Chiriquí Chatter was hacked about 10:00 PM last night by a Russian hacker. If you accessed the site after that time it is possible that the hacked program downloaded a virus to your PC.
You should run a complete virus scan on your PC, if you accessed this site between 10:00 PM last night and 1:00 PM March 31.
Here is the Information on the hacker.
nserver: ns0.stelaartois.ru. 220.127.116.11
nserver: ns1.stelaartois.ru. 18.104.22.168
state: REGISTERED, DELEGATED
person: Ludmila M Samoletova
phone: +7 8442 787972
fax-no: +7 8442 787972
I found this information by googling on the URL I was seeing in the bottom of the browser where it displays the sites it is traversing to handle your request. Any time I see an address with a .ru suffix, I worry because it tells me I am accessing a site in Russia.
My first indication was that the site didn’t come up correctly. Some information was right, but the screen wasn’t formatted. I watched as the screen was coming up and saw the .ru address.
The hacker got into the Photo Album, Guestbook, and the Help Desk function. It also affected some management scripts (cPanel and Fantastico) as well.
The hacker put a line of code in all of the above programs directing them to go to the following location.
Obviously you do not want to go there because it gives the hacker access to your PC and a possible virus.
Have I told you how much I hate hackers