Thread: Warning about this link
View Single Post
Old 10-05-2005, 10:59   #9
Richard M
cf.mega poster
 
Join Date: Jun 2003
Age: 29
Posts: 6,273
Richard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze array
Richard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze arrayRichard M has a bronze array
Re: Warning about this link
Quote:
Originally Posted by marco0840
Quote:
Originally Posted by AndrewJames
I need to put a urgent warning out to everyone.

Earlier tonight my gf was using her laptop on her msn list and this link was sent by her friends with lmao is this you? Like most people in msn you click the link expecting joke this is no joke and no spamming matter.

http://pictures.templates4friends.co...xx@hotmail.com

Was the link and I am serious now do not click it, it opens loads of msn windows spams its self stupid, and then it disabled my sygate personal firewall and my avast! home system, i had to reenable via services in control panel, also my network which runs via ethernet is down so my new pc is offline right now.

I have no idea how to stop this other then formatting both systems I have scanned scanned and even more scanned this HD and found nothing.

All I know is some program runs this called project1 and its making a mockery of this laptop right now.

Edit: Link modified (Paul).
Dear people,
My name is Marco Hesselink, owner of www.templates4friends.com, and I have no idea how a virus can go around with above mentioned link.
I have no physical hosting, and a redirect only to an other website, also templates.
I really do hope anybody can explain to me, if I can do something to resolve this problem, or that somebody else is just missusing my domainname.
Marco Hesselink
Germany
I suggest you look at your website, visiting in the (safe) Firefox I get the following screenshot, which is a binary application download.
I might disassemble the code properly if I want but for now I'll just let you know that you have the following errors within it.
Quote:
Warning: fopen(cnt): failed to open stream: Permission denied in /var/www/html/pictures.php on line 15

Warning: fwrite(): supplied argument is not a valid stream resource in /var/www/html/pictures.php on line 16

Warning: fclose(): supplied argument is not a valid stream resource in /var/www/html/pictures.php on line 17
The site is using PHP to write out a binary stream directly to the browser, in IE it will probably run the code automatically although I'm not going to bother trying.
__________________

Update: This is an IRC backdoor trojan.
What will this do?
Basically it recruits your PC as a "bot", and can then be used to conduct DDOS attacks or spread Spam via commands issued to it in the IRC channel it connects to.
I'm going to get the entire domain blocked at my company firewall in a minute.
Richard M is offline   Reply With Quote