My account is suspended. I did submit a ticket, but I only get very short answers.
these answers from iFastNet does not help me:
RUNNING DOS SCRIPTS critivision.ga
and after some questions about my website:
DDOSboter scripts are not allowed here
In my code I do not use any DOS SCRIPTS. My site is a project to learn HTML, javascript
and PHP. And also how to display content in a nice way.
My website has been running over http:// for some time without any problems.
I also used Cloudflare for SSL and still no problems.
Only after I installed the free SSL, my website was displaying all wrong.
I was just correcting some calls to links to http:// when I got suspended.
Can you tell me which things I should do in order to get my account reactivated?
Have you checked to make sure there isn’t a way to inject scripts? Such as forms.
PHP injection could also be a cause especially if it ask for input.
Injection I think is not really possible. I don’t ask user input anywhere
I follow the suggestion of BayoDino and ask which of my files are supposed to be DdoSbooter.
But they should have done this by themselves already.
When your account is created, a “main domain” is automatically generated for it. These main domains are a subdomain of eight random characters, followed by an InfinityFree domain. An example main domain looks like “ss6y0hra.epizy.com”.
These main domains will never show your website and always redirect to suspendeddomain.org. These main domains are just internal identifiers, and the content shown on it does not reflect the status of your hosting account or the other domains on it. The main domain does point to the IP address of your account (which makes it useful if you want to use your own DNS servers), but never shows any website from your account.
Were you attempting to test your own server against DDOS attacks? Perhaps you may have unintentionally created one, via calling for data, scripts, etc.
Below, Cloudflare explains what is a DDOS booter
What is an IP stresser?
An IP stresser is a tool designed to test a network or server for robustness. The administrator may run a stress test in order to determine whether the existing resources (bandwidth, CPU, etc.) are sufficient to handle additional load.
Testing one’s own network or server is a legitimate use of a stresser. Running it against someone else’s network or server, resulting in denial-of-service to their legitimate users, is illegal in most countries.
What are booter services?
Booters, also known as booter services, are on-demand DDoS (Distributed-Denial-of-Service) attack services offered by enterprising criminals in order to bring down websites and networks. In other words, booters are the illegitimate use of IP stressers.
Illegal IP stressers often obscure the identity of the attacking server by use of proxy servers. The proxy reroutes the attacker’s connection while masking the IP address of the attacker.
Booters are slickly packaged as SaaS (Software-as-a-Service), often with email support and YouTube tutorials. Packages may offer a one-time service, multiple attacks within a defined period, or even “lifetime” access. A basic, one-month package can cost as little as $19.99. Payment options may include credit cards, Skrill, PayPal or Bitcoin (though PayPal will cancel accounts if malicious intent can be proved).
How are IP booters different from botnets?
A botnet is a network of computers whose owners are unaware that their computers have been infected with malware and are being used in Internet attacks. Booters are DDoS-for-hire services.
Booters traditionally used botnets to launch attacks, but as they get more sophisticated, they are boasting of more powerful servers to, as some booter services put it, “help you launch your attack”.
I used to put an eval() in one of my files for testing before and my site got suspended.
Similar thing happened to them, So i can guess they’ve put something illegal in their file.
I asked the question which of my files where causing DdoSbooter. I got this answer:
The content in /htdocs has content related to ddosboter.
This is not a serious answer. All my files are there. So I can’t take them serious anymore.
Ask them for a snippet of the code they say is the DDOS script. I did try accessing your site, instead of the site redirecting to suspendeddomain.org, it directs to a different part of what is supposed to be your website URL, this is the URL: http://critivision.ga/?z