Site HACKED - Please advice.
Hey, Anyone had experience with malware that attacks site that redirects the site to *gberbhjerfds.osa.pl* I seem to have been hacked. Al Kags ----------------------- Author, Living Memories. “IF THERE IS SUCH A THING AS Kenya, these stories belong to us all, just as the pictures in Kenya Burning document the trauma of a nation during the post-election violence. The age of history written by white males is well and truly over.” - Star Columnist, Betty Caplan in the East African Weekly Newspaper. http://living.alkags.com
Same boat. All my public IP's are not accessible, and all my domain names including my mail server's are being directed to different ips. Check the following traceroute: Nilesh: C:\Documents and Settings\XXXXXXXXXX>tracert 80.240.XXX.XX Tracing route to mail.copycatltd.com [80.240.XXX.XX] over a maximum of 30 hops: 1 1 ms <1 ms <1 ms XXX.XXX.XXX.XXX 2 2 ms 1 ms 2 ms ice.128.client93.youtele.com [203.88.128.93] 3 1 ms 1 ms 1 ms ice.128.client113.youtele.com[203.88.128.113] 4 1 ms 1 ms 2 ms ice.128.client185.youtele.com[203.88.128.185] 5 18 ms 5 ms 6 ms ice.135.client246.youtele.com[203.88.135.246] 6 107 ms 9 ms 3 ms 203.200.227.154.static.vsnl.net.in[203.200.227. 154] 7 4 ms 5 ms 5 ms 59.163.16.102.static.vsnl.net.in[59.163.16.102] 8 30 ms 31 ms 24 ms if-14-0-0-101.core1.MLV-Mumbai.as6453.net[209.5 8.105.21] 9 145 ms 143 ms 143 ms if-14-0-0.core1.PYE-Paris.as6453.net[209.58.105 .110] 10 145 ms 171 ms 160 ms if-10-0-0-1616.core1.PV1-Paris.as6453.net[195.2 19.215.113] 11 * 417 ms 150 ms Vlan88.icore1.PVU-Paris.as6453.net[195.219.215. 86] 12 148 ms 147 ms 146 ms xe-9-1-0.edge4.paris1.level3.net[4.68.110.213] 13 147 ms 132 ms * ae-33-51.ebr1.Paris1.Level3.net[4.69.139.193] 14 152 ms 143 ms 144 ms ae-47-47.ebr1.London1.Level3.net[4.69.143.109] 15 135 ms 132 ms 132 ms ae-1-51.edge3.London1.Level3.net[4.69.139.73] 16 139 ms * * gb-1-2-1.br1.nairobi.kdn.co.ke[212.113.15.98] 17 323 ms 312 ms 303 ms 41.72.211.249 18 * * * Request timed out. 19 * * * Request timed out. 20 * * * Request timed out. 21 * * * Request timed out. 22 * * * Request timed out. 23 * * * Request timed out. 24 * * * Request timed out. 25 * * * Request timed out. 26 * * * Request timed out. 27 * * * Request timed out. 28 * * * Request timed out. 29 * * * Request timed out. 30 * * * Request timed out. Trace complete. Notice where the tracert times out. YUP....KDN is a major pain. On Sun, Aug 8, 2010 at 9:59 PM, Timothy Makobu <makobu.mwambiriro@gmail.com>wrote:
http://wordpress.org/support/topic/search-results-being-redirected
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1f... ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
On Sun, Aug 8, 2010 at 9:22 PM, Al Kags <alkags@gmail.com> wrote:
Hey, Anyone had experience with malware that attacks site that redirects the site to gberbhjerfds.osa.pl I seem to have been hacked. Al Kags
Hey Al-Kags, web is not my thing yet so wish I could help you out. You could also check with your hosting company, they have may have support that can handle such a problem. Rgds. ( fyi : Have done my nomination on the Safcom thing and may the best nominess win ) -- Me thots.
If you are using windows as your development env, you might be a victim of the iframe injection worm. On Sun, Aug 8, 2010 at 9:22 PM, Al Kags <alkags@gmail.com> wrote:
Hey,
Anyone had experience with malware that attacks site that redirects the site to *gberbhjerfds.osa.pl* I seem to have been hacked.
Al Kags ----------------------- Author, Living Memories. “IF THERE IS SUCH A THING AS Kenya, these stories belong to us all, just as the pictures in Kenya Burning document the trauma of a nation during the post-election violence. The age of history written by white males is well and truly over.” - Star Columnist, Betty Caplan in the East African Weekly Newspaper.
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1f... ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Solomon Kariri, Software Developer, Cell: +254736 729 450 Skype: solomonkariri
participants (5)
-
aki -
Al Kags -
Samuel Wachira -
solomon kariri -
Timothy Makobu