Dear all, I have a website and I run it for 7 years with no problem. But all of sudden, few days ago Ipower (my hosting company) suspended my website with the reason that my site causes overload server. I had to move my site to Siteground and after few hours they suspended my site as well. But better than Ipower, Siteground informed me the error. I cannot imagine what happens with my site and please anybody can help out. The following is the email from Siteground: +++++++ We were monitoring the server that hosts your account anvietson.org and while reviewing the logs noticed that your website was consuming a very high percentage of the server resources, thus endangered the overall performance of all the sites on the server. To keep the server at a normal CPU load, we had to limit the shared server resources your account may use. This may result in occasional "Resource temporary unavailable" error messages shown on your website. We have conducted a detailed investigation and saw that the reason for the high resource consumption is the number internal links on your index page, which cause the page to load slowly and eventually hogs the server. The slow loading of the index page takes up lots of server CPU time and other processes have to pile up in a queue waiting to get executed. Thus, the server eventually gets overloaded with too many processes in queue. Currently there are 424 internal and external links on your index page and this results in loading times of approximately 6.54 seconds. For comparison, normally, a website loads in less than 1 second. By internal links we mean links that point back to the site...... ++++ Please help me out. Many thanks NAK
Hi, I don't know where the links come and how to remove them. I am afraid that someone hack my site but don't know how to check and fix Please advise NAK
I am assuming that when you say you can't check why there are 424 internal links on your index page, the reason you can't check is because the site is down? And I am assuming, since you think you were hacked, that 424 internal links is far, far more than what you think should be on the main page? Ok, I will base my advice on these two assumptions. First thing, create a static index page that says, we're working on it, check back soon and put it in the site's folder. 404's are not good. I am assuming you can create a new directory folder at your host. Create a new clean install of Joomla in a new directory folder with a new database. Add all the modules and components you use previously. Don't worry about content at this point. Look at the two databases, old and new, side by side. Is there something that seems wrong, something that jumps out at you as something you have never heard of? Each component and plugin creates new db fields so this gives you a good idea if you database has been compromised. Then I would carefully import content from the old database to the new with backups between each upload and checking the site to see if something goes terribly wrong. Once you have transferred the content over and confirmed that you don't have 424 links on your index page, I would go through the Joomla security checklist at Joomla.org and make sure you have a very secure Joomla install. Look for a speed check site and confirm you have a reasonable load time on the new install. Then repoint your domain to the new folder, then recheck your load time once the new site is propagated. This whole process take about one long, stress filled day. Then set up a backup plan so that you have a clean backup of your working site so that this doesn't happen again.
Hi 5minutejoomla Actually, I created a new page in the menu with only one article and set that is the default menu item. After that the internal links are down to 70. I cannot check but the administrator of hosting at Siteground talked to me that. For now, my site is back with an administrator of Siteground keeping an eye on it during 24 hours next. Then I think my site was hacked since few days ago, there is a member that was logged in whole day long. Now, I am afraid of that he installed some backdoor in my host but don't know how to check. As you said I needed to compare two databases but it's hard to imagine how to do for me. Even I downloaded all folders of my site to my PC and used Malwarebyte to scan but couldn't find out any trojan or virus. Then as you said maybe the backdoor in the database. I will try my best to see if I could (I am not a programmer but a financial analyst ). As I checked the index.php file in used template then I recognized that it is not the same as the original index.php but there are many blank lines were included. For example: In the original index.php, the code line are "As I checked the index.php file in used template then I recognized that it is not the same as the original index.php but there are many blank lines were included." and in the index.php in server, the code look like: "As I checked the index.php file in used template then I recognized that it is not the same as the original index.php but there are many blank lines were included." It means there are blank lines between the code lines. I just uploaded the original index.php but still fear of any hacks again with the backdoor. I will try to do as you said but please advise if you can see any more concern Many thanks for your kind help NAK