Jamespot hacked

Landing on “jamespot(dot)com” the visitor is presented with the following Internet Explorer 7 warning …



Folks any time you see that warning “Remote Data Services Data Control” watch out! … this is NOT from Microsoft! This is the generic warning IE7 throws up when an exploit is trying to enter the system.


Can you spot the culprit below? … it took me a few to find it (hidden in an image) … “xt_img.gif”



I highlighted (in blue) the culprit and pasted the code above (in gray) which when decoded revels the entry highlighted in red.
Note: Jamespot is not the culprit here, there are simply another site/server that have been hacked and 3rd party malicious code injected. I have contacted them and hopefully this will not take too long to correct …


Once the entry highlighted in red was added to the HOSTS file and Jamespot was revisited, IE7 no longer generates the warning. This just goes to show that users should upgrade to Vista and/or IE7 … as the Vista version runs in “Protected Mode” and is less subjected to exploits.



13 Responses to “Jamespot hacked”

  1. Note also discussion at
    http://groups.google.com/group/Google_Webmaster_Help-Indexing/browse_thread/thread/3496801093022759
    the same people?

  2. Chris,
    Yes it appears to be the same culprit …

  3. I have Vista and it pops up on Comcast everytime I enter the page. Is there a way to turn it off? My Vista is running in Protected Mode:On.

  4. mdc,
    I’m not quite sure what you are asking?
    What pops up on Comcast?

Leave a Reply