Monday, June 04, 2007

Page hijacking

We recently suffered a page hijacking incident on our servers. The symptoms were that when someone browsed to one of our pages, they would be redirected to some other page. It took us some time to figure out how it was happening. We finally stumbled upon a post on a forum that helped us solve the problem. I thought I'd include a link to that post here to help others find it if they happen to find my blog post. This post describes exactly what was happening to us and provides a solution to the problem.

http://www.webmasterforums.com/windows-web-security/5612-page-being-hijacked.html

The solution is on the 3rd page. If for some reason that link is gone or does not work, I copied it's contents to here:

http://www.whitesandsolutions.com/PageHijacked.rtf

Here are some keywords that someone may use to find this post:

c:\boot.vbs, mm.exe, nb88, d99_temp, ad.js, coon.js

No comments: