Re: Website Hijacked
Re: Website Hijacked
- Subject: Re: Website Hijacked
- From: Jon Nolan <email@hidden>
- Date: Thu, 12 Apr 2012 13:29:57 -0600
- Organization: Loch Garman
I didn't see if you answered the apache logs question but I wonder if you might have registrar issues. This sounds very much like a squatter has your domain and the random nature of the problem is due to DNS caching. If that's the case, you'll probably be experiencing it at a 100% clip this time tomorrow.
Is the form hosted on the same domain?
On 4/12/12 12:47 PM, Daniele Corti wrote:
Hi,
That's strange, can you download the .woa packages (the Application and the WebResources) and install them on a test site and see if the redirection happens?
2012/4/12 Gino Pacitti <email@hidden <mailto:email@hidden>>
no database seems clean - tried to search for a 'script' word in any fields and nothing came back - its like the whole site gets redirected when you click a form to go to a Direct Action?
Gino
On 12 Apr 2012, at 16:25, Daniele Corti wrote:
Hi Gino,
is the Direct Action, actually, generating the HTML from content fetched from the DB? If so, can you check the records that are fetched in the DA, if they have some script injections?
Regards,
2012/4/12 Gino Pacitti < email@hidden <mailto:email@hidden>>
I have been hijacked...
Its redirecting and also spreading virus to PC - not everyone but a percentage of users have had warnings and alert screen concerning the site.
What should i look for in the logs?
Gino
On 12 Apr 2012, at 16:02, Pascal Robert wrote:
You are hijacked or you are seeing hacks attempts? What do you see in the Apache logs?
Hi
Anyone had any experience of how a site can be hijacked?
I mean that a normal link to a Direct Action gets redirected to a new site (Adult Content)
I cannot see how this is being done - Components does not contain any scripts except for Google Ananlytics yet clicking on a submit button or links causes this.
It is also not on every attempt - it seems to happen randomly??
Any help appreciated
Gino
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden <mailto:email@hidden>)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden <mailto:email@hidden>
______________________________ _________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden <mailto:email@hidden>)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden <mailto:email@hidden>
______________________________ _________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden <mailto:email@hidden>)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden <mailto:email@hidden>
--
Daniele Corti
--
I DON'T DoubleClick
______________________________ _________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden <mailto:email@hidden>)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden <mailto:email@hidden>
--
Daniele Corti
--
I DON'T DoubleClick
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden