Welcome to Geeklog, Anonymous Friday, May 17 2024 @ 08:33 pm EDT

Geeklog Forums

New spam bot does it effect Geeklog



I found some information that there is now a new spam bot which is able to do captcha's (at least in pHpBCool, will this also effect our Geeklog sites?

The link to the Panda Software demo site is http://blogs.pandasoftware.com/blogs/images/PandaLabs/2007/07/24/xrumer.swf

I hope that Geeklog is not effect by this new software, if I check the Captcha logs I get hundreds of spam per day. I not want to think about removing them by hand.....

(P.S. Panda Software is an Antivirus/Internet Security company, they did not released this software)


Personally I have not yet seen a successful attack on my system while having Marks captcha plugin installed. The XRumer program that you are referring to is designed around phpbb.

XRumer is a software application that automatically posts your messages to forums, guestbooks, bulletin boards and catalogs of the links (as well as into livejournals and wiki). In a word it is an autosubmitter. Currently available version is XRumer 3.0 Gold Edition. More info about updates...
Text Formatted Code

Below are listed main specification and features of XRumer

# Multithreaded submitting: over 50 simultaneously running threads possible! (30 threads are recommended for optimal performance under 128 Kbps bandwidth)
# Software can perform registration at forums (if necessary for posting messages) and automatically fill in the required fields. Upon successful registration XRumer posts the user-specified message and/or links.
# The powerful built-in proxy-server checking script locates available proxy-servers worldwide, choosing anonymous addresses among them.
# Software is able to work with lots of different types of forums and guestbooks: phpBB and PHP-Nuke with any modifications, yaBB, VBulletin, Invision Power Board, IconBoard, UltimateBB, exBB, phorum.org, wiki, different types of bulletin boards and even custom-written code.
# Attention: unique feature – software works around EVERY possible type of protection from automatic registration, including:
- Pictocode protection (tickets, captcha), which look something like: "Enter the number you see in the box". Details...
- E-mail activation protection. Details...
- Java-script protection. Details...
# During the process of posting a detailed log is created with precise path-links to posted messages so that you can check every link and every posted message afterwards.
# A built-in proprietary "Question-answer" system.
# A variations system, using which you can post up to 10000 messages all looking different but with similar contextual meaning and the user-defined hyperlinks in them. It helps to broaden the key queries (for Search Engine optimization) and protect your posts from being filtered out by Search Engines (that is, your posts will be included in SERPs).
# If the forum has more than one category, the software chooses the one most suitable for the message, otherwise it sends the message to off-top, flame sections or the like, and in case those do not exist - to the most visited category on the forum.
# BB-code can be used.
# The following forum base processing tools are included: repeated links deletion, hit descending sort, service denial according to customizable black list, and various filters. The program informs the users about availability of new versions and possesses many other powerful features.

The system is fully user-independent and requires minimum skills to handle: you only need to choose the proper links database, create a message text with one or several hyperlinks and hit the 'Start' button. THAT IS ALL.

XRumer software package includes the Hrefer program and databases with links to more than 102.000 forums.


Status: offline


Site Admin
Registered: 01/12/02
Posts: 13073
Location:Stuttgart, Germany
XRumer isn't new. And it's not restricted to phpBB.

The wikipedia entry mentions that it sometimes posts about itself (i.e. sends a post mentioning XRumer). I've seen those sort of posts here in the forum - but that was before we set up the CAPTCHAs.

From what I can tell, all the spam that is hitting the forum here is sent by humans. I don't see any indication that the CAPTCHA has been bypassed or broken yet.

bye, Dirk

P.S. For more information on the state of webspam, come to FrOSCon and listen to my talk on the topic :wink:

Status: offline


Forum User
Registered: 02/10/12
Posts: 19
There are many websites and software solves CAPTCHA codes easily and if your website didn't attack yet by bots, you are safe from them. Actually it doesn't relate to CMS you are using, if a programmer wants to make a bot to spam your website, he can does it regardless CMS you are using. You can block the IP address of bots you find on your website.

All times are EDT. The time is now 08:33 pm.

  • Normal Topic
  • Sticky Topic
  • Locked Topic
  • New Post
  • Sticky Topic W/ New Post
  • Locked Topic W/ New Post
  •  View Anonymous Posts
  •  Able to post
  •  Filtered HTML Allowed
  •  Censored Content