Introduction I guess you’ve come across those threads on forums where traffic is sold/bought, DDoS services are offered or socks are sold etc. much more than once, right? Have you ever thought about where all those come from, and how much one may earn thanks to this? In this article of mine I’d like to examine all sources of those, and namely the organization of traffic service. So what is this traffic all about? Roughly speaking a stream of visitors coming to your site may be called traffic. So what will we need for our service? The basic part 1) Hosting First of all we’ll need a hosting service (either an account or a server, depending on how large our purse is). However there would be no logic in taking the very first host we came across (from usual ones offered “on every corner”) or getting settled on someone else’s one (cracked etc.). Why? Firstly, the administrators may simply detect the presence of some stranger on their server, secondly, the inflow of our visitors will create the excess overloading (in case their quantity is big, and the server is a weak one), thirdly, the so-called “abuse” (complaint) may come to a host, which will lead to blocking of the account /domain as a result. Thus I suggest you to stop on an abuse-proof hosting. What are its advantages? The given hosting is created specifically for the “black” purposes and with this in mind, the DC administration where the servers are located ignores those abuse complaints, and that’s where its name came from. At present the prices for such hosting vary from 50 $ and up to a whopping several thousands of $ in a month (the price depends on what you exactly want, what your inquiries are etc.etc.). If you wish to go in for traffic seriously then I’d advise you to focus your attention on reliable and proven services (have a look at their prices, the level of their positive feedback rate, the overall time of working in the given field etc.) and also never try to save money on this. Also abuse domains (for instance in .cn zone) which can now be acquired may be related to this as well (the average price is 20 $ per year). 2) Soft/scripts Well now that we finally have our own host it is possible to further proceed safely. Now we need some kind of software/scripts to sell traffic. Let us assume our traffic goes to us on our host www.site.ru, and we for instance need to direct 1000 visitors on a site www.sit2.ru and how shall we do then? That’s what the so-called TDS have been invented for (traffic distribution systems). What are they exactly meant for and what is their purpose? We direct all our traffic to our TDS, and then it makes the redirecting of traffic on other sites. Prices on TDS start from 30 $, but what is it the price depends on? It depends on TDS capabilities: such as detection of browser versions, detecting the country where traffic came from, creation of various schemes with priorities, minimal losses when redirecting, convenience of use, server load (for example what base it uses for information storage: MySQL /text files), referral statistics and many others (about everything else we’ll tell a little later). 3) Where to get traffic? Now that we have a host and a traffic distribution system it is necessary to answer the most important question - where to get traffic? There are many various ways, for example sending of messages with your site URL via ICQ, e-mail, guestbooks, forums etc. But this way cannot give really good results as it only provides a wave of traffic, which is not constant. The most known and well spread-out way is an iframe traffic. How is this implemented? For this purpose we will need access to well visited resources, which can be a cracked/stolen ftp account to a resource, shell etc. And then when we have access to a resource, we need to redirect the visitors to our site in some way unbeknown to administrators (on TDS). For this purpose iframe is used. Iframe is a small "window" usually sized 1 on 1 pixel which is not visible to a human eye, and in this exact window our site opens. Iframe looks like this: <iframe src='' width='1' height='1' style='visibility: hidden;'></iframe>, where inside the src parameter our site’s address is indicated. That is, we take the given code and we insert it into sites’ pages which we have cracked /otherwise taken. 4) Addendum Depending on site’s subject area, from which the traffic goes, it can be divided into different types: business (from business sites), adult (from any kind of porno resources), mix (means a little of everything), also traffic can be divided by countries. Therefore, the better (of higher quality) our traffic is, at a higher price it may then be sold. I’ll go back to an ftp subject for a little while. What should we do in case we have several thousands of hacked ftps and we need to place our code on each and every single of them? Doing this by hands it will take a week, no less. For such kind of work special ftp checkers/iframers were done. Their task exactly consists in inserting the code we need inside the pages in an automated mode. Also they include certain additional useful functions, for instance, deleting of foreign iframes (why do we need competitors, right?), checking the PR of the sites and lots of others. Also I’d like to note that in order for admins not to spot our iframes on their pages we need to encode them (there is a whole lot of interesting articles on this matter, just search for them). Summary 1) Resume Let’s make a little resume: we have an abuse-proof hosting on which our TDS is installed where all the traffic from hacked resources goes. All in all, everything’s ready for selling traffic. All that’s left is to find clients and to create redirecting scheme in our TDS. 2) Certain subtle details However I still would like to draw your attention on certain subtle details, which can make your life a lot easier. Currently mix traffic prevails in the market, i.e. this is the kind of traffic from sites having different subject areas, located in different countries etc., that is, everything’s piled up. Whenever you buy/sell such kind of traffic, it is always the best experience to make a test, for example, 1000-2000 unique hits. Questions about the difference between general and unique traffic often arise. Here it would be valuable to note that a person who entered the site may look through several pages and in case our frame is included in every one of them, it appears that it would be taken into account when counting our traffic twice. For this TDS has a feature making the selective choice of unique hits, i.e only really unique visitors are taken into account (for example there is an identification by IP). Site may have a traffic worth 10 000 visitors daily, but out of them all only 2000 are taken into account as unique ones. Also I would like to draw your attention on buying ftps (because currently there are way too many people who sell one ftp to several buyers). It is the best practice to buy well-visited ftps, better to buy 4-5 of them but you’d be able to see them and check them out for yourselves instead of buying 1500 ftp for 100$ from which there would be zero traffic as well as them being sold to several other buyers without you knowing it. Average daily income is formed from the overall quantity of traffic you have daily (only unique traffic is taken into account). Based on my own experience in this matter I can say that high quality traffic is on high demand nowadays, and one has to wait his turn for several days to buy traffic. Average price for 1000 unique hits is currently 3-7 $. That would be all for now, it isn’t possible to tell everything in one article of course, here in this article I tried to state the key moments. My next article will tell about some other ways to use traffic to suit our own purposes. Original Article (c) lsass.exe Translation: (с) Дрэгги