Posted by Neredbojias on 01/07/08 05:46

Well bust mah britches and call me cheeky, on Sun, 06 Jan 2008 23:47:11
GMT John Clayton scribed:

> Looking at my company home page, I get asked if it can set a cookie.
> I've never , ever included these devices on either of the sites I've
> built. Looking at the source code there is some stuff in comments I
> never put in there.
> I'll remove it in next day or so, but before I do can any one please
> tell me what it might be?
>
> Our hosting company (Netcetera) has just yesterday altered ftp access
> codes for both sites as part of their "security review".
> Seems to me this one's been hacked into.
> Can anyone guess to what purpose please?
> Many thanks.
>
> The code is just after <body bgcolor= , which is now repeated - as is
> this "cuckoo code". this starts off "var msg=314, d=document
>
> This page is;- www.ossettmouldings.com/default.htm
>
> I've only looked at one or two others - they seem OK.

Dunno, but whatever it's theoretically suppose to do fails, anyway (-on a
secure receiver.)

58 html errors! That you or the hacker? I noticed <html> _before_ the
doctype, among other things. -And 2 opening body tags... Tsk, tsk.

--
Neredbojias
Riches are their own reward.

[Back to original message]