1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

Help! My site has been hacked!

Discussion in 'Security' started by jdubs, Feb 14, 2012.

  1. #1
    here is my site... top10bestwebhosts.com.au

    but it has been hacked! Any ideas on how I can this miserable situation??
     
    jdubs, Feb 14, 2012 IP
  2. DigitalCollector

    DigitalCollector Greenhorn

    Messages:
    27
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    13
    #2
    Contact your webhosting provider to get the most recent backups, then put that one up.
     
    DigitalCollector, Feb 14, 2012 IP
  3. webbedninja

    webbedninja Member

    Messages:
    41
    Likes Received:
    5
    Best Answers:
    0
    Trophy Points:
    25
    #3
    and make sure your security is better! ;)
     
    webbedninja, Feb 14, 2012 IP
  4. TopNotchAffiliate-Matthew

    TopNotchAffiliate-Matthew Peon

    Messages:
    11
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #4
    Security is very important. You can also set yourself up with a back up server so if you get hacked you can transfer your site to it while you fix your main site
     
  5. HostingLynx

    HostingLynx Active Member

    Messages:
    105
    Likes Received:
    1
    Best Answers:
    1
    Trophy Points:
    58
    #5
    Your website could have been hacked through a few different ways. Either you your self could have gotten hacked(keylogged, rat'ed etc,) and your password stolen, your website could be vulnerable to some form of web exploitation, or the server your websites hosted on is insecure.
     
    HostingLynx, Feb 15, 2012 IP
  6. BigTim3

    BigTim3 Guest

    Messages:
    267
    Likes Received:
    1
    Best Answers:
    2
    Trophy Points:
    0
    #6
    you may want to have your site checked for backdoors and stuff
     
    BigTim3, Feb 17, 2012 IP
  7. kingwinbond

    kingwinbond Greenhorn

    Messages:
    38
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    16
    #7
    Hello ,

    Your site seems to be restored now . Please take precaution to keep the FTP password as Strong as Possible also the permissions on the site should be read only permissions . Please get this settings done from your hosting provider to avoid the next hacking attempt :)
     
    kingwinbond, Feb 20, 2012 IP
  8. StormInternet

    StormInternet Peon

    Messages:
    46
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #8
    Your web site is on a shared server or on a dedicated one ?
    There are certain limitations on a shared server where as you can tighten security to a great level on a dedicated server.
    Due to some limitations on a shared server, you can secure your web site to a specific level where as there is no any such restrictions on a dedicated server.
    If you are on a shared server then make sure you change password of your FTP, CP, email etc. periodically and keep it secrete. Make sure you use a strong password which should be at least 10 characters long and contain combination of uppercase letters, lowercase letters, numbers, special characters like @ # $ % etc.

    Second and most important thing is permissions of your web root. Make sure you have not assigned write/modify permissions on web root otherwise anyone can upload/modify pages into your web site. You can change/reset permissions from Control panel as well as from FTP client like FileZila

    You can ask your hosting provider to confirm if their server is secure and they have tightened the security. If the server itself is compromised then there will no mean to secure your web site. Its important to make sure whole server is secured.
     
    StormInternet, Feb 26, 2012 IP
  9. Remajahost

    Remajahost Peon

    Messages:
    31
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #9
    Things like nii fairly common.
    And most problems occur is the strength of weak passwords that can be scanned.
    Your account may also be affected by Jumping so the actors can get into your database
     
    Remajahost, Feb 29, 2012 IP
  10. tiffanywilliams12i2

    tiffanywilliams12i2 Peon

    Messages:
    165
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #10
    lots of times backdoors can be left so work with your host to get it fixed.
     
    tiffanywilliams12i2, Apr 6, 2012 IP
  11. casand

    casand Peon

    Messages:
    269
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #11
    Get SSL certificates from Instant SSL and secure your website
     
    casand, Apr 22, 2012 IP
  12. langitnorman

    langitnorman Banned

    Messages:
    5
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    18
    #12
    Please contact your web administrator and improve your security policy. Very much thanks!
     
    langitnorman, Apr 23, 2012 IP
  13. nks

    nks Well-Known Member

    Messages:
    1,596
    Likes Received:
    39
    Best Answers:
    0
    Trophy Points:
    110
    #13
    Agree with some of the above fellow members. Contact your web administrator is the first thing. Secondly, bring your website offline so that you can work on the maintenance part. I hope you have made backups of it so restoring back the website to original state won't be that challenging. Thirdly, figure our where the security flaw is and patch it. Finally, restore the backups with the patched version.
     
    nks, Apr 23, 2012 IP
  14. PK-Host

    PK-Host Guest

    Messages:
    109
    Likes Received:
    3
    Best Answers:
    1
    Trophy Points:
    0
    #14
    Like any website no matter what it is, you should be holding backups of your accounts somewhere. If you have got a backup simply take the website offline and then restore the latest backup available. Depending on what has been hacked you may only have to do a partial restore e.g just files or mysql database etc. Once you have your website back ensure it is still offline or in maintenance mode as now you have to ensure your website is secure. Try to find out if your website was hacked via your website scripts or at a higher level e.g via your host's control panel.
     
    PK-Host, Apr 25, 2012 IP
  15. nabilabutt7

    nabilabutt7 Peon

    Messages:
    33
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #15
    nabilabutt7, May 3, 2012 IP
  16. LauD.

    LauD. Peon

    Messages:
    13
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #16
    contact webhosting provider is an solution :) ..

    "Fatal error: Cannot redeclare get_users() (previously declared in /hermes/bosweb/web151/b1519/ipg.jdubsice/top10bestwebhosts/wp-includes/user.php:632) in /hermes/bosweb/web151/b1519/ipg.jdubsice/top10bestwebhosts/wp-content/themes/top10bestwebsite/footer.php(1724) : eval()'d code on line 2397"

    It seem like an error in footer.php , try to replace this file with new one. (my opinion)
     
    LauD., May 8, 2012 IP
  17. kulik

    kulik Member

    Messages:
    162
    Likes Received:
    18
    Best Answers:
    1
    Trophy Points:
    45
    #17
    This doesn't seem legit at all at first glance and probably means the site is still vulnerable.
     
    kulik, May 8, 2012 IP
  18. seosubmitworld

    seosubmitworld Member

    Messages:
    129
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    33
    #18
    you contact to your webhosting provider to get you website backup and protect you security
     
    seosubmitworld, May 10, 2012 IP