Overclock.net › Forums › Software, Programming and Coding › Coding and Programming › My Website got hacked.....
New Posts  All Forums:Forum Nav:

My Website got hacked.....

post #1 of 17
Thread Starter 
Hey guys,

I went to check on my School project website today and noticed that i had been hacked. WWW.COPCON.DK

My thoughts were on how did they get into my account at the webhost or if they even needed to?

Also It's my school project what kind of dumbarse hacks that? imagine if i had to deliver tomorrow????

Anyways any help insight to this issue will be as always much appreciated.

final thought is my website stuff still there....bytes fingernails
Trauma
(13 items)
 
  
CPUMotherboardGraphicsRAM
I7 2600k Sabertooth P67 X-Fire 6950 8GB XMS 
Hard DriveOptical DriveOSMonitor
OS SSD/GAMES RAPTOR/DATA F3 Yes 7 (64) 40" samsung 
KeyboardPowerCaseMouse
RAZOR NZXT HALE90 650w Graphite 600T SE RAZOR 
  hide details  
Reply
Trauma
(13 items)
 
  
CPUMotherboardGraphicsRAM
I7 2600k Sabertooth P67 X-Fire 6950 8GB XMS 
Hard DriveOptical DriveOSMonitor
OS SSD/GAMES RAPTOR/DATA F3 Yes 7 (64) 40" samsung 
KeyboardPowerCaseMouse
RAZOR NZXT HALE90 650w Graphite 600T SE RAZOR 
  hide details  
Reply
post #2 of 17
most likely they used cross site scripting to hack you. By doing that they are able to obtain admin passwords/accounts or just get the link straight to your admin page.
Skyship
(13 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II 1090T BE ASUS Crosshair IV XFX 5770 OCZ AMD Edition  
Hard DriveOSMonitorKeyboard
Seagate Windows 7 Pro Sceptre 22" widescreen Saitek Eclipse 1 
PowerCaseMouseMouse Pad
XION 800w modular Cooler Master Storm Scout Razer DeathAdder Steel Series QCK 
  hide details  
Reply
Skyship
(13 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II 1090T BE ASUS Crosshair IV XFX 5770 OCZ AMD Edition  
Hard DriveOSMonitorKeyboard
Seagate Windows 7 Pro Sceptre 22" widescreen Saitek Eclipse 1 
PowerCaseMouseMouse Pad
XION 800w modular Cooler Master Storm Scout Razer DeathAdder Steel Series QCK 
  hide details  
Reply
post #3 of 17
We can't help you with this little information... restore your website to how it was before, give a link to your host, and then we'll see.

Quote:
Originally Posted by Poseiden;14412623 
most likely they used cross site scripting to hack you. By doing that they are able to obtain admin passwords/accounts or just get the link straight to your admin page.
How did you reach that conclusion? It seems like you just randomly picked one method and decided on it.
Akiyama Mio
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6420 @ stock, 0.98v Asus P5N-E SLI Gainward GTX 460 1GB @ 800/1600/1900 2x2GB Kingston @ 800MHz 5-5-5-15 2T 
Hard DriveOptical DriveOSMonitor
WD 250GB, 320GB SATA/3, 16MB Cache, Seagate 1TB LG GSA-H62N 18x SATA Ubuntu 9.10 x86 & Win7 x86 Asus VW222U 
KeyboardPowerCase
Logitech Classic Corsair 650HX NZXT Apollo Black 
  hide details  
Reply
Akiyama Mio
(13 items)
 
  
CPUMotherboardGraphicsRAM
E6420 @ stock, 0.98v Asus P5N-E SLI Gainward GTX 460 1GB @ 800/1600/1900 2x2GB Kingston @ 800MHz 5-5-5-15 2T 
Hard DriveOptical DriveOSMonitor
WD 250GB, 320GB SATA/3, 16MB Cache, Seagate 1TB LG GSA-H62N 18x SATA Ubuntu 9.10 x86 & Win7 x86 Asus VW222U 
KeyboardPowerCase
Logitech Classic Corsair 650HX NZXT Apollo Black 
  hide details  
Reply
post #4 of 17
If you don't keep a backup then you deserved it.

We need to see what the website was like before it was hacked. What is on the website? Is everything updated?

It seems like a script kiddy did it, the "redsign" is done rather poorly, so I doubt that it was anyone reputable. You have IP logs, don't you? Do you host the server yourself on your home network, or is it being hosted by a company somewhere else? If it is hosted by a company, tell them and they will find out the ip address and whatnot without any problems.
My old rig
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q6600 680i BFG MSI 570 gtx (stock) 2*2GB, 1*1GB 
Hard DriveOptical DriveOSMonitor
Hitachi 1TB some cheap dvd-rw drive Windows 7 Ultimate SyncMaster 2232BW 22inch 
KeyboardPowerCaseMouse
G15 750watt No name Logitech MX 518 
Mouse Pad
Invoice from Newark 
  hide details  
Reply
My old rig
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q6600 680i BFG MSI 570 gtx (stock) 2*2GB, 1*1GB 
Hard DriveOptical DriveOSMonitor
Hitachi 1TB some cheap dvd-rw drive Windows 7 Ultimate SyncMaster 2232BW 22inch 
KeyboardPowerCaseMouse
G15 750watt No name Logitech MX 518 
Mouse Pad
Invoice from Newark 
  hide details  
Reply
post #5 of 17
Thread Starter 
Quote:
Originally Posted by hak8or;14412653 
If you don't keep a backup then you deserved it.

We need to see what the website was like before it was hacked. What is on the website? Is everything updated?

It seems like a script kiddy did it, the "redsign" is done rather poorly, so I doubt that it was anyone reputable. You have IP logs, don't you? Do you host the server yourself on your home network, or is it being hosted by a company somewhere else? If it is hosted by a company, tell them and they will find out the ip address and whatnot without any problems.

Hey mister grumpy ;P I backed up.

And I dont really think anyone deserves thier "SCHOOL" project getting hacked. In fact that attitude was proberly the same held by the people that hacked me...

I found out that it looks like some kind of turkish extremist group lol. I wrote them a mail. I think they think im danish and are getting some kind of payback in their own little twisted way. Whatever. I've written to my Hosting company too.

Is that something I need to sort out? some form of security built into the coding/pages? or is that something my hosting company should have covered?

My hosting company is WWW.surftown.DK
Trauma
(13 items)
 
  
CPUMotherboardGraphicsRAM
I7 2600k Sabertooth P67 X-Fire 6950 8GB XMS 
Hard DriveOptical DriveOSMonitor
OS SSD/GAMES RAPTOR/DATA F3 Yes 7 (64) 40" samsung 
KeyboardPowerCaseMouse
RAZOR NZXT HALE90 650w Graphite 600T SE RAZOR 
  hide details  
Reply
Trauma
(13 items)
 
  
CPUMotherboardGraphicsRAM
I7 2600k Sabertooth P67 X-Fire 6950 8GB XMS 
Hard DriveOptical DriveOSMonitor
OS SSD/GAMES RAPTOR/DATA F3 Yes 7 (64) 40" samsung 
KeyboardPowerCaseMouse
RAZOR NZXT HALE90 650w Graphite 600T SE RAZOR 
  hide details  
Reply
post #6 of 17
Have a list of internet activity, some people at school might have launched a small scale DDOS attack agaoinst you for a joke, and if its hosted at home may have proved no hassle at all for an attack of 4 or 5.


EDIT-
Quote:
Originally Posted by morphus1;14412728 
Hey mister grumpy ;P I backed up.

And I dont really think anyone deserves thier "SCHOOL" project getting hacked. In fact that attitude was proberly the same held by the people that hacked me...

I found out that it looks like some kind of turkish extremist group lol. I wrote them a mail. I think they think im danish and are getting some kind of payback in their own little twisted way. Whatever. I've written to my Hosting company too.

Is that something I need to sort out? some form of security built into the coding/pages? or is that something my hosting company should have covered?

My hosting company is WWW.surftown.DK

Does twitter know your using thier logo tongue.gif
Edited by GlockZoR IV - 7/31/11 at 7:16am
Triggers broom
(18 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 920 Gigabyte GA-EX58-UD3R  Gigabyte GTX460 Super Talent 1600 
Hard DriveOptical DriveCoolingCooling
Seagate Barracuda LG DVD+/-RW SATA Drive EK Supreme LXT EK 240 Rad 
CoolingOSMonitorKeyboard
EK big res and 2.2 pump Windows 7 Ultimate x64 HP 2159v  Razer Arctosa 
PowerCaseMouseMouse Pad
Corsair CX600 Xigmatek Midgard Razer Abyssus Steelseries cheapo one 
AudioOther
Sony TA-D607 iPhone 4 
  hide details  
Reply
Triggers broom
(18 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 920 Gigabyte GA-EX58-UD3R  Gigabyte GTX460 Super Talent 1600 
Hard DriveOptical DriveCoolingCooling
Seagate Barracuda LG DVD+/-RW SATA Drive EK Supreme LXT EK 240 Rad 
CoolingOSMonitorKeyboard
EK big res and 2.2 pump Windows 7 Ultimate x64 HP 2159v  Razer Arctosa 
PowerCaseMouseMouse Pad
Corsair CX600 Xigmatek Midgard Razer Abyssus Steelseries cheapo one 
AudioOther
Sony TA-D607 iPhone 4 
  hide details  
Reply
post #7 of 17
Thread Starter 
Quote:
Originally Posted by GlockZoR IV;14412730¨ 

Does twitter know your using thier logo tongue.gif

I was around long before twitter ;P
Trauma
(13 items)
 
  
CPUMotherboardGraphicsRAM
I7 2600k Sabertooth P67 X-Fire 6950 8GB XMS 
Hard DriveOptical DriveOSMonitor
OS SSD/GAMES RAPTOR/DATA F3 Yes 7 (64) 40" samsung 
KeyboardPowerCaseMouse
RAZOR NZXT HALE90 650w Graphite 600T SE RAZOR 
  hide details  
Reply
Trauma
(13 items)
 
  
CPUMotherboardGraphicsRAM
I7 2600k Sabertooth P67 X-Fire 6950 8GB XMS 
Hard DriveOptical DriveOSMonitor
OS SSD/GAMES RAPTOR/DATA F3 Yes 7 (64) 40" samsung 
KeyboardPowerCaseMouse
RAZOR NZXT HALE90 650w Graphite 600T SE RAZOR 
  hide details  
Reply
post #8 of 17
heheheheee they have a TM on thier logo, so be careful, just friendly advice smile.gif
Triggers broom
(18 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 920 Gigabyte GA-EX58-UD3R  Gigabyte GTX460 Super Talent 1600 
Hard DriveOptical DriveCoolingCooling
Seagate Barracuda LG DVD+/-RW SATA Drive EK Supreme LXT EK 240 Rad 
CoolingOSMonitorKeyboard
EK big res and 2.2 pump Windows 7 Ultimate x64 HP 2159v  Razer Arctosa 
PowerCaseMouseMouse Pad
Corsair CX600 Xigmatek Midgard Razer Abyssus Steelseries cheapo one 
AudioOther
Sony TA-D607 iPhone 4 
  hide details  
Reply
Triggers broom
(18 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 920 Gigabyte GA-EX58-UD3R  Gigabyte GTX460 Super Talent 1600 
Hard DriveOptical DriveCoolingCooling
Seagate Barracuda LG DVD+/-RW SATA Drive EK Supreme LXT EK 240 Rad 
CoolingOSMonitorKeyboard
EK big res and 2.2 pump Windows 7 Ultimate x64 HP 2159v  Razer Arctosa 
PowerCaseMouseMouse Pad
Corsair CX600 Xigmatek Midgard Razer Abyssus Steelseries cheapo one 
AudioOther
Sony TA-D607 iPhone 4 
  hide details  
Reply
post #9 of 17
Quote:
Originally Posted by hak8or;14412653 
If you don't keep a backup then you deserved it.

We need to see what the website was like before it was hacked. What is on the website? Is everything updated?

It seems like a script kiddy did it, the "redsign" is done rather poorly, so I doubt that it was anyone reputable. You have IP logs, don't you? Do you host the server yourself on your home network, or is it being hosted by a company somewhere else? If it is hosted by a company, tell them and they will find out the ip address and whatnot without any problems.

Yeah cuz nerds have the right hack anything if it's not backed up!! Internet 101 jeez!1!!!!one
College Fund
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 3770k Intel DP67BG Extreme HD 7950 Boost 8GB GSKILL Sniper 
Hard DriveOSMonitorKeyboard
WD Black 640GB Windows 7 Ultimate 2 x Acer 22", 1 x LG 22" Logitech G15 
PowerCaseMouseMouse Pad
AX860 P182SE Corsair M60 Xtrac Ripper XXL 
  hide details  
Reply
College Fund
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 3770k Intel DP67BG Extreme HD 7950 Boost 8GB GSKILL Sniper 
Hard DriveOSMonitorKeyboard
WD Black 640GB Windows 7 Ultimate 2 x Acer 22", 1 x LG 22" Logitech G15 
PowerCaseMouseMouse Pad
AX860 P182SE Corsair M60 Xtrac Ripper XXL 
  hide details  
Reply
post #10 of 17
Google translate change the site wording under the logo to "we love our kunder", heh tongue.gif

Alright, maybe I was being too grumpy right there frown.gif

Contact the webhosting company and tell them about this, they will more than likely respond to it with (maybe) legal action, but most certainly they will be able to tell where the attack came from.

It is both your responsibility and the web hosting companies responsibility to secure your website. The companies responsibly is to prevent DDOS from taking down your website, someone taking your entire web hosting account, and maybe giving you security advice if you purchased a managed website/web server.

Your responsibility is to make sure the scripts on your account are reasonably secure. Make sure your login passwords are hard to guess, and that they are alphanumeric, and maybe some random high ascii characters too. tongue.gif If you are running wordpress on it, or things like that, make sure it is updated to the most recent version at all times.
My old rig
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q6600 680i BFG MSI 570 gtx (stock) 2*2GB, 1*1GB 
Hard DriveOptical DriveOSMonitor
Hitachi 1TB some cheap dvd-rw drive Windows 7 Ultimate SyncMaster 2232BW 22inch 
KeyboardPowerCaseMouse
G15 750watt No name Logitech MX 518 
Mouse Pad
Invoice from Newark 
  hide details  
Reply
My old rig
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q6600 680i BFG MSI 570 gtx (stock) 2*2GB, 1*1GB 
Hard DriveOptical DriveOSMonitor
Hitachi 1TB some cheap dvd-rw drive Windows 7 Ultimate SyncMaster 2232BW 22inch 
KeyboardPowerCaseMouse
G15 750watt No name Logitech MX 518 
Mouse Pad
Invoice from Newark 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Coding and Programming
Overclock.net › Forums › Software, Programming and Coding › Coding and Programming › My Website got hacked.....