NetFreak

@djbob Suppose #you have a domain mydomain.com #now park a domain mydomain1.com #visit mydomain1.com #first you'll automatically go here http://mydomain1.com/cgi-sys/defaultwebpage.cgi #then you'll see this: A3q was here ... A3q [ at ] att [ . ] net #again, create a subdomain like subdomain.mydomain.com #visit subdomain.mydomain.com #you'll automatically go here http://subdomain.mydomain.com/cgi-sys/defaultwebpage.cgi #then you'll see this: A3q was here ... A3q [ at ] att [ . ] net Hope you've understood now. [if you do not see the message, then clear cookie & cache. I hope this will help you.]

@djbob I've just successfully added a new domain to my account and my previous domain was deleted by Geoff. But unfortunately I've seen this message again "A3q was here ... A3q [ at ] att [ . ] net" !! I changed my index file on April 3rd. I checked my other files (in public html) very carefully. Everything was fine. I was able to use my site. Now when I've seen that msg again, then I've checked again. No, there is no problem with any of my files. And I am pretty damn sure that this issue is not completely fixed in you server Generally after adding a domain into jonny, either there shows a queue msg or the main site of the user. But this time its different Hope you'll check Jonny again. *Your cgi-sys/defaultwebpage.cgi says, "A3q was here ... A3q [ at ] att [ . ] net" :( I am sorry cause I told that my previous domain was deleted. Don't worry. That wasn't deleted I mistook it. Anyway, my other info was correct. Sorry for one thing, my previous domain (account's main domain) was not deleted I mistook it. The other info was correct.

Hi, when I'm trying to park a co.cc domain, in cPanel it shows "Error from park wrapper: Using nameservers with the following IPs: 114.207.244.190,114.207.244.187,114.207.244.188,114.207.244.189,211.63.185.157 " I've already setup my NS as ns1.heliohost.org and ns2.heliohost.org, but cPanel didn't accept it. What can I do now? If I'll have to use nameservers with the IPs given earlier, then pls tell me about the procedure. *Note: co.cc supports NS and Zone Editor options. But in NS section, it only allows to use nameservers but no IPs. And in zone editor area, it has Host, TTL, Type [A, MX, CNAME, NS or TXT] and Value fields. Hope now you'll be able to help me easily

@djbob as you are the root admin of Jonny server, I hope you will say something about present situation and give us some idea of your upcoming plan about fixing everything. This might be helpful for other members currently using Jonny server You told that you were talking to the hacker. Did you find anything about his/her intention or anything that might help the administrators? How can I backup my database? cPanel seems in deep trouble One more thing @djbob, I know you are trying a lot to fix the problems of Jonny. But try to understand one thing, its security system has already breached. Now it has only 2000 accounts. It's the perfect time for you to setup this server again from the very beginning. This will give it a brand new server, right? But if you don't like this suggestion, then you'll never sure about everything of it, right? Who knows, the hacker may be able to attack again in near future. I am sure you won't like to give them the opportunity to crack Jonny again

Hmm, you are right. I've checked one of my static page and it was fine. But Jonny has just 2000 accounts now! So why is the server overloaded?

Ya, I have the same question. Some guys are trying hard to run this heliohost service for free!! This is not a PayPal like site! I think hackers have some rules. They can't attack anyone unnecessary!! But these hackers are really [.............]. If they have guts, they shouldn't do it again to a non-profit organization. I know running a server is very expensive. And if you want to put advanced security for it, then it'll become more expensive! And if a hacker wants this opportunity and attacks a server like Jonny, then I've nothing to say. I can only say that this hacker was really a ......

I think you should reinstall everything in Jonny server. But if you really think to do it, pls inform us earlier and give at least 24 hrs so that we can back up everything. Please check carefully. Jonny server is actually down!

Is Jonny down again? I can't login into cPanel, even can't see my site! It shows a 500 internal server error

Hi, is there any chance that the hacker could download all files from the Jonny server to his local hard drive? You didn't need to delete all files from your account. You had to just replace that index file with your own index file. I've checked everything in cPanel. Except Webmail, subdomain and softaculous, Djbob has fixed everything. I think as you are using a subdomain of heliohost, that's why you are facing this problem. Just wait. I hope djbob will fix this issue soon

Subdomain is also affected.

@jje, you were talking about a security hole. Hope you'll be able to fix everything. After detecting all problems and fixing them all, please let us know the good news

TO DJBOB, guys, u r doing a great job!! Thanks again. I have one request to u. Pls check carefully your Jonny server again for any types of virus, malware, keylogger or other scripts that can harm your server or can spy on your server. jje has informed that the server has been checked twice by AVG. That's good. But I think you should do it again by other engine like Kaspersky cause I've used AVG, Avira, Norton 360, Avast, BitDefender (total security), Comodo, F-Secure, McAfee. But only Kaspersky has satisfied me. And still now I am using it (internet Security) in my home and office PCs. And believe me, for last 15 months I didn't have to install my operating system again. Please don't think that I am advertising their product. Another suggestion for you, please find out actually what happened to Jonny. Hope Jonny will have up to date renowned firewall, DDos protection, antivirus etc. Thanks again

Everything look's fine again except PhpMyAdmin and WebMail. I really feel good as I haven't lost any single file! Only my index file was replaced. But I've solved it already. I have a question. My site is running using PHP and MySql. As Jonny hacked, is there any chance that any of my cPanel, MySql database password has been hacked? Should I change all my passwords again??

Hi, can anyone tell me about the present situation of Jonny server?

Hi, recently I have found that my site has been hacked by Black Hat Group. I can't even login into my cPanel account! I hope the administrators of HelioHost will take effective steps as soon as possible. Thank you.