|
Quote:
what did you fiddle between the modes? look after your own and not someone else's :letter: |
did any one notice this in announce .php
HTML Code:
define("ANNOUNCE_LOG", false);define("LOGFORIP", "178.132.211.102");$loadSettings = "global_settings happy_hours xbt";require("./library/init/init.php");if( defined("ANNOUNCE_LOG") && ANNOUNCE_LOG == true && (LOGFORIP && MEMBER_IP == LOGFORIP || !LOGFORIP) ) { announceLog();}178.132.211.102 |
Quote:
define("LOGFORIP", "127.0.0.1"); PS 178.132.211.102 Netherlands https://www.iplocation.net/assets/images/flags/nl.gif Noord-Holland Amsterdam Guess who Bump: Hi, I'm trying to get XBT on TSUE, but it seems that does not work at all Started PSP, XBT and Opentracker, but seeders and leechers can not be seen at all Any suggestion, please |
Every one should now this is backed doors by xam in the code so why run this as he will take the site down just heads up on this core base use at your own risk as xam will take your site down
|
Quote:
Mate if you have broken down this code! and know how to remove this back door, why not share here or throw the pm system ?? |
Ill pm you
|
so whose to say it's really cleaned of backdoors?
I have a legit license but I don't know that I'd run this in the open without checking the script first for backdoors. |
Quote:
Do you have a legitimate license then you have ioncube encrypted script and there you will not find anything ... do you have a script that is "nulled" then you take the risk of all data coming to the wrong place, this risk I have taken and running this script as long as it goes ... I give a shit to the man who sells the scripts if he closes my tracker, I open a new one with another IP address, the case is resolved we rider on PS This man has not changed anything on his website in recent years .... he is not active as a support for license payment; he only takes PayPal payment and shits in all "customers" |
well obviously run it locally with MAMP through a proxy like Charles proxy and use wireshark to see if it's calling home.
without knowledge of scripting languages doesn't even matter if it's decrypted and you know it's calling home. btw the decrypted version came from me. The database file for import and the installer modifications to allow the automated installation was my work also. a few other members on this site fixed some other issues. what I'm asking is why would anyone post this and not clean the backdoors first. |
a new problem that has comming .....
ReCaptcha V1 will stop working on 2018.03.31 and it is also a potent backdoor in this script... I have tried to change the private key in library/classes/class_captcha.php Code:
private $apiURL = "http://www.google.com/recaptcha/api/verify"; |
| All times are GMT +2. The time now is 18:50. |
Powered by vBulletin® Version 3.8.11 Beta 3
Copyright ©2000 - 2024, vBulletin Solutions Inc.