my website was down this morning, so i pinged my buddy ron about it and he jumped right on it — thanks dude! …but it turned out to be a lot more than just the server getting hung up on something and needing a reboot.
when my site here came back online, first thing i noticed was this huge blank space at the top of the page… so naturally i went to view-source on the page, and that’s when i noticed some
iframe at the top of the page right under the
body tag — i sure as hell didn’t put that there, and nobody else would’ve… uh oh.
to add insult to injury, it looks like a whole bunch of pages had been modified adding in this stupid
iframe to the pages, which really fucking blows… so i’ve been going through them and removing it from the pages, which sucks, but not more than the fact that these assholes broke in and ran some hack to do this in the first place — looks like they got in through my FTP account.
here’s a quick sampling of some of the IP addresses that were hitting the box and were banned this morning:
which all seems to be originating from “Asia Pacific Network Information Centre”.
yup, looks like the North Koreans are hacking sites again, least that was my first thought. *blink*
p.s. might want to run some anti-spyware/anti-virus software on your computer if you happened to have hit my site earlier this morning, just in case.