Start changing all your passwords, number 1. And as I, thankfully, have never had that problem, I couldn’t advise what to do next, but there are lots of helpful folks here. Best of luck, hope it’s resolved quickly and painlessly for you. π
I cant speak to the hacking, but damn your site is nicely done. i REALLLLY am impressed.
search pitt3r_p4rk3r on google, the guys email addy is easily gotten — send an email off asking what he did, I, for one, would be interested
Thanks for the feedback. π
I changed all of my passwords. Hopefully that will work for now.
And thanks, whooami, for the kind words. π
Well, they’ve done it again. This time, the message is…
[ A1TS – r3ckd4ll ]
And, this time, they’ve deleted everything in the root directory. All that remains are the subdirectories, as well as the .htaccess file, and the index.php file.
Do you have the server access logs / error logs ?
What are your hosts doing about this exactly ? If nothing, move hosts.
Hi podz,
I do have the access and FTP logs. The FTP log is fairly straightforward, and indicates that I’m the only one that has been doing at FTP there, but the access log is really hard for me to decipher.
I called my host the other day. I was told that there are two possibilities: 1) either the host is being hacked, or the script (i.e., WP) is being hacked. Moreover, I was told that this was possibly due to my passwords being easy to guess.
I told the phone support person that my passwords are alphanumeric combinations, very hard to guess. But we all know that they read from a script anyway, and I knew at that point that my conversation with her would be useless.
Anyway, after being on hold for 30 minutes, and then being “accidentally” cut off from the support line, I was sent an e-mail instructing me to change my passwords to something more difficult.
This Google search may shed some light on the issue:
http://www.google.com/search?q=pitt3r_p4rk3r
kimchihead – I would dump 1and1. If all they are prepared to do is give you a stock answer to a serious issue, I’d move. There are better hosts out there.
macmanx: I conducted the same search, although I could not make heads or tails of the search results…
podz: Any recommendations, given that I’m on a tight budget? π
http://www.asmallorange.com is a great host, as is http://www.site5.com
You get what you pay for with hosting like any other product but both the above have excellent support and actually know what they are talking about – which is always a bonus π
As well, http://below10host.com…. and while you CAN pay more, this relatively inexpensive host has been the most helpful, responsive, and concerned one I’ve used in the last 8 years or so – and they ALWAYS respond within just a couple of hours, WITH the answers!
