FA+
Shop
Two things
16 years ago
General
So two things as of late have happened.
One, I've had this song stuck in my head for three days now. That's okay though, because I really like the song and the band. Great Big Sea (a folk rock band from Newfoundland and Labrador) is awesome, but probably not well known outside of Canada.
So yeah... three days...
The other things. My blog site seems to be borked. Not in a bad way... in just an annoying way. See, a few days ago I noticed that I got redirected to a site called chinaontv.com for no reason. I soon discovered that I was only getting redirected when I was at my blog. I thought my laptop had picked up a virus so I did a scan and came up with nothing came up. I went to our desktop and discovered the same thing was happening. I also got a few messages from people saying that they where also getting redirected to that site.
I started to do some research in to this and I can't seem to come up with a possible solution. Some say it's a script that's sitting on my hard drive somewhere that's doing this... if so where did I get it and is my site giving it out. Other sites say that it's malware and I just need to do a crap load of scans to hunt it down and get rid of it.
I just don't know... I'd really love to know how this happened. I don't link to evil/questionable sites.
I do have a back up of my blog from before this started to happen. I would lose some posts though (3 or 4 I think). I'm afraid though that it won't solve the problem... then what the heck do I do? o_O
Has anyone else had this sort of problem? How did you solve it?
If anyone can help me out with this problem, I'll do up a request pic for them of what ever they want.
One, I've had this song stuck in my head for three days now. That's okay though, because I really like the song and the band. Great Big Sea (a folk rock band from Newfoundland and Labrador) is awesome, but probably not well known outside of Canada.
So yeah... three days...
The other things. My blog site seems to be borked. Not in a bad way... in just an annoying way. See, a few days ago I noticed that I got redirected to a site called chinaontv.com for no reason. I soon discovered that I was only getting redirected when I was at my blog. I thought my laptop had picked up a virus so I did a scan and came up with nothing came up. I went to our desktop and discovered the same thing was happening. I also got a few messages from people saying that they where also getting redirected to that site.
I started to do some research in to this and I can't seem to come up with a possible solution. Some say it's a script that's sitting on my hard drive somewhere that's doing this... if so where did I get it and is my site giving it out. Other sites say that it's malware and I just need to do a crap load of scans to hunt it down and get rid of it.
I just don't know... I'd really love to know how this happened. I don't link to evil/questionable sites.
I do have a back up of my blog from before this started to happen. I would lose some posts though (3 or 4 I think). I'm afraid though that it won't solve the problem... then what the heck do I do? o_O
Has anyone else had this sort of problem? How did you solve it?
If anyone can help me out with this problem, I'll do up a request pic for them of what ever they want.
When did the redirects started happening?
Recommendation: you might want to reinstall Wordpress. As for your posts, I think it is possible for you to save them, as the scripts only seem to affect the PHP, Javascript and HTML files. All the posts you've made are put onto MySQL (Man, it's been a while).
I wish there was a way of knowing which file was tampered with. I'd just drag over the one from the back up and see if that solved the problem.
Client had a JavaScript redirect inserted into header.php - no idea how, but I've deleted an unknown user and will upgrade to 2.9.1 shortly.
Having read this, I did some further research into the problem. Turns out that there are some security loopholes in Wordpress where a hijacker can gain instant access to the file header.php and insert whatever Javascripts they want. That's the file you need to replace.
I'll contact Wordpress about the situation. Hopefully, they'll have a better release.
Ooh, interesting. I was using Konqueror. Just tried it in Firefox, and got the redirect. It looks like it's a script being injected on the page (which doesn't work in Konqueror, so it seems).
As for your first topic: that was awesome! I can understand why you would have that song stuck in your head. I'm gonna go check out more of their music. Good luck with your website!