I was checking an email and came across nickoftime-email.com and I got an alert for the following:







Did a search in this folder and did not find anything.

This post has been edited by Enchanted: Apr 2 2007, 11:48 PM

I made a thread about UniqueRewards having this code a day or two ago. It looks to me like a hacker placed trojan.

The iframe has been turning up on a few sites over the past few months, mostly HYIP type sites. There's a report in an HYIP forum of a site having this iframe and a trojan/virus warning with that. Other times it turned up (ConnieJean found it a few times) it seemed inactive but had a redirect to another site called mylangkawi. Now when you put it through Jutaky's detektor it has the encryption that makes me believe it is active malware.

Oh sorry, I did a search using the full URL (adventureboats.co.nz), but did not get any search results (IMG:http://www.getpaidforum.com/forums/style_emoticons/default/ah.gif)

So what do we do? Shall I give a heads up to the PO who sent the ad about this? If it is malware, members will have to be careful (IMG:http://www.getpaidforum.com/forums/style_emoticons/default/aj.gif) (IMG:http://www.getpaidforum.com/forums/style_emoticons/default/aj.gif) (IMG:http://www.getpaidforum.com/forums/style_emoticons/default/aj.gif)

In this case I think a heads up to the PO may be prudent. I did email UniqueRewards but not yet had any reply. If it's genuine code that they placed, then that gives them an opportunity to explain.

The URL, code and the way it's turned up on other sites and has a record of containing a trojan makes me think it is a hacker trojan though.

This post has been edited by wagdoll: Mar 30 2007, 12:47 AM

Thank you wagdoll. I will give the PO a heads up and direct her to this thread (IMG:http://www.getpaidforum.com/forums/style_emoticons/default/aa.gif)