WebSite X5Help Center

 
Nigel W.
Nigel W.
User

My site appears to be being hacked.  en

Author: Nigel W.
Visited 1290, Followers 1, Shared 0  

Hi Guys...

I was aware of strange URLS being shown in my php stats that appeared as though a Google Bot is showing false stats about pages that do not exist on my site.

I took the problem to the Google Forums and they came back with a very comprehensive analysis as shown below.

Is this a fault with the software or with GoDaddy which hosts my site?

Whichever...what should I do?

I will be talking to my Host soon.

Thanks,

Nigel 

Posted on the
10 ANSWERS - 1 CORRECT
Anthony A.
Anthony A.
User

problem is inside your host. what are the permissions you have on pages and folders?

Sometimes that could be inside your personal computer as well. extract/pulish your website inside your hard drive, then open your page with wordpad or any html editor and see if the code is there or page is clean inside your computer.

if this post is the correct answer, please mark this answer as correct answer.

------------------------------------------------------------

Good Luck
http://www.usx5host.com (3 months free Web Host for x5 users, promo code: usx53m)
http://www.usx5.com (Templates and support for x5)
http://www.wdesigners.us

Read more
Posted on the from Anthony A.
Nigel W.
Nigel W.
User
Author

I'm going to chat with GoDaddy Sunday.

In the meantime, my folder permissions are: 705

HTML (index.html) is: 604

Thanks Anthony

Read more
Posted on the from Nigel W.
Nigel W.
Nigel W.
User
Author

I have just noticed a file, jennifer.php, at the root of my Incomedia files. I haven't a clue what that is.

Here it is for your comment

Read more
Posted on the from Nigel W.
Anthony A.
Anthony A.
User

just delete it (I have no clue what this is). did you publish your website inside your hard drive to see if that extra code is exist there? if its not there, remove everything from your host and upload a fresh copy of your website. and see if it happenes again.

if this post is the correct answer, please mark this answer as correct answer.

------------------------------------------------------------

Good Luck
http://www.usx5host.com (3 months free Web Host for x5 users, promo code: usx53m)
http://www.usx5.com (Templates and support for x5)
http://www.wdesigners.us

Read more
Posted on the from Anthony A.
Nigel W.
Nigel W.
User
Author

Hi Anthony...

Yes; I will do that but I'm just going to ring GoDaddy to see if they'll take it up.

Nigel

Read more
Posted on the from Nigel W.
Anthony A.
Anthony A.
User

well, they probably will ask you to do the same, thats is why you need to make sure everything is clear and clean in your end.

------------------------------------------------------------

Good Luck
http://www.usx5host.com (3 months free Web Host for x5 users, promo code: usx53m)
http://www.usx5.com (Templates and support for x5)
http://www.wdesigners.us

Read more
Posted on the from Anthony A.
Nigel W.
Nigel W.
User
Author

Hi Anthony...

Yes...my PC export seems clean.

GoDaddy say that most likely there is a weakness in the Incomedia code somewhere.

I am on a shared server so it follows that otherr sites would be hacked if it was a server issue.

They tried to sell me "SiteLock" which monitors the site but I don't see why I should pay for that.

I've sent a clean "index.html" up and changed my server password and deleted some strange root files that I don't recognize.

So...perhaps Incomedia might take this up.

Thanks,

Nigel

Read more
Posted on the from Nigel W.
Incomedia
Claudio D.
Incomedia

Hello Nigel,

The file you found is not created by the program and the program uploades only files created by itself.

The best solution in this case is to verify the computer is not infected, then delete all content online and make a new complete upload and also change the FTP password.

It is important to not have any custom html code in the project from wihhc you are not sure it is safe since external codes can bring to these issues if the source is not 100% known to be safe.

Many thanks!

Read more
Posted on the from Claudio D.
Nigel W.
Nigel W.
User
Author

Right...thanks Claudio.

Read more
Posted on the from Nigel W.