OK. You asked about my "Control Panel". My guess is that this translates to my "Fetch" FTP client. It seems normal. I checked my server using Fetch, and I found a new file had been added - http://www.vaughns-1-pagers.com/index.html I deleted this immediately. I always use - http://www.vaughns-1-pagers.com/ My ACTUAL index page has always been - http://www.vaughns-1-pagers.com/index.htm (not html) If I type in - http://www.vaughns-1-pagers.com/index.htm, the page works fine. But if I just type in - http://www.vaughns-1-pagers.com/ I get the "hacked version". Next step?
amanamission - YES! Thank you! A refresh now fixes the index page problem. Does this mean I am OK for a little while? Or, who knows? Will it require a new attack, to happen again? On Monday morning, I will walk in the door of my ISP, and there will be some discussion.
You may not be savvy enough, but the next step is to go over your raw logs and see what IP uploaded that index page. Ban the IP in .htaccess, that will give a little security. Of course, hackers can change IP easily. As you see, so far it's not a serious problem, hopefully they leave you alone now.
Yes, everything looks OK for right now. But, how long until the next time? Thank you everyone for your help. Who was it that said, "The price of security is eternal vigilance"? (I just Googled the phrase, with quotes.) My new mission is clear. I will be studying web security issues far more, starting today.
You guys were so helpful. Thanks a ton. I would like to express special thanks to dazzlindonna at www.seo-scoop.com, who helped me drill down to the actual nitty-gritty, with special knowledge. Donna never fails to amaze me with her breadth, and depth of knowledge. What she doesn't know, she will find out. That's why I visit Donna's site very frequently. She is always coming up with something new to think about. Or something that you haven't thought about for a long time, that you darn well should have! The best webmaster "tickler site" on the internet. Is this a Donna commercial? You bet. I feel very lucky to have had Donna's personal help today, with this problem. The details are best left undiscussed at this point, but the primary issue seems to be Apache software, which has not been updated. Let this be the lesson of this thread.
You should be lucky my friend. My website was being hacked all the time, one time they even erased all my 25 website and it took me 48 to get everything back to normal. The first thing you should do is change all your passwords. it may soud stupid to you but they ay have your password(s) There are a lot of scripts you could use to protect your website from being hacked, hacking is not as hard as we may all think. Stopping it is. If you need any help please let me know. Good luck
Hacked Again! - Different Site - Different Hacker - Different Method - Same Vulnerability Here is an update - http://forums.digitalpoint.com/showthread.php?t=834034 I hope I am in the correct forum, this time.