Discussions » Greasy Fork Feedback
greasyfork.org website theft, someone has taken the code or redirected through greasyfork
Not a theft per se, but a redirector, apparently, because that server redirects all inbound requests to the original greasyfork site - otherwise it wouldn't show the new forum posts, would it? The impostor site uses plain non-secure http so it can sniff traffic and inject things. Looks like it'd be better to block that site's IP on GreasyFork site server.
hmm i didn't think of that redirect possibility, but yeah it could be malicious anyway
seems to be a chinese URL, here is the whois information i found
Domain Name: JSCRIPTS.XYZ
Domain ID: D7913614-CNIC
WHOIS Server: whois.nawang.cn
Referral URL: http://www.nawang.cn
Updated Date: 2015-05-10T16:57:11.0Z
Creation Date: 2015-05-05T16:52:31.0Z
Registry Expiry Date: 2016-05-05T23:59:59.0Z
Sponsoring Registrar: Xiamen Nawang technology Co., Ltd
Sponsoring Registrar IANA ID: 1655
Domain Status: serverTransferProhibited https://icann.org/epp#serverTransferProhibited
Registrant ID: 1505060050xtb6
Registrant Name: GUO Ziyi
Registrant Organization: GUO Ziyi
Registrant Street: Fu Rong Qu Huang Xing Lu 589Hao
Registrant City: changsha
Registrant State/Province: hunan
Registrant Postal Code: 410000
Registrant Country: CN
Registrant Phone: +86.073178965447
Registrant Phone Ext:
Registrant Fax: +86.073178965450
Registrant Fax Ext:
Registrant Email: 78160431@qq.com
Admin ID: 1505060050xtb6
Admin Name: GUO Ziyi
Admin Organization: GUO Ziyi
Admin Street: Fu Rong Qu Huang Xing Lu 589Hao
Admin City: changsha
Admin State/Province: hunan
Admin Postal Code: 410000
Admin Country: CN
Admin Phone: +86.073178965447
Admin Phone Ext:
Admin Fax: +86.073178965450
Admin Fax Ext:
Admin Email: 78160431@qq.com
Tech ID: 1505060050xtb6
Tech Name: GUO Ziyi
Tech Organization: GUO Ziyi
Tech Street: Fu Rong Qu Huang Xing Lu 589Hao
Tech City: changsha
Tech State/Province: hunan
Tech Postal Code: 410000
Tech Country: CN
Tech Phone: +86.073178965447
Tech Phone Ext:
Tech Fax: +86.073178965450
Tech Fax Ext:
Tech Email: 78160431@qq.com
Name Server: JADE.NS.CLOUDFLARE.COM
Name Server: KANYE.NS.CLOUDFLARE.COM
DNSSEC: unsigned
Billing ID: 1505060050xtb6
Billing Name: GUO Ziyi
Billing Organization: GUO Ziyi
Billing Street: Fu Rong Qu Huang Xing Lu 589Hao
Billing City: changsha
Billing State/Province: hunan
Billing Postal Code: 410000
Billing Country: CN
Billing Phone: +86.073178965447
Billing Phone Ext:
Billing Fax: +86.073178965450
Billing Fax Ext:
Billing Email: 78160431@qq.com
*snip*
Yeah, looks like it's proxying. I've blocked the IP. We'll see if it comes back.
403 forbidden now.
greasyfork.org website theft, someone has taken the code or redirected through greasyfork
im not sure if this has been touched on yet but i have discovered a website that has taken code from greasyfork to create a mirror of greasyfork, im unaware if they have permission or not and it doesn't seem like a legit attempt to archive greasyfork
(warning i don't know if this website is malicious be careful when clicking this link)
http://www.jscripts.xyz/