Welcome to the GoFuckYourself.com - Adult Webmaster Forum forums. You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact us. |
|
Discuss what's fucking going on, and which programs are best and worst. One-time "program" announcements from "established" webmasters are allowed. |
|
Thread Tools |
10-14-2014, 02:36 PM | #1 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Website Hacked With Ads at Top Left and Sometimes Redirects?
Basic 1 page HTML site, nothing in HTML or CSS, where else can it be hiding?
Thanks in advance
__________________
|
10-14-2014, 02:45 PM | #2 |
Dutch Webmaster!
Industry Role:
Join Date: Sep 2013
Location: Netherlands
Posts: 3,227
|
You must have pissed off some illuminati figure.. There is no other explanation.
__________________
Sig too big |
10-14-2014, 02:48 PM | #3 |
Confirmed User
Join Date: Sep 2009
Posts: 5,795
|
Sure its not in your browser? Probably something to do with chemtrails.
__________________
Get Paid Per Email Like The WEGCASH Days!!!! |
10-14-2014, 02:51 PM | #4 |
Let's do some business!
Industry Role:
Join Date: Sep 2004
Location: Austin, TX
Posts: 31,225
|
Those damn lizards sure can be a bitch.
__________________
Vacares - Web Hosting, Domains, O365, Security & More - Paxum and BTC Accepted Fully Managed VPS, Daily Backups Included - Starting at $25. Contact for more info. Sell me your: Paysites and Hosting Company. Buy my: Aged Domains and Sites |
10-14-2014, 02:53 PM | #5 |
frc
Industry Role:
Join Date: Jul 2003
Location: Bitcoin wallet
Posts: 4,663
|
There is a hidden section built into ASCII by the NSA just to spy on you. Someone hacked it and put ads in there.
__________________
Crazy fast VPS for $10 a month. Try with $20 free credit |
10-14-2014, 02:58 PM | #6 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Looks like it
__________________
|
10-14-2014, 02:59 PM | #7 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Google has picked up on it
__________________
|
10-14-2014, 02:59 PM | #8 |
Richest man in Babylon
Industry Role:
Join Date: Jan 2002
Location: Posts: 10,002
Posts: 5,559
|
Did you leave your .htaccess chmod 777?
|
10-14-2014, 03:00 PM | #9 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Just as I suspected
__________________
|
10-14-2014, 03:00 PM | #10 |
cuck
Industry Role:
Join Date: Mar 2003
Posts: 11,571
|
NSA is tracking your activity with malware.
|
10-14-2014, 03:02 PM | #11 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Nope, I've got a feeling this is on the whole shared server, as it's on lots of my sites
Hostgator already taken over 1 day to get back to me
__________________
|
10-14-2014, 03:15 PM | #12 |
So Fucking Banned
Industry Role:
Join Date: Apr 2002
Location: ¤ª"˜¨๑۩۞۩๑¨˜"ª¤
Posts: 18,481
|
View source from within the browser on index.html when the ad appears. That can't be clean.
If you get the index.html file from FTP and that is clean but the ads are there when you load the site, check if .htaccess is clean. |
10-14-2014, 03:17 PM | #13 |
Dutch Webmaster!
Industry Role:
Join Date: Sep 2013
Location: Netherlands
Posts: 3,227
|
People that do that shouldn't be on GFY..
__________________
Sig too big |
10-14-2014, 03:17 PM | #14 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Oddly it is clean, and htaccess is clean
__________________
|
10-14-2014, 03:19 PM | #15 |
Fake Nick 1.0
Industry Role:
Join Date: Oct 2005
Location: Rent free, your head
Posts: 26,766
|
Had this happen on a shared account some years ago. Some rogue employ at the host was serviing up ads on everyone's sites.
__________________
PLEASE WAIT WHILE BIDEN ADMIN UNINSTALLS ITSELF..... ██████████████████▒ 99.5% complete. |
10-14-2014, 03:22 PM | #16 |
Dat's Nacho Cheese Baby
Industry Role:
Join Date: May 2013
Location: Not Sure
Posts: 350
|
If you edit your html page and in bold letters put "Please stop Hacking my site" that should make them go away .Let us know if it works . I'm Out.
__________________
Pantyhose content needed |
10-14-2014, 03:28 PM | #17 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Wow, I didn't think of that one!
__________________
|
10-14-2014, 03:29 PM | #18 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Yesterday I found some files in some of the sites bragging about the hacking, though this particular site on the same server has no evidence of tampering
__________________
|
10-14-2014, 03:43 PM | #19 |
Dat's Nacho Cheese Baby
Industry Role:
Join Date: May 2013
Location: Not Sure
Posts: 350
|
Hope you will let us know what it was . I know a lot of people do not care for host gator but I have always had good response and fast resolve to most all my issues with them , especially on live chat support . Best of Luck .
__________________
Pantyhose content needed |
10-14-2014, 03:46 PM | #20 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Will do, their live chat guy worked on it for a while, well, once I let him know how important it was, he eventually managed to get yesterday's ticket escalated, so I still gave him a good rating. Fingers crossed they'll get there in the end!
__________________
|
10-14-2014, 03:47 PM | #21 | |
Let's do some business!
Industry Role:
Join Date: Sep 2004
Location: Austin, TX
Posts: 31,225
|
Quote:
That sounds absolutely awful. Why settle for such poor service on such an important issue? Are these not business websites?
__________________
Vacares - Web Hosting, Domains, O365, Security & More - Paxum and BTC Accepted Fully Managed VPS, Daily Backups Included - Starting at $25. Contact for more info. Sell me your: Paysites and Hosting Company. Buy my: Aged Domains and Sites |
|
10-14-2014, 03:52 PM | #22 | |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Quote:
Never did imagine that the ticket would sit there for over 24 hours with no response. Yesterday I thought I'd cleaned most of it up, but seems there's something not so obvious in there.
__________________
|
|
10-14-2014, 04:14 PM | #23 |
Confirmed User
Join Date: Sep 2009
Posts: 5,795
|
Ive dealt with other hosting companies that had horrible response times like when trying to help a friend out. The worst was netfirms. Youd get one response per day and it was from a different indian person every day. So horrible i just told the guy to either move their site to my host i couldnt help him.
Made me appreciate phatservers so much more. Answers in 10 minutes and you get the same 2 or 3 guys (English is their first language) every time.
__________________
Get Paid Per Email Like The WEGCASH Days!!!! |
10-14-2014, 04:29 PM | #24 | |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Quote:
Sound good!
__________________
|
|
10-14-2014, 04:30 PM | #25 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
They've got back to me, they said the initial hack was through the Wordpress Intrepidity theme
__________________
|
10-14-2014, 04:30 PM | #26 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Hello,
After investigation, we found that one or more WordPress installations on your account was exploited due to either a security vulnerability in the core WordPress software or a weak administrator password. An attacker was able to compromise the WordPress administrator password and proceeded to upload malicious content to the server. We have removed the malware and have reset the affected passwords. Please ensure that all outdated software on this account is updated as soon as possible in order to prevent further security issues. If you have any questions, please let us know. Please keep in mind that it is your responsibility to ensure the security of your account(s). If we detect another account compromise or you request for us to scan the account for malware within 6 months of this notification, we reserve the right to assess an Account Cleanup fee before performing any scans or removing malware from the account. In cases where a 3rd party reports malicious content or actions to us, we also reserve the right to disable the site to protect the integrity of our network.
__________________
|
10-14-2014, 04:32 PM | #27 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
The malware was hiding inside a number of cgi-bin folders
cgi-bin/sys.php
__________________
|
10-14-2014, 04:37 PM | #28 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
What could I have done to prevent it? I had a few Wordpress sites which I hadn't updated, I also had a few with weak passwords
__________________
|
10-14-2014, 04:40 PM | #29 |
Confirmed User
Industry Role:
Join Date: Sep 2004
Location: Montrealquebecanada
Posts: 5,500
|
I was going to say - check with your host. Many exploits jump up to your server when you use something like CuteFTP to upload files - they use the xml file to jack in and voila, your network is farked.
But usually it's not even *you* who was messed with, and calling host tech support will clear it up instantly. Just beware those conspiracy emails... :D
__________________
YOU Are Industry News! Press Releases: pr[at]payoutmag.com Facebook: Payout Magazine! Facebook: MIKEB! ICQ: 248843947 Skype: Mediaguy1 |
10-14-2014, 04:45 PM | #30 | |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Quote:
I got something like that once before, where HTML files on my PC were infected from a virus, they eventually ended up on my server and gave some surfers viruses
__________________
|
|
10-14-2014, 05:15 PM | #31 |
Promoting Debate on GFY
Industry Role:
Join Date: Apr 2007
Posts: 27,172
|
Just done a mass update of Wordpress versions and passwords, hoping this one doesn't come back
__________________
|
10-14-2014, 06:58 PM | #32 |
Confirmed User
Industry Role:
Join Date: May 2010
Posts: 5,735
|
It's such a pain in the ass, I had to clean a Wordpress install today too because of a Google Malware notification. Surprisingly after I filed a request to have the malware notification on the website removed, Google responded within 2 hours and removed it .
|
10-14-2014, 08:17 PM | #33 |
Icq: 14420613
Industry Role:
Join Date: Mar 2001
Location: chicago
Posts: 15,404
|
stop using wordpress unless you plan on keeping that shit updated all the time.
seems 99% of hacks i see nowdays are WP getting hacked.
__________________
Need WebHosting ? Email me for some great deals [email protected] |
10-15-2014, 05:39 PM | #34 |
Confirmed User
Industry Role:
Join Date: Jul 2012
Posts: 2,925
|
Was the ad for verifiedcasinos? There was a big hack inserting their iframe into sites using a hole in akismet. Frustrating, anti-spam service opened the hole.
http://www.gpwa.org/forum/affiliate-...om-219772.html |
10-15-2014, 05:55 PM | #35 |
Confirmed User
Industry Role:
Join Date: Jul 2014
Posts: 536
|
I had this happen to one of my gaming sites, they put a payday loan link in. It drove me crazy, I started to use surcuri (sublink included) internet security and malware. They found it, removed it, and sent a reconsideration request to google on my behalf. |
10-15-2014, 06:14 PM | #37 |
Let slip the dogs of war.
Industry Role:
Join Date: Jan 2003
Location: Bermuda
Posts: 17,263
|
An expert in engineering, biology, medicine and geopolitical relations, able to sniff out even the faintest whiff of world wide conspiracy, no matter how cleverly planed or executed but alas unable to find basic malicious code "hidden" in the cgi-bin.
__________________
. |
10-15-2014, 10:41 PM | #38 |
www.Max-Hardcore.com
Industry Role:
Join Date: Nov 2005
Posts: 1,556
|
Dude pay sucuri to scan and monitor your shit. They will fix it right quick and pay the extra 5 bucks a month for daily backups. Fucking tinfoil hat wearing antivaxxer commie chemtrail loving 911 crisis actor jackass.
__________________
CCBill Affiliates Let's Make Some Monies! Paullybadboy [@] gmail.com ICQ 631384423 |