Sunday, May 13, 2018

xxfreeflix18xx er svindel! xxfreeflix18xx is a scam!

xxfreeflix18xx er svindel!
xxfreeflix18xx is a scam!


Du får ikke gratis TV-kanaler ved å google xxfreeflix18xx. Du blir bare svindlet.

xbitcoinmatex er svindel!

xbitcoinmatex er svindel!

xbitcoinmatex is a scam!

Ikke bli lurt.

Saturday, May 12, 2018

xfreeshell18x er bare svindel!

xfreeshell18x er svindel! Du vil ikke få gratis drivstoff ved å google "xfreeshell18x". Du får ikke noe gavekort. Du vil kun ende opp med en tappet bankkonto.

Hei alle sammen!Det er en ny måte å fylle på gratis drivstoff på bensinstasjonene til SHELL! Det ble kunngjort på radioen i dag! Det er kun denne uken at du kan bestille gavekortene dine og fylle på drivstoff gratis! 🚗Kortet mitt ankom i posten etter to dager! 🎁Bare tast inn "xfreeshell18x" i søkefeltet i Google og klikk på det første resultatet for å bestille ditt 🙂 — feeling fabulous.

Svindel! Scam!
xfreeshell18x svindel!


Sunday, April 22, 2018

xxikeacardsxx is a scam! Don't get scammed! It's 2018. You should know better!

xxikeacardsxx is a scam! Don't get scammed! You will not get any Ikea giftcards by Googling "xxikeacardsxx". It's just a scam. Stay away!

It's 2018. You should know better!

The same goes for xxshell2018xx. You will never get a Shell gift card just by Googling a keyword.

Don't be stupid, people! Don't be so greedy!

Read more at datahjelperne.no (Norwegian)

Saturday, June 06, 2015

More comment-spam on YouTube

Does anyone else hate these spammers on YouTube? They seem to hit every popular games-related video.

iTunesCodes PSN Codes XboxCodes AmazonCodes GooglePlayCodes ClashOgClansGemss StamWallt MinecraftPremium 
 I TRIED TOO AND WORKED JUST FINE
Can I get my virus in orange, please? Take my money, credit card and social security number (<insert your local equivalent here>)!

90% of them are hosted on Blogspot and there seems to be no point in reporting them. They keep popping back up again, regardless. Same text, slightly different URL.

Death to spammers.

Wednesday, June 11, 2014

YouPic comment spam on Google+

I'm becoming enervated by these spams-comments added on all new posts in various photo-groups on Google+:

Do you have You Pic account to showcase and explore it more?

Multiple accounts do this, but there are no links, just text. I guess they're afraid Google+ will put youpic.com on a blacklist if they linked it.

UPDATE:

They have recently altered the spam-text to:

"Superior photography, do you showcase this on the webpage YouPic ?"

No I don't, and I won't. Ever. Please go die in a fire. Seriously.

UPDATE #2:

The spammers have altered their tactics. Payload now contains a link to YouPic's Google Plus page, and the text is more random.

Beautiful Photography, want to know how much likes you got ? https://plus.google.com/[…]/videos

Good Photography, want to know your comments, https://plus.google.com/[…]/videos

creative click, want to know your public likes, https://plus.google.com/[…]/videos

Beautiful...why can't you connect with our community... https://plus.google.com/[…]/videos

UPDATE #3:

I'm not the only one who has reacted to YouPic's shoddy business practices:


Stay away from YouPic!

Saturday, June 07, 2014

Looking for a job?

Looking for a job? Some Chinese IPs in the 202.46-range sure are. On our server no less. Why? Dunno.

None of these files have ever been on our server:

jobs-accounting-auditing.html
jobs-aerospace-defence.html
jobs-agriculture-forestry-fishing.html
jobs-apparel-fashion-textile.html
jobs-architecture-building-construction.html
jobs-arts-design-entertainment.html
jobs-automotive-motor-vehicles.html
jobs-banking-financial-services.html
jobs-charities-not-for-profit.html
jobs-consultancy.html
jobs-customer-service-call-centers.html
jobs-education-training.html
jobs-electronics-robotics.html
jobs-engineering.html
jobs-food-processing.html
jobs-health-care.html
jobs-human-resources.html
jobs-information-technology-telecoms.html
jobs-insurance.html
jobs-law-enforcement-security.html
jobs-legal-tax.html
jobs-management-executive.html
jobs-manufacturing-maintenance.html
jobs-maritime-shipbuilding-boating.html
jobs-marketing-public-relations.html
jobs-media-advertising.html
jobs-oil-gas-mining.html
jobs-personal-care.html
jobs-public-sector.html
jobs-publishing-printing.html
jobs-purchasing.html
jobs-quality-assurance.html
jobs-real-estate.html
jobs-restaurants-food-service.html
jobs-retail-wholesale.html
jobs-sales.html
jobs-science-research-development.html
jobs-secretarial-pas-administration.html
jobs-social-care.html
jobs-steels-metals.html
jobs-tourism-travel-hospitality.html
jobs-translations.html
jobs-transportation-logistics.html
jobs-wood-paper-furniture.html


Example:

xxx:80 202.46.xxx.xxx - - [xx/xxx/2014:xx:xx:xx +0200] "GET /jobs-education-training.html HTTP/1.1" 403 230 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:22.0) Gecko/20100101 Firefox/22.0"

Hello and welcome. Have a 403.

Tuesday, June 03, 2014

China loves ColdFusion?

Some Chinese IPs in the 202.46.xx.xx-range are regularly trying to reach the following pages on our webserver:


Adware_Removal.cfm
Best_Browser.cfm
Computer_Parts.cfm
Disk_Defragmenter.cfm
Firewall_Protection.cfm
Fix_Slow_Computer.cfm
Format_Hard_Drives.cfm
Laptop_Repairs.cfm
Online_Data_Backup.cfm
Registry_Cleaner.cfm
Registry_Restore.cfm
Security_Software.cfm
Virus_Removal.cfm
Windows_Repair.cfm
Windows_XP_Help.cfm
Windows_XP_Software.cfm

Example:

xxx:80 202.46.xxx.xxx - - [xx/xxx/2014:xx:xx:xx +0200] "GET /Registry_Restore.cfm?fp=[randomcharacters]&maxads=0&prvtof=[randomcharacters]&kt=xxx&kbc=xxx&ki=xxxxxx&ktd=0&kp=4 HTTP/1.1" 403 222 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:22.0) Gecko/20100101 Firefox/22.0"

These appear to be ColdFusion files, and, well, we're not running ColdFusion. These files aren't on our server and they are met with a 403 anyway... I'm puzzled, though. It there ColdFusion package with gaping security holes out there? What are these files?