Posted by Vince Morgan on 01/07/08 00:49

"John Clayton" <ossettmouldings@blueyonder.co.uk> wrote in message
news:flrp9t$apg$1@aioe.org...
> Looking at my company home page, I get asked if it can set a cookie.
> I've never , ever included these devices on either of the sites I've
built.
> Looking at the source code there is some stuff in comments I never put in
> there.
> I'll remove it in next day or so, but before I do can any one please tell
me
> what it might be?
>
> Our hosting company (Netcetera) has just yesterday altered ftp access
codes
> for both sites as part of their "security review".
> Seems to me this one's been hacked into.
> Can anyone guess to what purpose please?
> Many thanks.
>
> The code is just after <body bgcolor= , which is now repeated - as is this
> "cuckoo code". this starts off "var msg=314, d=document
>
> This page is;- www.ossettmouldings.com/default.htm

I don't think anyone here is going to be in a hurry to open this page.
Looks like they've added a little javascript. Posting the offending code
would be better.
Vince

[Back to original message]