XRumer is a Windows program that posts forum spam with the try for of boosting search machine rankings. It has been claimed that the program is skilled to skirt techniques commonly utilized by innumerable websites to obstruct automated spam, such as account registration, CAPTCHAs, and e-mail activation in the future posting. The program makes heavy put to use of a database of known unrestricted proxies in an attempt to cut it more troubled for administrators to impediment posts.
In addendum, the software can avoid the suspicions of forum administrators by maiden registering to act as if a brief in the form of a point which mentions the spam output ("Where can I get...?"), once registering another account to postal service a spam relate which mentions the product. The side capacity of these innocent-looking posts is that caring forum visitors may search on a search motor (e.g. Google) after the product and themselves delivery a tie-in to help off, way bolstering the result's Google stats without falling afoul of forum posting policies.
According to The Register, the latest version[which?] of XRumer can stop CAPTCHAs of Hotmail and Gmail. This enables the software to contrive accounts with these relaxed email services, which are old to register in forums that it posts to.[1] [2]
Most spam attacks on forums as a rule turn up dawn on in waves, and the software will-power not spam at shapely hurriedness initially. Consequently, a tolerable strategy in search limiting the indemnity of such attacks is to target unusual members who entertain accidental series' of alphanumeric characters for their usernames. The multiple instances of a spam bot last will and testament bear patent similarities in their email addresses (and resolution predominantly be accidental themselves), allowing members that correspond the statistics of other spam bots to be banned before they rhythmical post. As mentioned - proxies are euphemistic pre-owned, making IP bans inefficacious, however it is tenable to brick the posting of threads containing indisputable text, or links to a undisputed site. Once a artifact or position has been spammed, it can be blocked, preventing the software from successfully uploading its payload.
A specific way to conquest the software (at least for moment) is to annex extra secret shibboleth fields to the registration form. You can keep secret those fields with css "disclose:not any;" so that run-of-the-mill users would not last them. (Do it on enclosing the fields in a div with configuration spread:nil).
XRumer seems to be padding for all to see all fields of prototype "shibboleth" with the exact same value. So validation is rather above-board at this point. If your secret countersign fields are not uninhabited, chances are the brand-new registration was a sequel of XRumer run.
For the duration of forward protection, you can generate random names for the treatment of your open sesame fields and incorporate 10+ of such hidden fields into your registration form.
xrumer
http://www.mortgagebrokerland.com/fo...ard-about-9084
http://forum.satudunia.net/showthread.php?p=1765
http://forums.toucharcade.com/showth...702#post851702
http://www.opendx.org/cgi-bin/forum/...num=1264187260
xrumer
03-22-2010, 06:29 PM
http://xrumerservice.org xrumer 3.0 find backlinks to a site
Linear Mode
