null onclose:null oncontextmenu:null oncopy:null oncuechange:null oncut:null ondblclick:null ondrag:null ondragend:null ondragenter:null ondragleave:null ondragover:null ondragstart:null ondrop:null ondurationchange:null onemptied:null onended:null onerror:null onfocus:null onhashchange:null oninput:null oninvalid:null onkeydown:null onkeypress:null onkeyup:null onlanguagechange:null onload:null onloadeddata:null onloadedmetadata:null onloadstart:null onmessage:null onmousedown:null onmouseenter:null onmouseleave:null onmousemove:null onmouseout:null onmouseover:null onmouseup:null onmousewheel:null onoffline:null ononline:null onpagehide:null onpageshow:null onpaste:null onpause:null onplay:null onplaying:null onpopstate:null onprogress:null onratechange:null onrejectionhandled:null onreset:null onresize:null onscroll:null onsearch:null onseeked:null onseeking:null onselect:null onselectstart:null onshow:null onstalled:null onstorage:null onsubmit:null onsuspend:null ontimeupdate:null ontoggle:null onunhandledrejection:null onunload:null onvolumechange:null onwaiting:null onwebkitfullscreenchange:null onwebkitfullscreenerror:null onwheel:null outerHTML:"<body>You are using a proxy!</body>" outerText:"You are using a proxy!" ownerDocument:document parentElement:html parentNode:html prefix:null previousElementSibling:head previousSibling:head scrollHeight:775 scrollLeft:0 scrollTop:0 scrollWidth:1042 shadowRoot:null spellcheck:true style:CSSStyleDeclaration tabIndex:-1 tagName:"BODY" text:"" textContent:"You are using a proxy!" title:"" translate:true vLink:"" webkitdropzone:"" __proto__:HTMLBodyElement Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 09:28:47 AM Check my faucet as well and let me know what you think about. http://viral-alert.com/xapo @viralalert: its working for your pageTitle: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 09:32:19 AM Thanks for bringing up the imacros thing...i just found another security problem but i dont want to share here untill its fixed
Title: Re: XAPO Script - Hacked Post by: ardodd on August 04, 2016, 09:38:00 AM Where would he allow proxy servers at now that he has disabled them completey.
Title: Re: XAPO Script - Hacked Post by: ardodd on August 04, 2016, 09:48:35 AM Thanks for bringing up the imacros thing...i just found another security problem but i dont want to share here untill its fixed @Gifted have you considered trying out the Sandboxie Software. And asking if it can be incorporated into the script? http://www.sandboxie.com/ I am just asking cause on one of my Wordpress sites I setup Woocommerce and conected it to Paypal Gateway. And I had to set it up using Sandboxie Software to make it Secure. Title: Re: XAPO Script - Hacked Post by: babo on August 04, 2016, 06:25:09 PM @Gifted what can you do?? @babothank you for your amazing script, i ear about security problem of your code.. if you want i can help to fix the problems. improve your script, for work im a real frontenders fullstack.. im working with javascript but i also know php :) I think it needs some kind of better admin for banning ip's and seeing whos been claiming, also better security for multi claiming with proxies vpn etc. maybe a timer for button to get better bounce rate Feel free to give it a shot ;) ok gifted, in holidays i try to improve admin panel, in specific way ip banning admin panel page Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 07:25:41 PM @Gifted what can you do?? @babothank you for your amazing script, i ear about security problem of your code.. if you want i can help to fix the problems. improve your script, for work im a real frontenders fullstack.. im working with javascript but i also know php :) I think it needs some kind of better admin for banning ip's and seeing whos been claiming, also better security for multi claiming with proxies vpn etc. maybe a timer for button to get better bounce rate Feel free to give it a shot ;) ok gifted, in holidays i try to improve admin panel, in specific way ip banning admin panel page Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 08:08:55 PM Ok guys, there is another hack that can be fixed by replacing this code in your index.php file not the one in style.
find this code Code: if($response->success){and replace with this Code: if($response->success){This redirects back to your page after 30 seconds so that the captcha resets so that a imacro program cannot be programmed to just refresh and get credit every hour when they are sleeping. i would suggest do this immediately! Make sure you put your faucet address where is says change to your faucet url. Title: Re: XAPO Script - Hacked Post by: ardodd on August 04, 2016, 09:24:52 PM Ok guys, there is another hack that can be fixed by replacing this code in your index.php file not the one in style. find this code Code: if($response->success){and replace with this Code: if($response->success){This redirects back to your page after 30 seconds so that the captcha resets so that a imacro program cannot be programmed to just refresh and get credit every hour when they are sleeping. i would suggest do this immediately! Make sure you put your faucet address where is says change to your faucet url. @Gifted would it not be better if we wait til you have made a full new version with all the changes in it. As if we keep changing the code to what comes next seems alot of extra work on you also. Call them v1.1 and use the new v1.2 so we know it is the updated version. Example: Yesterdays security updates v1.1 Todays security update v1.2 And every update could have ( v ) attached to it. Would it not seem better if you made the change and then just updated the name of the change. In the description you can tell or explain what is updated. How much you want to bet that hackers read these post and see the code change and are already looking for counter measures to it. Personally I would think posting code that fixes a security measure should not be posted and kept inside your files so no one seems it. The only way they can get the fix is by downloading the newest Version in a update. Just my thoughts Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 09:27:52 PM The patch is in php server side they cant have access and this needs to be fixed right away . i can see your point but a lot of people downloaded my script and they need to know now. i started a security patch thread already
Title: Re: XAPO Script - Hacked Post by: ardodd on August 04, 2016, 09:36:12 PM The patch is in php server side they cant have access and this needs to be fixed right away . i can see your point but a lot of people downloaded my script and they need to know now. i started a security patch thread already Yes sir you are 100% correct about them needing to know right now to close these backdoors. Do you have a problem with hosting a private membership section for those that do use your code for their website. One that would allow them access to a secure site where only they can have access to your details. Most people may not worry about where or how they got the script to use on a faucet. Like I can a S2Membership plugin on wordpress that only allows members if I approve them. And it is hard to get into it since i verify that they are who they say they are. And yours could be adapted to verifying that they use your script and it come from you if they wish to get details from the updates. More like a private support for your script since you modified and made it secure now. Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 10:08:00 PM The patch is in php server side they cant have access and this needs to be fixed right away . i can see your point but a lot of people downloaded my script and they need to know now. i started a security patch thread already Yes sir you are 100% correct about them needing to know right now to close these backdoors. Do you have a problem with hosting a private membership section for those that do use your code for their website. One that would allow them access to a secure site where only they can have access to your details. Most people may not worry about where or how they got the script to use on a faucet. Like I can a S2Membership plugin on wordpress that only allows members if I approve them. And it is hard to get into it since i verify that they are who they say they are. And yours could be adapted to verifying that they use your script and it come from you if they wish to get details from the updates. More like a private support for your script since you modified and made it secure now. Title: Re: XAPO Script - Hacked Post by: ardodd on August 04, 2016, 10:57:19 PM @Gifted,
I do apologize for pushing so hard. And I apologize for my impatience, as I understand your position and wanting to help others protect their sites and incomes from this script. I can not only be an idiot but also a pushy idiot. My Apologies..... ardodd Title: Re: XAPO Script - Hacked Post by: Gifted on August 04, 2016, 11:03:09 PM @Gifted, no, it was a good idea ...so dont worryI do apologize for pushing so hard. And I apologize for my impatience, as I understand your position and wanting to help others protect their sites and incomes from this script. I can not only be an idiot but also a pushy idiot. My Apologies..... ardodd Title: Re: XAPO Script - Hacked Post by: alfaboy23 on August 05, 2016, 12:39:44 AM I'm testing your scripts here Gifted http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) says im on a proxie and im notless the adblock one(got some bug here) Thanks for all! Yeap, other user tell me the same thing, I'm trying to fix it.. With this code I'm blocking everyone ??? ??? ??? Code: <?PHP and with other script, any proxy can enter on the faucet.. ??? ??? well.. I go to sleep and try again tomorrow I'll try to help. That proxy header from that code, try to put that in in your .htaccess file, then instead of that PHP code, try this and put it above <!DOCTYPE html> in your template public_html/yourfaucet/style/template/index.php: Like this: Code: <?php if( @fsockopen( $_SERVER['REMOTE_ADDR'], 80, $errstr, $errno, 1 ) ) Then test it in boomproxy, then after accessing your site in boomproxy click the clear cookies link and see if proxy blocking is successful. It should result like this: https://i.imgur.com/xMLZEUJ.png Hope that helps even a little. Title: Re: XAPO Script - Hacked Post by: sabotag3x on August 05, 2016, 01:03:45 AM I'm testing your scripts here Gifted http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) says im on a proxie and im notless the adblock one(got some bug here) Thanks for all! Yeap, other user tell me the same thing, I'm trying to fix it.. With this code I'm blocking everyone ??? ??? ??? Code: <?PHP and with other script, any proxy can enter on the faucet.. ??? ??? well.. I go to sleep and try again tomorrow I'll try to help. That proxy header from that code, try to put that in in your .htaccess file, then instead of that PHP code, try this and put it above <!DOCTYPE html> in your template public_html/yourfaucet/style/template/index.php: Like this: Code: <?php if( @fsockopen( $_SERVER['REMOTE_ADDR'], 80, $errstr, $errno, 1 ) ) Then test it in boomproxy, then after accessing your site in boomproxy click the clear cookies link and see if proxy blocking is successful. It should result like this: https://talkimg.com/images/2023/07/24/QUO9f.png Hope that helps even a little. Like a glove! (I think).. My IP is blacklisted on a lot of services so I can't test at all.. and I can't renew lol Thank you alfaboy! I think it's working http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) anyone give me a feedback please Title: Re: XAPO Script - Hacked Post by: Gifted on August 05, 2016, 01:35:07 AM I have same thing but i still let them go to page just not claim.
Security Patch V1.2 : Got to index.php in the main root and find this: Code: $response = @file('http://verify.solvemedia.com/papi/verify?privatekey=' . $settings['solvemedia_verification_key'] . '&challenge=' . rawurlencode($captchaChallange) . '&response=' . rawurlencode($captchaResponse) . '&remoteip=' . $ip);Put this code right underneath the one you find above: Code: //We do not allow proxy here This will stop proxies if they try to claim and throw a message as you can see in the picture http://bitcoinfaucetrelay.com/wp-content/uploads/2016/08/bot.png Title: Re: XAPO Script - Hacked Post by: alfaboy23 on August 05, 2016, 02:24:49 AM IMHO, we should totally blockout bad ISP and do not show anything to the users with bad ISPs since it is giving bad traffic to the network ads.
Title: Re: XAPO Script - Hacked Post by: alfaboy23 on August 05, 2016, 08:54:05 AM -snip- No problemo ;)Like a glove! (I think).. My IP is blacklisted on a lot of services so I can't test at all.. and I can't renew lol Thank you alfaboy! I think it's working http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) anyone give me a feedback please Anyway, your website says "Browser not supported". I'm using Firefox. Have you also block the Chrome? If this is about the plug-ins/add-ons, then we should think of other way to block just the plug-in/add-ons and not the browser. Title: Re: XAPO Script - Hacked Post by: sabotag3x on August 05, 2016, 09:07:50 AM -snip- No problemo ;)Like a glove! (I think).. My IP is blacklisted on a lot of services so I can't test at all.. and I can't renew lol Thank you alfaboy! I think it's working http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) anyone give me a feedback please Anyway, your website says "Browser not supported". I'm using Firefox. Have you also block the Chrome? If this is about the plug-ins/add-ons, then we should think of other way to block just the plug-in/add-ons and not the browser. now this mesage comes and i cant acces -.- `? iam using firefox ?? Code: Browser not supported! Yeap, I got a lot of bot attack comming from Firefox, so I blocked it, sorry.. https://talkimg.com/images/2023/07/24/QUpSG.png 80%+ firefox access was bots.. don't know if it was the extensions(sql injection, proxys) or the bot use this plataform Yeap, I tried to find something to block extensions.. however I think it can't be done.. You can easily find proxy/sql injection extensions on firefox.. and chrome too, however I don't blocked chrome(yet hahah) I was thinking about make a custom browser wich users can visit faucets.. you know? without extensions, with a good faucet list/rotator.. well, I don't have knowledge to do this(and the other question is the ads clicks, maybe it can get a lower click rate) Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on August 05, 2016, 09:55:19 AM k - i opened my faucet again https://faucet.today (https://faucet.today) .. if something goes wrong i will send you the bill gifted :D
Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on August 05, 2016, 10:04:42 AM Yeap, I got a lot of bot attack comming from Firefox, so I blocked it, sorry.. https://i.imgur.com/MGCSy6J.png 80%+ firefox access was bots.. don't know if it was the extensions(sql injection, proxys) or the bot use this plataform Yeap, I tried to find something to block extensions.. however I think it can't be done.. You can easily find proxy/sql injection extensions on firefox.. and chrome too, however I don't blocked chrome(yet hahah) I was thinking about make a custom browser wich users can visit faucets.. you know? without extensions, with a good faucet list/rotator.. well, I don't have knowledge to do this(and the other question is the ads clicks, maybe it can get a lower click rate) Can you tell me/us please how you block a browser .. thanx in advance Title: Re: XAPO Script - Hacked Post by: ardodd on August 05, 2016, 10:37:35 AM Yeap, I got a lot of bot attack comming from Firefox, so I blocked it, sorry.. https://i.imgur.com/MGCSy6J.png 80%+ firefox access was bots.. don't know if it was the extensions(sql injection, proxys) or the bot use this plataform Yeap, I tried to find something to block extensions.. however I think it can't be done.. You can easily find proxy/sql injection extensions on firefox.. and chrome too, however I don't blocked chrome(yet hahah) I was thinking about make a custom browser wich users can visit faucets.. you know? without extensions, with a good faucet list/rotator.. well, I don't have knowledge to do this(and the other question is the ads clicks, maybe it can get a lower click rate) Can you tell me/us please how you block a browser .. thanx in advance Blocking Browsers is not the answer to your problem. All that shows is how many users that visit your site use that particular browser. I would think we are needing to look deeper into the way the browser is used once on your site. Cross reference Blacklist IP's against visitors and incorporate a lockout of those IP's. Anyone trying to use a BOT is going to try and use a fresh list of accepted Proxy's to access your site. Say me for example I use my mobile phone as a hot spot or wifi hot spot. I am using the IP 205.197.242.169 and i ran a cross reference to Blacklist IP's. When I did that I tested my IP against a new tool called WebRTC and found that it was leaking my actual IP address. For more information on how these Thieves are stealing personal information read this post> http://whatismyipaddress.com/webrtc-test And upon reading this article or post one may be able to use the WebRTC to find the actual IP behind the attacks and single them out. WebRTC is available for Chrome, FireFox, Opera and many more as it is the new and bestest thing going. Happy Defending !!!! Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on August 05, 2016, 11:01:21 AM Its me again .. there are still one thing what i don't like ... i will try to explain as good as i can in english ...
Example: Your Xapo Faucet has a Cooldown (Timer) of 15minutes until next claim is allowed. OK here we go - a Visitor enter your Faucet solve the Captcha and Claim .. he stays on your really cool Site .. and after 15 minutes he can press F5 (Refresh) in browser .. a small window pops-up and ask if you want to send the Formular again (dont know how it is called in english - see screenshot in German) https://thoje.it/wp-content/uploads/2016/08/formular.png If you answer with Yes .. the Browserwindows reloads/refreshs .. and you have automaticly claimed - without enter the Captcha again... Now if a Black-hat have found a way how to disable the timer (ok we dont allow rightclicks and so on now ) he has only press F5 press Enter all time long .. and is happy .. I am not a hero in Webdesign nor php .. but maybe a solution is to set the cookielifetime to 5mins ? or has it something to do with the session ? .. any ideas ? Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on August 05, 2016, 11:08:08 AM Blocking Browsers is not the answer to your problem. yes i am with you .. i just asked because i would like to know if there is a comfortabler way as baning a specific user-agent in htaccess ... Title: Re: XAPO Script - Hacked Post by: ardodd on August 05, 2016, 11:22:59 AM Its me again .. there are still one thing what i don't like ... i will try to explain as good as i can in english ... Example: Your Xapo Faucet has a Cooldown (Timer) of 15minutes until next claim is allowed. OK here we go - a Visitor enter your Faucet solve the Captcha and Claim .. he stays on your really cool Site .. and after 15 minutes he can press F5 (Refresh) in browser .. a small window pops-up and ask if you want to send the Formular again (dont know how it is called in english - see screenshot in German) https://thoje.it/wp-content/uploads/2016/08/formular.png If you answer with Yes .. the Browserwindows reloads/refreshs .. and you have automaticly claimed - without enter the Captcha again... Now if a Black-hat have found a way how to disable the timer (ok we dont allow rightclicks and so on now ) he has only press F5 press Enter all time long .. and is happy .. I am not a hero in Webdesign nor php .. but maybe a solution is to set the cookielifetime to 5mins ? or has it something to do with the session ? .. any ideas ? Let me see if one of Xapo sites like you say where I can actually use the F5 and reclaim without a Captcha. BRB on that this one. I have 2 Xapo Wallet sites open ( MoonBitco.in and Whalebitco.in ) and one none Xapo site open ( Claim BTC ) will run the F5 command in 2 minutes. Ok I run the F5 command on all 3 sites and they give me the same results ( Incorrect Captcha ) Are we dealing with a weakess in the F5 Command for @Gifted's script. As I thought we had solved this previously and it was addressed by @Gifted. I am old and sea-nile and I tend to forget what i just said so I maybe wrong. Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on August 05, 2016, 11:43:16 AM Let me see if one of Xapo sites like you say where I can actually use the F5 and reclaim without a Captcha. BRB on that this one. I have 2 Xapo Wallet sites open ( MoonBitco.in and Whalebitco.in ) and one none Xapo site open ( Claim BTC ) will run the F5 command in 2 minutes. Ok I run the F5 command on all 3 sites and they give me the same results ( Incorrect Captcha ) Are we dealing with a weakess in the F5 Command for @Gifted's script. As I thought we had solved this previously and it was addressed by @Gifted. I am old and sea-nile and I tend to forget what i just said so I maybe wrong. I have this only testet at my faucet .. maybe i am the only with this phenomen ? Title: Re: XAPO Script - Hacked Post by: ardodd on August 05, 2016, 12:08:49 PM Let me see if one of Xapo sites like you say where I can actually use the F5 and reclaim without a Captcha. BRB on that this one. I have 2 Xapo Wallet sites open ( MoonBitco.in and Whalebitco.in ) and one none Xapo site open ( Claim BTC ) will run the F5 command in 2 minutes. Ok I run the F5 command on all 3 sites and they give me the same results ( Incorrect Captcha ) Are we dealing with a weakess in the F5 Command for @Gifted's script. As I thought we had solved this previously and it was addressed by @Gifted. I am old and sea-nile and I tend to forget what i just said so I maybe wrong. I have this only testet at my faucet .. maybe i am the only with this phenomen ? What was your faucet and I will see if it is possible for me to access and duplicate what you are saying? Title: Re: XAPO Script - Hacked Post by: Salmen on August 05, 2016, 12:16:19 PM The solution of blocking all proxies is still not a good solution at all. It blocks almost all proxies. With an advanced proxy is it possible to bypass the proxy detection.
Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on August 05, 2016, 12:30:18 PM What was your faucet and I will see if it is possible for me to access and duplicate what you are saying? https://faucet.today (https://faucet.today) Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on August 05, 2016, 12:42:44 PM The solution of blocking all proxies is still not a good solution at all. It blocks almost all proxies. With an advanced proxy is it possible to bypass the proxy detection. some proxys like the elite proxys could not detected with this described solution in this thread .. the faucetbox script can do it - if nastyhost is enabled (maybe it works disabled too) and claim with a elite proxy it will a message appear "invalid address" ... testet on my faucets @salmen are your ISP Telekom ? .. because i got on the most faucets a vpn/proxy denied message with my normal connection .. so i have to use my private proxy (no worry guys - i am to old for making nonsens^^) .. than it works (funny or) .. only at faucetboxscript not as mentioned above but anyway if i read things like the connector and proxyswitcher and all this .. makes me sad ... Title: Re: XAPO Script - Hacked Post by: Gifted on August 05, 2016, 06:16:24 PM Its me again .. there are still one thing what i don't like ... i will try to explain as good as i can in english ... Example: Your Xapo Faucet has a Cooldown (Timer) of 15minutes until next claim is allowed. OK here we go - a Visitor enter your Faucet solve the Captcha and Claim .. he stays on your really cool Site .. and after 15 minutes he can press F5 (Refresh) in browser .. a small window pops-up and ask if you want to send the Formular again (dont know how it is called in english - see screenshot in German) https://thoje.it/wp-content/uploads/2016/08/formular.png If you answer with Yes .. the Browserwindows reloads/refreshs .. and you have automaticly claimed - without enter the Captcha again... Now if a Black-hat have found a way how to disable the timer (ok we dont allow rightclicks and so on now ) he has only press F5 press Enter all time long .. and is happy .. I am not a hero in Webdesign nor php .. but maybe a solution is to set the cookielifetime to 5mins ? or has it something to do with the session ? .. any ideas ? i just fixed that if you read the security patch for xapo. Patch V1.1[/b] find this code Code: if($response->success){and replace with this Code: if($response->success){This redirects back to your page after 30 seconds so that the captcha resets so that a imacro program cannot be programmed to just refresh and get credit every hour when they are sleeping. i would suggest do this immediately! Make sure you put your faucet address where is says change to your faucet url. Title: Re: XAPO Script - Hacked Post by: Salmen on August 05, 2016, 06:27:28 PM The solution of blocking all proxies is still not a good solution at all. It blocks almost all proxies. With an advanced proxy is it possible to bypass the proxy detection. some proxys like the elite proxys could not detected with this described solution in this thread .. the faucetbox script can do it - if nastyhost is enabled (maybe it works disabled too) and claim with a elite proxy it will a message appear "invalid address" ... testet on my faucets @salmen are your ISP Telekom ? .. because i got on the most faucets a vpn/proxy denied message with my normal connection .. so i have to use my private proxy (no worry guys - i am to old for making nonsens^^) .. than it works (funny or) .. only at faucetboxscript not as mentioned above but anyway if i read things like the connector and proxyswitcher and all this .. makes me sad ... My ISP is currently not Telekom and thereby can't check it now. However, the elite proxy is a problem and the windows vps. Why is still no solution to block ISP? Isn't it weird if a user use proxy using vps? Title: Re: XAPO Script - Hacked Post by: sabotag3x on August 05, 2016, 10:39:49 PM Can you tell me/us please how you block a browser .. thanx in advance I'm using this code Code: <?php I don't read all replys here yet, after I'll read and reply.. just leaving the code here edit: Blocking Browsers is not the answer to your problem. yes i am with you .. i just asked because i would like to know if there is a comfortabler way as baning a specific user-agent in htaccess ... yeap, I know it's not the answer, however I have to try something.. I don't care about losing some access by firefox since I block some bot attack.. better a little revenue then losses Title: Re: XAPO Script - Hacked Post by: Gifted on August 05, 2016, 10:59:15 PM Can you tell me/us please how you block a browser .. thanx in advance I'm using this code Code: <?php I don't read all replys here yet, after I'll read and reply.. just leaving the code here Title: Re: XAPO Script - Hacked Post by: Gifted on August 05, 2016, 11:40:51 PM Try using your windows vps on my site http://www.bitcoinfaucetexchange.com/ (http://www.bitcoinfaucetexchange.com/)
testing this Code: <?phpTitle: Re: XAPO Script - Hacked Post by: viralalert on August 06, 2016, 02:27:59 AM Can you tell me/us please how you block a browser .. thanx in advance I'm using this code Code: <?php You must add a message something like this "Browser not supported, Please use google chrome". Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on August 06, 2016, 04:01:03 PM i just fixed that if you read the security patch for xapo. Patch V1.1[/b] find this code Code: if($response->success){and replace with this Code: if($response->success){This redirects back to your page after 30 seconds so that the captcha resets so that a imacro program cannot be programmed to just refresh and get credit every hour when they are sleeping. i would suggest do this immediately! Make sure you put your faucet address where is says change to your faucet url. i did this already implemented yesterday morning ... Code: if($response->success){and the problem was still there .. but ardodd whould test it .. waiting for an answer Title: Re: XAPO Script - Hacked Post by: Gifted on August 06, 2016, 04:25:44 PM i just fixed that if you read the security patch for xapo. Patch V1.1[/b] find this code Code: if($response->success){and replace with this Code: if($response->success){This redirects back to your page after 30 seconds so that the captcha resets so that a imacro program cannot be programmed to just refresh and get credit every hour when they are sleeping. i would suggest do this immediately! Make sure you put your faucet address where is says change to your faucet url. i did this already implemented yesterday morning ... Code: if($response->success){and the problem was still there .. but ardodd whould test it .. waiting for an answer take out the bold code where the address goes.. that does not go there Title: Re: XAPO Script - Hacked Post by: sabotag3x on August 08, 2016, 12:42:24 PM Can someone try to use any proxy/vpn in my faucet? By "use" I mean CLAIM.. and give me a feedback please!
http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) Thanks a lot! Title: Re: XAPO Script - Hacked Post by: 5ub_zer0 on August 08, 2016, 12:54:22 PM Can someone try to use any proxy/vpn in my faucet? By "use" I mean CLAIM.. and give me a feedback please! http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) Thanks a lot! Notice: REFERER CHECK FAILED, ASSUMING CSRF! in /customers/c/f/6/bitcoinamerica.com.br/httpd.www/faucet/script/common.php on line 100 Warning: Cannot modify header information - headers already sent by (output started at /customers/c/f/6/bitcoinamerica.com.br/httpd.www/faucet/script/common.php:100) in /customers/c/f/6/bitcoinamerica.com.br/httpd.www/faucet/script/common.php on line 356 Notice: Banned: xxx.xxx.xxx.xxx in /customers/c/f/6/bitcoinamerica.com.br/httpd.www/faucet/script/common.php on line 309 Title: Re: XAPO Script - Hacked Post by: Gifted on August 08, 2016, 04:57:27 PM Can someone try to use any proxy/vpn in my faucet? By "use" I mean CLAIM.. and give me a feedback please! Notice: Banned: 46.101.138.168 in /customers/c/f/6/bitcoinamerica.com.br/httpd.www/faucet/script/common.php on line 309http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) Thanks a lot! Title: Re: XAPO Script - Hacked Post by: sabotag3x on August 09, 2016, 06:29:12 AM Can someone try to use any proxy/vpn in my faucet? By "use" I mean CLAIM.. and give me a feedback please! http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) Thanks a lot! Notice: REFERER CHECK FAILED, ASSUMING CSRF! in /customers/c/f/6/bitcoinamerica.com.br/httpd.www/faucet/script/common.php on line 100 Warning: Cannot modify header information - headers already sent by (output started at /customers/c/f/6/bitcoinamerica.com.br/httpd.www/faucet/script/common.php:100) in /customers/c/f/6/bitcoinamerica.com.br/httpd.www/faucet/script/common.php on line 356 Notice: Banned: xxx.xxx.xxx.xxx in /customers/c/f/6/bitcoinamerica.com.br/httpd.www/faucet/script/common.php on line 309 Can someone try to use any proxy/vpn in my faucet? By "use" I mean CLAIM.. and give me a feedback please! Notice: Banned: 46.101.138.168 in /customers/c/f/6/bitcoinamerica.com.br/httpd.www/faucet/script/common.php on line 309http://www.bitcoinamerica.com.br/faucet (http://www.bitcoinamerica.com.br/faucet) Thanks a lot! Thanks! I think it's working, I can't block all VPN/Proxy/TOR systems however it can block a lot of services.. I banned 15.000 ASNs Title: Re: XAPO Script - Hacked Post by: ardodd on August 12, 2016, 03:44:49 AM I am so sorry for not being around everyone. This is one of those weeks no cares to go through. I am fighting cancer and it is not pretty. And on top of that i am fighting diabetes at the same time.
Spent all week in hospital with blood sugar levels at or above 500 and infections. Just have not had the energy to even get online til now. I was trying to catch up some but things are kind of cobb webbed inside my head right now. So if someone could catch me up on where we are with the security i would love to get back into the conversation. Title: Re: XAPO Script - Hacked Post by: Gifted on August 12, 2016, 04:07:45 AM I am so sorry for not being around everyone. This is one of those weeks no cares to go through. I am fighting cancer and it is not pretty. And on top of that i am fighting diabetes at the same time. Well it seems in our combined efforts bot are no more. I believe the most significance is the fact that firefox is used with bots and is blocked on my faucet.Also the captcha reset was another flaw was fixed... seems all is wellSpent all week in hospital with blood sugar levels at or above 500 and infections. Just have not had the energy to even get online til now. I was trying to catch up some but things are kind of cobb webbed inside my head right now. So if someone could catch me up on where we are with the security i would love to get back into the conversation. Title: Re: XAPO Script - Hacked Post by: ardodd on August 12, 2016, 04:28:13 AM @Gifted,
Do you know how to make a searchable database that would host the Faucet List. I had time on my hands this week and remember back in 2000 when I first started doing online html and coding i had a website that i made which had a interface I could actually program myself. Back then it was simple as all i did was create a database of websites, and then broke them down into specific categories for what they did. And created a simple search where anyone could enter the category they were interested in and then check the radio boxes for which specific areas they wanted to lookup. Example: http://www.imagehostingforall.com/images/ardodd/simplesearchabledatabasefrontend.png I was pondering that thought about all these Faucets. As it would need to be able to scrap for Faucet sites and then be able to host the information. The developer would have the advantage as when they are found he/she would have to join that Faucet so others could see it. I was pondering on this while laying i the hospital bed. And had seen a big list on Faucet List that had Bitcoin, Dogecoin, Peercoin, Darkcoin, Litecoin, etc...and noticed that a Xapo List was not available. And with so many cryptocurrencies I remember having a multi-wallet with Cryptonator that had many wallets. But am asking if one could code a database interface like above to list all these Faucets and make it use your crypto-wallet address to join them. One at a time so when opening up the program the complete list comes up and they can check off the websites as they surf for coins. I DO NOT want a bot to do the work, only to register for all the sites with. The parameters could be anything from amount of coins collected to time in between intervals. Say you have 100 websites with 5 minute intervals we could create one parameter for them. And every different time frame could be a set of parameters. Or we could set parameters for alphabetical listing. The possibilities is endless on parameters. One of the things i figured needed would be a way to store the e-wallet addresses so it can be entered according that sites crypto-currency. The e-wallet addresses would have to be stored off-site for the users protection and only pulled up if they log into it securely to use the database. I don't know if you would want to do something like that or not, but I am interested in seeing if you could make something like this and make dam sure that a BOT can not join the website with a firewall. ***Update*** I had a feeling that my computer had been infected so out of curiousity I used Norton Power Eraser even after I used MalwareBytes Anti-Malware to check my computer for any virus. And not surprised at all i found 3 trojans attached to .exe files. What amazed me is that it was called molested.exe and it was attached to one of my Processor programs. I can remember one day my computer shut down completely and I had to manually restart it. And when I did it told me that one or more of my drivers had stopped working or was going out. So it led me to what looked exactly like a Toshiba Official page and pulled up that Drive and so called updated it. To find out that it come from Faucet that had a backdoor virus which had a popup virus. And once the darn computer started opening page after page at a astounding rate i knew something got through the firewall. But anyways the morale to the story is that the attacks may not be because of a security issue on the website, but a security issue on our computer itself in the Root or .exe files where they are able to communicate with your site through the Root or .exe file Just a simple reminder to scan the Root files and .exe files even if you think you virus protection is up to date and see a warning to repair or upgrade. Watch it with multiple virus scans that remove trojans. Title: Re: XAPO Script - Hacked Post by: ardodd on August 12, 2016, 04:29:30 AM I am so sorry for not being around everyone. This is one of those weeks no cares to go through. I am fighting cancer and it is not pretty. And on top of that i am fighting diabetes at the same time. Well it seems in our combined efforts bot are no more. I believe the most significance is the fact that firefox is used with bots and is blocked on my faucet.Also the captcha reset was another flaw was fixed... seems all is wellSpent all week in hospital with blood sugar levels at or above 500 and infections. Just have not had the energy to even get online til now. I was trying to catch up some but things are kind of cobb webbed inside my head right now. So if someone could catch me up on where we are with the security i would love to get back into the conversation. Great job !!!!! I felt like Firefox and the iMacros would cause problems. Title: Re: XAPO Script - Hacked Post by: Gifted on August 12, 2016, 08:10:23 PM I am so sorry for not being around everyone. This is one of those weeks no cares to go through. I am fighting cancer and it is not pretty. And on top of that i am fighting diabetes at the same time. Well it seems in our combined efforts bot are no more. I believe the most significance is the fact that firefox is used with bots and is blocked on my faucet.Also the captcha reset was another flaw was fixed... seems all is wellSpent all week in hospital with blood sugar levels at or above 500 and infections. Just have not had the energy to even get online til now. I was trying to catch up some but things are kind of cobb webbed inside my head right now. So if someone could catch me up on where we are with the security i would love to get back into the conversation. Great job !!!!! I felt like Firefox and the iMacros would cause problems. Title: Re: XAPO Script - Hacked Post by: Gifted on August 12, 2016, 08:14:51 PM @Gifted, Do you know how to make a searchable database that would host the Faucet List. I had time on my hands this week and remember back in 2000 when I first started doing online html and coding i had a website that i made which had a interface I could actually program myself. Back then it was simple as all i did was create a database of websites, and then broke them down into specific categories for what they did. And created a simple search where anyone could enter the category they were interested in and then check the radio boxes for which specific areas they wanted to lookup. Example: http://www.imagehostingforall.com/images/ardodd/simplesearchabledatabasefrontend.png I was pondering that thought about all these Faucets. As it would need to be able to scrap for Faucet sites and then be able to host the information. The developer would have the advantage as when they are found he/she would have to join that Faucet so others could see it. I was pondering on this while laying i the hospital bed. And had seen a big list on Faucet List that had Bitcoin, Dogecoin, Peercoin, Darkcoin, Litecoin, etc...and noticed that a Xapo List was not available. And with so many cryptocurrencies I remember having a multi-wallet with Cryptonator that had many wallets. But am asking if one could code a database interface like above to list all these Faucets and make it use your crypto-wallet address to join them. One at a time so when opening up the program the complete list comes up and they can check off the websites as they surf for coins. I DO NOT want a bot to do the work, only to register for all the sites with. The parameters could be anything from amount of coins collected to time in between intervals. Say you have 100 websites with 5 minute intervals we could create one parameter for them. And every different time frame could be a set of parameters. Or we could set parameters for alphabetical listing. The possibilities is endless on parameters. One of the things i figured needed would be a way to store the e-wallet addresses so it can be entered according that sites crypto-currency. The e-wallet addresses would have to be stored off-site for the users protection and only pulled up if they log into it securely to use the database. I don't know if you would want to do something like that or not, but I am interested in seeing if you could make something like this and make dam sure that a BOT can not join the website with a firewall. ***Update*** I had a feeling that my computer had been infected so out of curiousity I used Norton Power Eraser even after I used MalwareBytes Anti-Malware to check my computer for any virus. And not surprised at all i found 3 trojans attached to .exe files. What amazed me is that it was called molested.exe and it was attached to one of my Processor programs. I can remember one day my computer shut down completely and I had to manually restart it. And when I did it told me that one or more of my drivers had stopped working or was going out. So it led me to what looked exactly like a Toshiba Official page and pulled up that Drive and so called updated it. To find out that it come from Faucet that had a backdoor virus which had a popup virus. And once the darn computer started opening page after page at a astounding rate i knew something got through the firewall. But anyways the morale to the story is that the attacks may not be because of a security issue on the website, but a security issue on our computer itself in the Root or .exe files where they are able to communicate with your site through the Root or .exe file Just a simple reminder to scan the Root files and .exe files even if you think you virus protection is up to date and see a warning to repair or upgrade. Watch it with multiple virus scans that remove trojans. This wont happen unless all faucets are built the same... the hard part is getting all the faucets to be able to bind with our site and this will never happen. each website is different so the code would have to me crazy ! Unless you go with standerd faucetbox then it might work but those usually fail in a month or so because of lack of coding, experience ETC. Title: Re: XAPO Script - Hacked Post by: ardodd on August 12, 2016, 10:15:51 PM I would say so. Seem to be too many Fly-by-Night shops setting up now.
Guess most of them don't realize that you have to make a commitment long term as the ads on the Faucet are mostly referral Faucets and/or Adsense which are long-long term commitments. Shoot I have 10 websites and they all have Adsense and in 5 years i have made $9.45 from it. Not even enough to to meet withdrawal limit. Some don't realize that they income from the site to sustain the Faucet payout commitment on their end. It is not something you buy $50 worth of Bitcoins and payout slowly depending on the amount of traffic and of course BOT's stealing too. By-the-way what kind of drugs was I on when I posted this last night???? Must of been good too. |
