Hi all can anyone tell me how my index.php of my site could have being hijacked. I can't believe that my hosting company was clueless when i told them about it. Thanks for all replies.
if it's chmodded to 0777, if your script has some sort of thing like index.php?2085ah2th2o2thnl or whatever after it and there is also anonymous uploading which can replace it. There are about a bunch of possiblities, so yeah they can also use a c99 shell script too and hide it in your /images folder too if you had one. Look for some strange files in your folders and see if you can get an encryped file with like a bunch of numbers.php if you do then that's another way. So yeah its not exactly pin pointed because there are so many ways, but those two ways I mentioned are what some do.
I had a site hacked recently and a store that had nothing to do with my site was dropped in. Looks like they somehow managed to get hold of my site's login info. The directory's been deleted, I've strengthened security and cleaned up all the directories. So far there's been no re-ocurrence. But I'm a log more vigilant now... lesson learnt.
Ok i need help this is happening again. 4th time with host gator account and they keeps saying the problem is from my end
Check your computer for viruses, then modify all your passwords from email to hostgator's, then make sure you don't have any 777 permissions set. I don't personally recommend going beyond 755. Hope you solve your problems.