Page 1 of 2 12 LastLast
Results 1 to 10 of 15

Thread: Weird?

  1. #1
    Join Date
    Mar 2006
    Location
    Cleveland, Ohio
    Posts
    574
    Thanks
    6
    Thanked 5 Times in 5 Posts

    Default Weird?

    My one site, flamehtmlstudios.com, had some iFrame thing at the end of the code (after the </html>) that was obviously spam because Norton picked up an intruder as soon as the page loaded. It wasn't in the original page, so I reuploaded it and it's gone now.
    Weird?

    To make matters weirder, my other site isn't even working. alexjewell.com - Nothing on that server is working. Problem loading page! I also can't connect via FTP to it.

    This is so messed up!
    Thou com'st in such a questionable shape
    Hamlet, Act 1, Scene 4

  2. #2
    Join Date
    Sep 2006
    Location
    St. George, UT
    Posts
    2,769
    Thanks
    3
    Thanked 157 Times in 155 Posts

    Default

    FYI: This is the wrong forum to post this kind of thread in (just for future reference).

    The alexjewell.com issue seems to be that the server is down. I can't ping them, or connect to them whatsoever. As far as the first thing in your post, I didn't notice anything in there that seemed odd (as far as the iframe thing.)

  3. #3
    Join Date
    Mar 2006
    Location
    Cleveland, Ohio
    Posts
    574
    Thanks
    6
    Thanked 5 Times in 5 Posts

    Default

    Testing, I couldn't figure out which forum to post it in. I decided upon the lounge, because it looked safe. Haha. It's not really a coding issue, you know?

    Anyway, as I stated above, I reuploaded index.php and the code disappeared. What I found strange was that it was there in the first place!
    Thou com'st in such a questionable shape
    Hamlet, Act 1, Scene 4

  4. #4
    Join Date
    Sep 2006
    Location
    St. George, UT
    Posts
    2,769
    Thanks
    3
    Thanked 157 Times in 155 Posts

    Default

    Could have been a hacker attack on your server, I have had that before on some of my other "less secured" servers.

    Also,

    I decided upon the lounge, because it looked safe
    This isn't the lounge, it is the Feedback and Annoucements forum. That's why I posted the FYI thing.

  5. #5
    Join Date
    Mar 2006
    Location
    Cleveland, Ohio
    Posts
    574
    Thanks
    6
    Thanked 5 Times in 5 Posts

    Default

    Why would someone take time to hack my sites? What would they gain? It's not like I get much traffic or anything. Should I change my username and password?

    Also, why would the server be down?
    Thou com'st in such a questionable shape
    Hamlet, Act 1, Scene 4

  6. #6
    Join Date
    Sep 2006
    Location
    St. George, UT
    Posts
    2,769
    Thanks
    3
    Thanked 157 Times in 155 Posts

    Default

    The server could be down for many reasons. ISP problems, server maintenance (spelling?), etc. As far as the hacking of the site, it could be just that it was somebody messing around with a new toy or something and just hacked the server (and all the sites on it). Then again, it might not have been a hacking attempt. These are just a few items.

  7. #7
    Join Date
    Mar 2006
    Location
    Cleveland, Ohio
    Posts
    574
    Thanks
    6
    Thanked 5 Times in 5 Posts

    Default

    Alright. Thanks.

    I hope it comes back up soon. This is driving me crazy.
    Thou com'st in such a questionable shape
    Hamlet, Act 1, Scene 4

  8. #8
    Join Date
    Aug 2004
    Posts
    9,903
    Thanks
    3
    Thanked 967 Times in 955 Posts
    Blog Entries
    15

    Default

    Who's your web host Alex? The iframe injection you just described is definitely a successful hacking of your server. Basically the hacker injects an iframe on your site that loads a malicious page that attempts to steal passwords or other illegal activities using exploits in browsers (such as IE). By injecting an iframe and serving up the malicious page that way, most visitors won't even know what's going on.

    I'd contact your host immediately and tell them that your server has been compromised, and be descriptive on what exactly happened. I think any competent web host will immediately know of the iframe hack. Usually it's caused by some insecure module on your server, such as within cPanel I believe. Either way, you got to act, as you're putting your visitors at risk.

  9. #9
    Join Date
    Jun 2005
    Location
    英国
    Posts
    11,878
    Thanks
    1
    Thanked 180 Times in 172 Posts
    Blog Entries
    2

    Default

    Spyware can also be responsible for this sort of thing. You should probably have tested the site on another computer to check if the iframe still appeared.
    Twey | I understand English | 日本語が分かります | mi jimpe fi le jbobau | mi esperanton komprenas | je comprends franšais | entiendo espa˝ol | t˘i Ýt hiểu tiếng Việt | ich verstehe ein bisschen Deutsch | beware XHTML | common coding mistakes | tutorials | various stuff | argh PHP!

  10. #10
    Join Date
    Mar 2006
    Location
    Cleveland, Ohio
    Posts
    574
    Thanks
    6
    Thanked 5 Times in 5 Posts

    Default

    I use ucvhost (www.ucvhost.com)

    I was going to, but they weren't online last night and they don't give a phone number for shared hosting. You have to have dedicated hosting to be able to call them.
    Thou com'st in such a questionable shape
    Hamlet, Act 1, Scene 4

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •