sites hacked help !!!

Discussion in 'Site & Server Administration' started by harrisonford, Jun 7, 2009.

  1. #1
    ive been away for a month and now all my sites are down and seem to have been hacked or a virus. all index.php have an add code at the begining. i have no backup to restore to as ive been away for over a month.

    i guess i will have to delete everything unless someone has an answer,


    thanks
     
    harrisonford, Jun 7, 2009 IP
  2. Luxuria

    Luxuria Peon

    Messages:
    164
    Likes Received:
    2
    Best Answers:
    0
    Trophy Points:
    0
    #2
    How about you contact your hosting provider first to find out who the last person was that modified your account?
    Maybe he was stupid enough to use his real IP.

    Either way, if you don't have a backup it's back to the drawing board.

    Take care.
     
    Luxuria, Jun 7, 2009 IP
  3. harrisonford

    harrisonford Peon

    Messages:
    931
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    0
    #3
    well its not that bad as i need a better host than dreamhost anyway.. any good ideas for hosting
     
    harrisonford, Jun 7, 2009 IP
  4. Luxuria

    Luxuria Peon

    Messages:
    164
    Likes Received:
    2
    Best Answers:
    0
    Trophy Points:
    0
    #4
    Geekstorage is really great and they use LiteSpeed server software :)

    Btw you can get a 50% discount and 50% more space & bandwidth with this coupon: WHT50MORE
     
    Luxuria, Jun 7, 2009 IP
  5. Bohra

    Bohra Prominent Member

    Messages:
    12,573
    Likes Received:
    537
    Best Answers:
    0
    Trophy Points:
    310
    #5
    You can remove the codes added .. but this has to be done manually
     
    Bohra, Jun 7, 2009 IP
  6. kailash

    kailash Well-Known Member

    Messages:
    1,248
    Likes Received:
    42
    Best Answers:
    0
    Trophy Points:
    190
    #6
    Removing code or uploading web sites backup are not solutions. You will need to find the root cause of this otherwise your web sites pages may be injected again in future.

    Kailash
     
    kailash, Jun 8, 2009 IP
  7. SSANZ

    SSANZ Peon

    Messages:
    861
    Likes Received:
    10
    Best Answers:
    0
    Trophy Points:
    0
    #7
    When you don't know what your talking about, refrain from saying anything -

    This infection is not via cPanel or the control panel, its an injection due to insecure permissions or script(s). Finding the attackers IP will not do a SINGLE GOOD OF HELP? Why? Because any attacker can use a proxy or VPN to cover his tracks. Logical sense?

    Indeed, removing the malicious code will help. However you will need to patch the security hole, correct permissions and update script(s).

    There are so many " my website is hacked threads ", search around...
     
    SSANZ, Jun 8, 2009 IP