When I load my site www.thegermz.com it says on the left down side of the browser "waiting for try-count.net" but I have nothing linking to that site and if I look at the source there is nothing with trycount.net EDIT: THE TRYCOUNT IS GONE IT SAYS Now I'm seeing gate4clicks.net instead of try-count.net!!!!!
Once check ur admin panel are u able to log in ? If not report to Host people to suspend ur a/c later u can configured it once again ...
something simliar happened to us, they were the kitty krew or something. we had to take the site down
im using 3ix hosting service since 24 April 08. Its been a good experience with them, until today that my site couldnt be opened with a long list of strange database errors on my php site! i cant even access my cpanel account as it doesnt recognise my account! so basically i have no access to my hosting account...i have even submitted tickets twice with highest priority and its been like 6-7 hours that i didnt receive one reply from them! and after reading alot of posts in various forums about their bad service and weak security, i doubt their competence...im am pretty sure that someone must have hacked them again and that they dont want to face the customers. im planning to discontinue their service and get a refund cuz i dont think they can handle their business like this and i dont wanna risk my business either! if anyone knows of other good reliable php supporting web servers then please let me know.
if you still feel your hacked, ask you host to move you to a different server, see what scripts or version of mySQL you are using. There is some exploit somehow.
"Remote File Inclusion" is a very common technique for hacking PHP powered web sites; http://en.wikipedia.org/wiki/Remote_File_Inclusion See samples and check your access.log for similar entries. If you see one, you'll probably also see that the attackers user agent is "libwww-perl". It could be changed to anything, but most of the "script kiddies" leaves it unchanged. So, banning this user agent via .htaccess may give you a temporary solution. But, you should really update the script you are using and tell the situation to your host.
Sorry about this thread.. don't know who unburried it. I am not hacked anymore, I had a malicious Javascript code and removed it
I too am using 3ix hosting and facing the same problem... My site redirects to http: // ya . ru it is a famous Russian search engine Yandex. I don't understand how can they get associated with these kind of spamming.. I have three sites on 3ix and all of them are having the same problem. I had a chat with the technical guy who helped me very patiently and convinced me that the sites are working well.. Infact the site did work without those redirects.. after couple of days it again started redirecting. The status bar shows that my site is connecting to various sites... gate4clicks . net and some unknown .ru sites.. After research I now know it is known as script injection. But how to get rid of the javascript code that only shows when I view source it online.. I am not able find it on files which are on my local computer.. Though I am reseraching on it.. but Any help would be appreciated..
The problem is likely that your ftp password has been compromised. I would suggest changing you password(s) and then remove all uploaded content and then uploading it again from home. Only the content that you uploaded to your host has been modified.