We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Course Of The Month
5 days, 2 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
my website has been hacked
Posted on 2011-09-05
Hi
My website www.beaufieldmews.com has been hacked and now most of the links in the menu are gone there are only 2 left. Also an email was sent from the infor address to all the subscribers it wasnt sent by us it was the hacker the email said
Dear Natasha McDonald,
Ubuntux.
To unsubscribe click here
http://www.beaufieldmews.com/index.php?confirmation&action=unsubscribe&id=UTFVZwEz
Sincerely,
The Beaufield Mews
can someone help me get rid of this.
Thanks
My website www.beaufieldmews.com has been hacked and now most of the links in the menu are gone there are only 2 left. Also an email was sent from the infor address to all the subscribers it wasnt sent by us it was the hacker the email said
Dear Natasha McDonald,
Ubuntux.
To unsubscribe click here
http://www.beaufieldmews.com/index.php?confirmation&action=unsubscribe&id=UTFVZwEz
Sincerely,
The Beaufield Mews
can someone help me get rid of this.
Thanks
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3
2
- +6
13 Comments
Do you have access to your server or the hosting account? If so, I suggest you change your access credentials immediately and restore the web site from a backup.
If you don't have access to the server you may try to get the access back by contacting your service provider. You will need to prove that you are the legitimate owner of the web site.
If you don't have access to the server you may try to get the access back by contacting your service provider. You will need to prove that you are the legitimate owner of the web site.
Also after the actions above, check your website for security leaks else the hacker can strike again.
Who is hosting the account?
When was the last valid change you made to the site?
Can you request that the hosting company restore the site from a backup?
When was the last valid change you made to the site?
Can you request that the hosting company restore the site from a backup?
yodercm: I'll bet it's more the users weak passwords, not using SFTP and SSH for changes. Get your passwords at grc.com/password
there is no database usage from your site, its not by sql injection, i doubt it was password weak or leak by backdoor from your pc.
Active 5 days ago
Google reconnaissance shows http://www.beaufieldmews.c
Hi Thanks for all you comments i have reloaded the files from my laptop but it hasnt got rid of the problem i dont know how to get rid of this can anyone help me?
What are you trying to get rid of? If the site is backed by a database (which most modern sites are), then it could be that something has been changed in the database itself: reloading old PHP/config files won't do much; instead you'll have to reload an old copy of the database itself.
Once something has been sent via email, it is a safe bet that they'll be archived forever by something. Also, once the subscriber list has been taken, there's not much that can be done: if the "hacker" is smart, they'll save it somewhere instead of relying on continued access to the site/database to retrieve it.
Once something has been sent via email, it is a safe bet that they'll be archived forever by something. Also, once the subscriber list has been taken, there's not much that can be done: if the "hacker" is smart, they'll save it somewhere instead of relying on continued access to the site/database to retrieve it.
Are you SURE you got your copy uploaded? I have a feeling that the website index.php may have had it's rights changed. I'd first try to erase the website version, then upload yours.
The html source only had the two links. This could be because of something in your php code. If it doesn't get fixed, post you php code here for review.
The html source only had the two links. This could be because of something in your php code. If it doesn't get fixed, post you php code here for review.
Please check and make sure the backup you restored from (on on your laptop) was taken before the hacker attached the web site.
If you have any older backups which you are know for sure that is from before the hack.
Maybe try to bring up the site on another server or on your laptop itself to make sure.
If you have any older backups which you are know for sure that is from before the hack.
Maybe try to bring up the site on another server or on your laptop itself to make sure.
Featured Post
Synthetic Transaction Monitoring that you need for the day to day, which ensures your business website keeps running optimally, and that there is no downtime to impact your customer experience.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
This article discusses four methods for overlaying images in a container on a web page
Since pre-biblical times, humans have sought ways to keep secrets, and share the secrets selectively. This article explores the ways PHP can be used to hide and encrypt information.
Learn how to match and substitute tagged data using PHP regular expressions. Demonstrated on Windows 7, but also applies to other operating systems. Demonstrated technique applies to PHP (all versions) and Firefox, but very similar techniques will w…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
- Anti-Virus Apps
- Ransomware
- The Email Laundry
- Email Servers
- Cybersecurity
- Microsoft Access, *malware
Suggested Courses
Course of the Month5 days, 2 hours left to enroll
688 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.