On 27 April 2010 04:51, David Mann wrote:
> On Apr 27, 2010, at 5:48 AM, Matthew Hunt wrote:
>
>> http://blogcastfm.com/announcements/warning-massive-number-of-godaddy-wordpress-blogs-hacked-this-weekend/
>
> Someone sent me that link at work this morning and I was going to post it
> here, you be
On Apr 27, 2010, at 5:48 AM, Matthew Hunt wrote:
> http://blogcastfm.com/announcements/warning-massive-number-of-godaddy-wordpress-blogs-hacked-this-weekend/
Someone sent me that link at work this morning and I was going to post it here,
you beat me to it :)
Apparently its not just Godaddy (so
On 26 April 2010 13:48, Matthew Hunt wrote:
> http://blogcastfm.com/announcements/warning-massive-number-of-godaddy-wordpress-blogs-hacked-this-weekend/
Thanks Matthew. It seems my site was an early adopter of this hack. I
feel so special and blessed :-\
I hope GoDaddy figure this thing out, be
http://blogcastfm.com/announcements/warning-massive-number-of-godaddy-wordpress-blogs-hacked-this-weekend/
On Wed, Apr 21, 2010 at 9:12 PM, Miserere wrote:
> I've got lightning coming out my eyes, ears and other orifices.
> F*&%...@#ing hackers
>
> I think I've managed to get it to the point
On 23 April 2010 08:48, CheekyGeek wrote:
>
> I know what you mean David, but the point is that the final digit in
> the XXX scheme does refer to Everyone. Rule #1 in security is to give
> no more permissions than are REQUIRED to do a particular job. A 7 for
> everyone is overkill since it gives p
On Fri, Apr 23, 2010 at 5:40 AM, David Mann wrote:
> Just wanted to point out that 777 doesn't mean that anyone in the world can
> magically write files wherever they want. This is because filesystem
> permissions only operate within the context of user accounts on the hosting
> server.
I kn
On Apr 23, 2010, at 10:11 AM, CheekyGeek wrote:
> Sounds like you had a 777 (world writable) folder in there somewhere?
> (Probably for uploads)
> This WILL be found by spammers, Belgians, and other undesirables.
> (I KID, I KID!)
Just wanted to point out that 777 doesn't mean that anyone in the
Waffles and Belgian Fries
--
From: "Miserere"
Sent: Thursday, April 22, 2010 6:25 PM
To: "Pentax-Discuss Mail List"
Subject: Re: Just got my WP site hacked!!
On 22 April 2010 18:11, CheekyGeek wrote:
Sounds like
> > Those damn Belgians! What have they ever done for us!?
> >
> > OK, beer, but apart from that...?
>
> Spas?
>
> (And Spa Francorchamps - one of the great racetracks of the world ...)
>
> Mayonnaise on French^WBelgian Fries?
>
> Opinion may be divided on Brussels Sprouts, although I really
On Apr 22, 2010, at 6:37 PM, John Francis wrote:
> On Thu, Apr 22, 2010 at 06:25:16PM -0400, Miserere wrote:
>> On 22 April 2010 18:11, CheekyGeek wrote:
>>> Sounds like you had a 777 (world writable) folder in there somewhere?
>>> (Probably for uploads)
>>> This WILL be found by spammers, Belgi
On Thu, Apr 22, 2010 at 06:25:16PM -0400, Miserere wrote:
> On 22 April 2010 18:11, CheekyGeek wrote:
> > Sounds like you had a 777 (world writable) folder in there somewhere?
> > (Probably for uploads)
> > This WILL be found by spammers, Belgians, and other undesirables.
> > (I KID, I KID!)
> > :
Pommes Frites.
On Thu, Apr 22, 2010 at 6:25 PM, Miserere wrote:
> On 22 April 2010 18:11, CheekyGeek wrote:
>> Sounds like you had a 777 (world writable) folder in there somewhere?
>> (Probably for uploads)
>> This WILL be found by spammers, Belgians, and other undesirables.
>> (I KID, I KID!)
>
On 22 April 2010 18:11, CheekyGeek wrote:
> Sounds like you had a 777 (world writable) folder in there somewhere?
> (Probably for uploads)
> This WILL be found by spammers, Belgians, and other undesirables.
> (I KID, I KID!)
> : )
>
> Darren Addy
> Kearney, NE
Cheers Darren.
Yeah, I think I did.
Sounds like you had a 777 (world writable) folder in there somewhere?
(Probably for uploads)
This WILL be found by spammers, Belgians, and other undesirables.
(I KID, I KID!)
: )
Darren Addy
Kearney, NE
--
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
On 22 April 2010 17:58, Madame RD wrote:
>
> have just visited your site . Nothing special happened and I enjoyed the
> visit .
> dominique
Are you saying my site isn't special...? ;-)
Thanks for checking, Dominique. Much appreciated.
--M.
--
\/\/o/\/\ --> http://WorldOfMiserere.com
Le 22/04/10 17:10, Miserere a écrit :
UPDATE:
I took the site down overnight so as not to hurt my visitors. It
should now be loading without the malicious redirect. Seems like the
script is hiding in a plugin, so I'll be reinstalling them all later
this afternoon. The site loses some functionali
On 22 April 2010 05:28, eckinator wrote:
> What Dave said. And so sorry to hear. It is such a pain.
> Your site still attempts to install dodgy crap on my computer. I
> managed to stop it but I am still busy cleaning up. Take it down,
> restore it from backup, apply all available patches and all l
What Dave said. And so sorry to hear. It is such a pain.
Your site still attempts to install dodgy crap on my computer. I
managed to stop it but I am still busy cleaning up. Take it down,
restore it from backup, apply all available patches and all lessons
learned.
Best of luck
Ecke
2010/4/22 David
On Apr 22, 2010, at 6:14 PM, Miserere wrote:
> Yeah, still not fixed. I'm giving up for now; I've spent 6 straight
> hours trying to figure this out and can't find that last damn script.
> I've left a message on the WP forum and hopefully someone will have
> replied by tomorrow.
I've had to repai
2010/4/22 Doug Brewer :
> Yeah, looking at your source, what Matthew pointed out is still there. It's
> below the footer and end page, just above the /body tag. I'll d/l the theme
> and see where it is in the files.
It might also be the result of an SQL injection.
If you can, Miserere, try also to
Miserere wrote:
> On 22 April 2010 02:26, P. J. Alling wrote:
> > I didn't click every link, but every one I did took me where I expected, as
> > did your supplied URL.
>
> Yeah, still not fixed. I'm giving up for now; I've spent 6 straight
> hours trying to figure this out and can't find
I got the same process a moment ago. The number one sign that's it's
malware at work is that the warnings are anonymous. Official browser
warnings come in a coloured banner (I've seen both yellow and blue) at
the top of the window, IIRC carrying the browsers branding. Your own
AV / firewall will
On 22 April 2010 02:26, P. J. Alling wrote:
> I didn't click every link, but every one I did took me where I expected, as
> did your supplied URL.
Yeah, still not fixed. I'm giving up for now; I've spent 6 straight
hours trying to figure this out and can't find that last damn script.
I've left a
I didn't click every link, but every one I did took me where I expected,
as did your supplied URL.
On 4/21/2010 9:12 PM, Miserere wrote:
I've got lightning coming out my eyes, ears and other orifices.
F*&%...@#ing hackers
I think I've managed to get it to the point where visitors are no
lo
On 21 April 2010 23:59, Doug Brewer wrote:
>
> Yeah, looking at your source, what Matthew pointed out is still there. It's
> below the footer and end page, just above the /body tag. I'll d/l the theme
> and see where it is in the files.
Thanks Doug, much appreciated! Right now I'm trying to figur
Miserere wrote:
On 21 April 2010 23:24, Doug Brewer wrote:
Look in your footer file and scope out the style.css as well.
Nothing that I can see in the style files (I have parent and child
style files). Nothing in the footer either.
Do you know how the page is rendered? Whatever bit of code t
On 21 April 2010 23:24, Doug Brewer wrote:
>
> Look in your footer file and scope out the style.css as well.
Nothing that I can see in the style files (I have parent and child
style files). Nothing in the footer either.
Do you know how the page is rendered? Whatever bit of code that does
that is
Miserere wrote:
On 21 April 2010 22:07, Matthew Hunt wrote:
On Wed, Apr 21, 2010 at 9:18 PM, William Robb wrote:
I just got redirected to monaprotectguard06td.xorg.pl, which according to my
WOT plug in, has a very poor reputation.
I downloaded http://EnticingTheLight.com using fetch(1) on F
Norton goes wonky and I get EI "cannot display."
Jack
--- On Wed, 4/21/10, Bob Sullivan wrote:
> From: Bob Sullivan
> Subject: Re: Just got my WP site hacked!!
> To: "Pentax-Discuss Mail List"
> Date: Wednesday, April 21, 2010, 6:31 PM
> Still buggy. Pa
On 21 April 2010 22:07, Matthew Hunt wrote:
> On Wed, Apr 21, 2010 at 9:18 PM, William Robb wrote:
>
>> I just got redirected to monaprotectguard06td.xorg.pl, which according to my
>> WOT plug in, has a very poor reputation.
>
> I downloaded http://EnticingTheLight.com using fetch(1) on FreeBSD
>
On Wed, Apr 21, 2010 at 9:18 PM, William Robb wrote:
> I just got redirected to monaprotectguard06td.xorg.pl, which according to my
> WOT plug in, has a very poor reputation.
I downloaded http://EnticingTheLight.com using fetch(1) on FreeBSD
running in a virtual machine.
Manual inspection of th
- Original Message -
From: "Miserere"
Subject: Re: Just got my WP site hacked!!
Just to be clear, the main page came up, you did nothing (didn't click
on any links), and after a few seconds your security warning came up.
Correct?
That's what happened t
- Original Message -
From: "Miserere"
Subject: Just got my WP site hacked!!
I've got lightning coming out my eyes, ears and other orifices.
F*&%...@#ing hackers
I think I've managed to get it to the point where visitors are no
longer redirected
I have on the same on IE.
Your page comes up, then breaks into a claim of security threats.
It isn't my security system responding, but a fake announcement.
It's trying to take over my system and get me to click OK.
You have to kill it before it digs in, not trivial.
Regards, Bob S.
On Wed, Apr 2
On 4/22/10, Miserere wrote:
> I was hoping that wouldn't happen... Thanks sandy!
>
> Just to be clear, the main page came up, you did nothing (didn't click
> on any links), and after a few seconds your security warning came up.
> Correct?
I think so, but am not certain -- I may have clicked s
On 21 April 2010 21:24, Sandy Harris wrote:
> My system -- Firefox on Linux -- gets to your page, gives a nice
> display for a few
> seconds, then blocks it, replaces it with a page saying that:
>
> This web page at www4.monaprotectguard06td.xorg.pl has been reported
> as an attack page and has be
Still buggy. Page has problems... Regards, Bob S.
On Wed, Apr 21, 2010 at 8:12 PM, Miserere wrote:
> I've got lightning coming out my eyes, ears and other orifices.
> F*&%...@#ing hackers
>
> I think I've managed to get it to the point where visitors are no
> longer redirected to another si
My system -- Firefox on Linux -- gets to your page, gives a nice
display for a few
seconds, then blocks it, replaces it with a page saying that:
This web page at www4.monaprotectguard06td.xorg.pl has been reported
as an attack page and has been blocked based on your security
preferences.
--
PDML
I was able to reach your site and navigate around it. Nice place to visit!
Paul
On Apr 21, 2010, at 9:12 PM, Miserere wrote:
> I've got lightning coming out my eyes, ears and other orifices.
> F*&%...@#ing hackers
>
> I think I've managed to get it to the point where visitors are no
> longer
I've got lightning coming out my eyes, ears and other orifices.
F*&%...@#ing hackers
I think I've managed to get it to the point where visitors are no
longer redirected to another site, but I'd appreciate it if a few of
you could confirm this. It's my website about Photography:
http://Enticin
40 matches
Mail list logo