19 {{ upvoteCount | shortNum }}
19 {{ upvoteCount | shortNum }}

my website has been hacked

by Fahad_H
16 replies
Hi

I just received an email from Google that my website has a phishing page.

the page is located at /~accounts/forms/windhoek_tours/c913a87a522641bbd15b8f5056dbbe7b/

and I have attached a shot of the page.

how did this happened? and what should I do now?
#hacked #website
  • Profile picture of the author shmerns
    Same thing happened to me. You need to contact your hosting provider, they will look into it for you. In my case, someone hacked my account and put a harmful script on all my websites, it's a pain in ass, good luck with it.
    Signature
    This May Just Be The Last Tool You EVER Use For Leads…
    www.LoriPetrosino.com
    {{ DiscussionBoard.errors[6049276].message }}
  • Profile picture of the author Fernando Veloso
    Contact Hosting NOW. Don't log in to your Cpanel - don't log in to your site. Check your computer for viruses/spyware.
    Signature
    People make good money selling to the rich. But the rich got rich selling to the masses.
    {{ DiscussionBoard.errors[6049281].message }}
  • Profile picture of the author Kingfish85
    ^ What they said. If they tell you there's nothing they can do, it's time to move.
    Signature

    |~| VeeroTech Hosting - sales @ veerotech.net
    |~| High Performance CloudLinux & LiteSpeed Powered Web Hosting
    |~| cPanel & WHM - Softaculous - Website Builder - R1Soft - SpamExperts
    |~| Visit us @veerotech Facebook - Twitter - LinkedIn

    {{ DiscussionBoard.errors[6049293].message }}
    • Profile picture of the author Stuart Macfarlane
      Originally Posted by Kingfish85 View Post

      ^ What they said. If they tell you there's nothing they can do, it's time to move.
      Depends on the support level... While some hosting companies will try to assist others will outright say no because finding the entry point of the exploit is time consuming as you will already know.

      Simple removing the file, Updating all your passwords and Software should be enough to protect you "assuming they have not gained root server access".
      {{ DiscussionBoard.errors[6049746].message }}
      • Profile picture of the author Kingfish85
        Originally Posted by Stuart Macfarlane View Post

        Depends on the support level... While some hosting companies will try to assist others will outright say no because finding the entry point of the exploit is time consuming as you will already know.

        Simple removing the file, Updating all your passwords and Software should be enough to protect you "assuming they have not gained root server access".
        You're correct. We do this a lot, but you can't expect all hosting companies out there to be the same way.

        We have had our share of spending countless hours tracking the exploit down, but in the end it shows our customers what type of web host we really are.
        Signature

        |~| VeeroTech Hosting - sales @ veerotech.net
        |~| High Performance CloudLinux & LiteSpeed Powered Web Hosting
        |~| cPanel & WHM - Softaculous - Website Builder - R1Soft - SpamExperts
        |~| Visit us @veerotech Facebook - Twitter - LinkedIn

        {{ DiscussionBoard.errors[6049764].message }}
        • Profile picture of the author Stuart Macfarlane
          Originally Posted by Kingfish85 View Post

          You're correct. We do this a lot, but you can't expect all hosting companies out there to be the same way.

          We have had our share of spending countless hours tracking the exploit down, but in the end it shows our customers what type of web host we really are.
          Qudos to you and your company Sir
          {{ DiscussionBoard.errors[6049778].message }}
  • Profile picture of the author Fernando Veloso
    If that was a reseller account, one random Cpanel can get all the others in trouble?
    Signature
    People make good money selling to the rich. But the rich got rich selling to the masses.
    {{ DiscussionBoard.errors[6049761].message }}
    • Profile picture of the author Stuart Macfarlane
      Originally Posted by Fernando Veloso View Post

      If that was a reseller account, one random Cpanel can get all the others in trouble?
      Not if the web host has configured cPanel correctly and provides secure jailed shell sessions only.
      {{ DiscussionBoard.errors[6049771].message }}
      • Profile picture of the author Fernando Veloso
        Originally Posted by Stuart Macfarlane View Post

        Not if the web host has configured cPanel correctly and provides secure jailed shell sessions only.
        Thanks. This has been bugging me for some time, how to correctly create customer accounts in CPanel, in a way their sites cannot screw other sites in same reseller account.
        Signature
        People make good money selling to the rich. But the rich got rich selling to the masses.
        {{ DiscussionBoard.errors[6049816].message }}
  • Profile picture of the author Fahad_H
    the hosting company solved the issue and told me it was a server side issue.

    what does this mean?
    Signature
    FahadHizam.com - My Personal Blog
    Follow Me @FahadHizam
    {{ DiscussionBoard.errors[6049806].message }}
    • Profile picture of the author Stuart Macfarlane
      Originally Posted by Fahad_H View Post

      the hosting company solved the issue and told me it was a server side issue.

      what does this mean?
      That is your hosting companies way of saying "it was a fault on their side and not with your account".

      In other words without more information you have to assume your host got hacked...

      Any decent host "Cough VopaHost" would I'm sure give you a more detailed report on their findings and the resolution put in place to fix them
      {{ DiscussionBoard.errors[6049855].message }}
      • Profile picture of the author Kingfish85
        Originally Posted by Stuart Macfarlane View Post

        That is your hosting companies way of saying "it was a fault on their side and not with your account".

        In other words without more information you have to assume your host got hacked...

        Any decent host "Cough VopaHost" would I'm sure give you a more detailed report on their findings and the resolution put in place to fix them
        Thanks for the recommendation there. It's appreciated.


        I'm willing to bet the OP is using one of the following:

        JustHost
        BlueHost
        HostMonster
        IPage /IX
        DreamHost

        I could be completely wrong, but the majority of hacked sites we take in come from these hosts. Even if the host has a problem, sometimes it's beyond their control, and it does happen. It happens more with companies that allow shady activities to go on in their environments. We routinely check each individual site to be sure it complies.

        Or one of the other EIG companies.
        Signature

        |~| VeeroTech Hosting - sales @ veerotech.net
        |~| High Performance CloudLinux & LiteSpeed Powered Web Hosting
        |~| cPanel & WHM - Softaculous - Website Builder - R1Soft - SpamExperts
        |~| Visit us @veerotech Facebook - Twitter - LinkedIn

        {{ DiscussionBoard.errors[6049903].message }}
        • Profile picture of the author Fahad_H
          thank you all

          Originally Posted by Kingfish85 View Post

          Thanks for the recommendation there. It's appreciated.


          I'm willing to bet the OP is using one of the following:

          JustHost
          BlueHost
          HostMonster
          IPage /IX
          DreamHost

          I could be completely wrong, but the majority of hacked sites we take in come from these hosts. Even if the host has a problem, sometimes it's beyond their control, and it does happen. It happens more with companies that allow shady activities to go on in their environments. We routinely check each individual site to be sure it complies.

          Or one of the other EIG companies.
          actually they are non of those. I would say the company is above average, they have great customer support, and they are very strict. I have been doing business with them for ten years.

          I won't mention them in this thread to avoid associating them with negative posts.
          Signature
          FahadHizam.com - My Personal Blog
          Follow Me @FahadHizam
          {{ DiscussionBoard.errors[6054206].message }}
          • Profile picture of the author Kingfish85
            Originally Posted by Fahad_H View Post

            thank you all



            actually they are non of those. I would say the company is above average, they have great customer support, and they are very strict. I have been doing business with them for ten years.

            I won't mention them in this thread to avoid associating them with negative posts.
            Great! Glad you got it sorted out. The majority of hacked websites that we deal with come from the above. Not trying to badmouth them, but it's well known.
            Signature

            |~| VeeroTech Hosting - sales @ veerotech.net
            |~| High Performance CloudLinux & LiteSpeed Powered Web Hosting
            |~| cPanel & WHM - Softaculous - Website Builder - R1Soft - SpamExperts
            |~| Visit us @veerotech Facebook - Twitter - LinkedIn

            {{ DiscussionBoard.errors[6054221].message }}
  • Profile picture of the author sya
    contact host provider or get fast resolve with sign in via account hosting manager and reset cpanel your hosting...
    {{ DiscussionBoard.errors[6051600].message }}

Trending Topics