Bad site
 

ebony-pornstar-directory.com
Is using trojans

What's wrong with safe sex?

yup I got him a few weeks ago

I wonder if they got hacked or if it is a shady webmaster?

That exploit is loaded through a compromised FTP account. It is possible the site owner doesn't know it has been hacked.

I have send him an email about it but got no reply.

Another one compromised
http://www.blackbootyporn.com/

and I've send him an email about it too.

Very weird things happen while I visit this thread. While on Windows XP my nod32 v3 gives me a warning and blocks this page. It gives me a JS/TrojanDownloader.Agent.NQB.gen.trojan
So now I am on Linux and posting this here. Maybe it is because of the code Cleo showed us infected code ( no offense ;-) ) and my virus scanner sees that as a thread or is this thread page infected. ??? Any of you guys have the same ?

I just removed the code from my post. Are you still getting warnings?

Hi Cleo,

now my virus scanner stays quiet. I never realized a small example of malicious code on a forum would trigger a virus scanner. Thanks for helping me out with this experiment. So whatever the code was you posted, it sure came from a "bad site", as the thread title mentioned, lol.

Is there anything CD34 doesnt know? Its kinda scary.

Here's a few tips to help prevent said comprimization. This is really just for dedicated servers, unless your host wants to go through the rigmarole for all the shared accounts.

1: put your ftp daemon and your http daemon on different IP addresses.
2: firewall you ftp IP to silently drop all requests not from your IP address at home.
3: use a different port.
4: use sftp.

Nothing will make your site unhackable, but keep in mind the two guys walking in the woods talking about bears. One guy says if he sees a bear he's gonna run. The second guy says, thats dumb, you cant outrun a bear. The first guy replies, I dont have to outrun the bear, I only have to outrun you.

IOW, dont be the low-hanging fruit.