Results 1 to 13 of 13

Thread: HTML Site keeps getting hacked

  1. #1
    Join Date
    Oct 2013

    Angry HTML Site keeps getting hacked

    I have an older html site that my client likes and gets decent ranking for his keyterms. Daily the code to the site gets hacked and lines of code to links selling things like purses and nike sneakers appear on different pages. If I look at the code page source online I see the hacked code. If I go to the page remotely and look at the code, I don't see it at all. If I upload the old page again, all is good till the next day.

    I've changed the password to the admin on the hosting, I've changed the password to the ftp login and installed Avast and SuperSpyware and still daily, I get hacked. What is going on?

    Thanks in advance. I appreciate all the help I've gotten from these forums and hope I can help someone too someday.

  2. #2
    Join Date
    Jul 2008
    Do you think your host may by injecting the adds?

  3. #3
    Join Date
    Sep 2013
    First, clean up the malware mess and then do one of the following:
    (a)Prevention tips include keeping your site updated with the latest software and patches, creating an account with Google Webmaster Tools to see what's being indexed, keeping tabs on your log files to make sure nothing fishy's going on, etc.
    (b) If your site was hacked for spammy purpose, please visit your reconsideration request page to request reconsideration of your site;
    (c) If your site was serving malware to users, please submit a malware review request on the 'Overview' page of Webmaster Tools.

    Hope this helps.
    strad solutionswww.stradsolutions.com

  4. #4
    Join Date
    Mar 2012
    Presumably when you changed the passwords you made them more secure? I.e. Using upper and lower case, numbers and symbols (if supported), and 10+characters (if supported)? If so, your next course of action should be to contact the web host's support. As is mentioned above, if the site is hosted for free, they may be injecting the adverts. If not, their security may be compromised. Either way, you need their help!

  5. #5
    Join Date
    Oct 2013
    Thanks everyone. I have the site set as my homepage so I can monitor it everyday. I was using site malware detection to scan the site to see if it had been attacked again. The crazy thing is, today, I looked at the source of the home page and saw that it had been hacked again. When I ran the software, it detected nothing. It was detecting before now the scans say the site is fine.

    The site is not hosted for free but I think it's on old servers. You have to login into a special area if you signed up before 2009. The hosting company says my computer may be hacked. Their control panel is poor and it doesn't have an area where I can see the files on the server with it. It doesn't have many options at all.

    If they are getting in through my computer, what I can I do to stop that?

    Thanks again, this is so frustrating and violating.

  6. #6
    Join Date
    Aug 2004
    If you're on a shared host, you could possibly be getting hit through someone else's account there (intentionally or via their account being hacked). You might be able to avoid some/most of that by making sure all directories and files have read-only permissions except by your personal login account there, so that they cannot change your files without logging in as you.

    It would also be a good idea to contact your web hosting company so they know what to look for.
    "Well done....Consciousness to sarcasm in five seconds!" ~ Terry Pratchett, Night Watch

    How to Ask Questions the Smart Way (not affiliated with this site, but well worth reading)

    My Blog
    cwrBlog: simple, no-database PHP blogging framework

  7. #7
    Join Date
    Oct 2013
    I went in to Dreamweaver and tried to change the permissions on the remote end. It wouldn't let me do it. I then opened up the files with Filezilla and did it there. It let me change the permissions to 744 (ughhhh, they were set to 777) but when I went back to check the permission after I changed it, they were back to 777.

    Directory listing successful
    Status: Set permissions of '/conepene.html' to '744'
    Command: CWD /
    Response: 250 Directory changed to /
    Command: PWD
    Response: 257 "/" is current directory.
    Command: SITE CHMOD 744 conepene.html
    Response: 501 SITE option not supported.

    WTF, "site option not supported" . Does this mean the hosting won't allow that? Is there a way to set permission for the whole folder? I have to go and don't have time to sit on the call with hosting right now but I'll let you know what they say. Thanks again. Little by little I'm am being so enlightened. Your help and encouragement means a lot right now.

  8. #8
    Join Date
    Aug 2004
    It may be that your FTP user is not the same as your admin user as far as the server is concerned, so you might have to change the permissions via your web site's admin tool.

    PS: If your site allows file uploads or creates/writes to files, you may have to give broader write access on specific directories/files involved, as such writes likely get done by the web server user.
    "Well done....Consciousness to sarcasm in five seconds!" ~ Terry Pratchett, Night Watch

    How to Ask Questions the Smart Way (not affiliated with this site, but well worth reading)

    My Blog
    cwrBlog: simple, no-database PHP blogging framework

  9. #9
    Join Date
    Oct 2013
    Thanks, i'll try that.

  10. #10
    Join Date
    Sep 2006
    new york
    Recently one of my sites hosted by DotEasy.com (http://www.auntnini.com) was hacked. It is a site hosted FREE (something DotEasy no longer offers). I contacted the host and they advised me that they had to unload my files to clean up the malware on the server. I then uploaded the files.

  11. #11
    Join Date
    Oct 2013
    I scraped my computer because I was afraid it had been hacked and the portal by which they were doing accessing the site. Even tho I haven't download any back up info back on to my computer, the site got hacked again. That rules out my computer. I just ran a scan it notices that it is Running on: Microsoft-IIS/5.0 . That seems like a really old update. Could this be the reason it's so easily hacked? Tried to change admin password in control panel and it wouldn't allow it. Tried to chat with them and it was down for some reason. InfoQuest is the hosting company. I'm curious to see if I moved it over to a different hosting if I'd ever have the problem again. Client has been with this company way before I was involved with his site. The only issue I have with moving him over is that his email is the Exchange one. It was an issue to get that working with this hosting company. However, I suspect moving him over won't be as painful with a new company. I often use 1&1 or Godaddy. Cheap, I know but I haven't had any problems. Any suggestions for a secure host?

  12. #12
    Join Date
    Mar 2012
    I've not had any problems with Heart Internet.

  13. #13
    Join Date
    Oct 2013

    HTML keeps getting HACKED

    To themills4
    I have read your query and the replies you have had so far thoroughly.
    My personal advice to you and those with similar issues is to update anything that is old to someting that is current, and that means your browser as well.
    Your old ISP obviously has not updated it's system and hence you are experiencing a regular hacking fiasco.
    I have been using a FREE webhosting site for years with no adds at all or any other funny business.
    But this webhosting site to be used for FREE is to be used as non-commercial, meaning that you are not making any money from it.
    Having said that, I would recommend the site to you and all others without any hesitation.
    Here it is ..... http://www.freehostia.com/
    Apart from an antivirus program that I use from microsoft which is totally free and works very well, I also use Ad-Aware which is
    an anti malware, anti spyware and antivirus program all wrapped up in one, which takes care of just abou everything including the Registry,
    AniRootKit, and all the other crap that slows your PC down.
    Touch wood, so far in all the years I have not been hacked.
    Hope I have been of some help to you and that your website is working OK now.


Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
HTML5 Development Center



X vBulletin 4.2.2 Debug Information

  • Page Generation 0.11966 seconds
  • Memory Usage 2,982KB
  • Queries Executed 15 (?)
More Information
Template Usage (32):
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_global_above_footer
  • (1)ad_global_below_navbar
  • (1)ad_global_header1
  • (1)ad_global_header2
  • (1)ad_navbar_below
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)ad_thread_first_post_content
  • (1)ad_thread_last_post_content
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)headinclude_bottom
  • (13)memberaction_dropdown
  • (1)navbar
  • (4)navbar_link
  • (1)navbar_moderation
  • (1)navbar_noticebit
  • (1)navbar_tabs
  • (2)option
  • (13)postbit
  • (13)postbit_onlinestatus
  • (13)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available (6):
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files (26):
  • ./showthread.php
  • ./global.php
  • ./includes/class_bootstrap.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/functions_navigation.php
  • ./includes/class_friendly_url.php
  • ./includes/class_hook.php
  • ./includes/class_bootstrap_framework.php
  • ./vb/vb.php
  • ./vb/phrase.php
  • ./includes/functions_facebook.php
  • ./includes/functions_calendar.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_notice.php
  • ./packages/vbattach/attach.php
  • ./vb/types.php
  • ./vb/cache.php
  • ./vb/cache/db.php
  • ./vb/cache/observer/db.php
  • ./vb/cache/observer.php 

Hooks Called (72):
  • init_startup
  • friendlyurl_resolve_class
  • init_startup_session_setup_start
  • database_pre_fetch_array
  • database_post_fetch_array
  • init_startup_session_setup_complete
  • global_bootstrap_init_start
  • global_bootstrap_init_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • load_show_variables
  • load_forum_show_variables
  • global_state_check
  • global_bootstrap_complete
  • global_start
  • style_fetch
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • strip_bbcode
  • friendlyurl_clean_fragment
  • friendlyurl_geturl
  • forumjump
  • cache_templates
  • cache_templates_process
  • template_register_var
  • template_render_output
  • fetch_template_start
  • fetch_template_complete
  • parse_templates
  • fetch_musername
  • notices_check_start
  • notices_noticebit
  • process_templates_complete
  • friendlyurl_redirect_canonical
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • memberaction_dropdown
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • build_navigation_data
  • build_navigation_array
  • check_navigation_permission
  • process_navigation_links_start
  • process_navigation_links_complete
  • set_navigation_menu_element
  • build_navigation_menudata
  • build_navigation_listdata
  • build_navigation_list
  • set_navigation_tab_main
  • set_navigation_tab_fallback
  • navigation_tab_complete
  • fb_like_button
  • showthread_complete
  • page_templates