1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

IXWebHosting Poker Ads?

Discussion in 'Web Hosting' started by ElectricalOutlet, Jul 28, 2008.

  1. #1
    At the bottom of some of the pages I host at IXWebHosting a whole bunch of lines of this type:

    <a href="http://www.somespecificsiteaddress.com/webalizer/css/?q=89">texes holdem poker hands</a>

    keep appearing. IX say that my site has a virus and then suggest that I scan my local PC for a virus.

    Since the site has no scripting associated with the site, not even forms, and nothing has been uploaded to the site for a very long time I find the response somewhat "interesting". It seems more likely to me that either they have security problems with their site or that someone at IX is adding these links to the pages.

    Has anyone had the same experience with pages hosted at IX (or elsewhere)?

    As an example, please take a look at the lecis.org website (I can't post live links - sorry)
    If you're quick, you'll see the links flash across the screen. Go to the page source (View->Page Source in firefox) and scroll to the bottom to see the links.

    Thoughts, suggestions or comments exhonerating IX or suggesting how this might have happened would be appreciated.

    Thanks,
     
    ElectricalOutlet, Jul 28, 2008 IP
  2. livedomainsearch

    livedomainsearch Peon

    Messages:
    111
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    0
    #2
    It looks like you got hacked by on page or SQL injection. Can't you remove the code from your source?
     
    livedomainsearch, Jul 28, 2008 IP
  3. ElectricalOutlet

    ElectricalOutlet Guest

    Messages:
    2
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #3
    Surely I could just remove it. However, there's no SQL on any of these pages. The website does not even have a form on it. There's no serverside scripting, nothing but html.

    So just removing the text does me no good if the vulnerability remains. What's not clear to me is how the vulnerability exists and that I could close it. Seems that the vulnerability is on the server and I don't have admin rights to the server.
     
    ElectricalOutlet, Jul 28, 2008 IP
  4. Yousif

    Yousif Banned

    Messages:
    233
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    0
    #4
    Haha, I don't know what to tell you. I spoke with the CEO of IXWebHosting, showed him various vulnerabilities on their system as "proof" because he was ignorant, and then later he told me he would like to pay me PER exploit-- sadly that's not how anyone in the security industry works. I spoofed his emails, showed him I accessed 6 servers on his network, and proposed to him 2 XSS (Cross-Site Scripting) flaws. I think you should venture off to a different host no matter what the case is, he's not obviously never considered security at any point, trust me.
     
    Yousif, Jul 28, 2008 IP