Get Paid Forum - Get Paid Discussion

Get Paid Forum - Get Paid Discussion > Get Paid To Programs > Sites Allegedly with problems of hacking/virus/0-iframes, autosearches etc ... > Sites hit by virusses or hacked

shylesson

Dec 30 2006, 11:00 PM

I just started this site and already I get hacked. Any helpful suggestions on how to prevent this? It is so discouraging. This is what was on my pages:
[codebox]<html>
<HTML><HEAD><TITLE>iskorpitx</TITLE>
<head>
<meta name="GENERATOR" content="Microsoft FrontPage 5.0">
<meta name="ProgId" content="FrontPage.Editor.Document">
<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
<title>iskorpitx</title>
</head>

<embed src="http://www.cristaleriasmadrid.com/images/vatan.mp3" loop="1" autostart="true" hidden "true" width="128" height="128"></td>
<body bgcolor="#000000">
iskorpitx ve can kardeþim metlak 31-12-2006 tarihinden
itibaren hacking e veda ediyor. Biz bu iþleri sadece ve sacede Türkiye için,
Vatanýmýz  için yaptýk! hacking yaptýðýmýz süre içersinde yaptýðýmýz her
þeyin hesabýný sonuna kadar vermeye her zaman hazýrdýk. Bu iþin içinden
Anlýmýzýn akýyla Þampiyon olarak çýktýk. Lafý uzatmanýn anlamý yok. HER ÞEY
VATAN ÝÇÝN. NE MUTLU TÜRKÜM DÝYENE, DÝYEBÝLENE. E L V E DA  H A C K  A
L E M Ý!! (ÝSLAM ALEMÝNÝN MÜBAREK KURBAN BAYRAMINIZ VE YENÝ YILINIZI KUTLARIm)
iskorpitx&metlak kasýrgasý sona erdi.<body bgcolor="#000000">

<object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0" width="917" height="548">
<param name="movie" value="http://www.cristaleriasmadrid.com/images/iskorpitx.swf">[/codebox]
it had invaded my cpanel, my admin login; it was horrible. I have it under control...for now, but it keeps coming back.

wagdoll

Dec 31 2006, 01:46 AM

This is a defacement hacker rather than the exploit hacker

Here's some info from a google search

http://www.stokia.com/news/iskorpitx-iis-ssfm-hack-info.htm

You can type the word iskorpitx into google and read about this hacker, he's done tens of thousands of websites. Defacement hacking is a very popular pastime for some "people".

My advice would only be to go to your host, they are often very good with these situations. I think also Cpanel have support forums, you might find something helpful there.

Enchanted

Jan 4 2007, 11:46 PM

The new site is http***://www.cristaleriasmadrid.com ?

I was just adding the programs posted here to the alphabetical pinned list and I am not good with html stuff to know which program you are referring to, thanks

wagdoll

Jan 5 2007, 04:48 AM

I don't think the name of the affected site is given. cristaleriasmadrid appears to be part of the hacker's coding, rather than the site that's been hacked.

Enchanted

Jan 5 2007, 05:03 AM

QUOTE(wagdoll @ Jan 5 2007, 10:48 AM) [snapback]4621424[/snapback]

I don't think the name of the affected site is given. cristaleriasmadrid appears to be part of the hacker's coding, rather than the site that's been hacked.

Ok thanks wagdoll. I was adding the sites reported here to the alphabetical list when I came across this thread. I am unable to add the site as we do not know what this new site is

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.