1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

My Site HACKED by BlackBay

Discussion in 'Black Hat SEO' started by MyDymo, Mar 22, 2010.

  1. MyDymo

    MyDymo Junior Member

    Joined:
    Sep 15, 2009
    Messages:
    194
    Likes Received:
    56
    Occupation:
    Working
    Location:
    XYZ
    ARRGH!

    I went to check on my site that I have been using to apply to White hat Methods

    And FOUND IT HACKED !!

    MySite
    Code:
    www.MoneyPurpose.info
    WARNING: It Redirects you to PORN.

    What Can I DO? Must be a wordpress Exploit.

    I never backed up my site on my pc. Im So MAD! CPA Networks have been re-directed to this filth!. I wasnt even promoting it HOW AND WHY ME!?

    HELLP!!
     
  2. foxcore

    foxcore Newbie

    Joined:
    Jan 14, 2010
    Messages:
    11
    Likes Received:
    0
    Occupation:
    online Marketing Consultant
    Location:
    Scotland
    Lol @ u
     
  3. seo-pro

    seo-pro Newbie

    Joined:
    Mar 3, 2010
    Messages:
    46
    Likes Received:
    88
    Simply delete the worepress folder and reupload.

    Change all your site related passwords (FTP and your WP pass) and ask your host about security issues.

    Are these sites yours?

    Code:
    windows7free.com/
    reehockeytickets.info/
    itunesmagic.com/
    moneypurpose.info/
    
     
    Last edited: Mar 22, 2010
  4. MoreMoneyMoreProblem

    MoreMoneyMoreProblem BANNED BANNED

    Joined:
    Mar 30, 2009
    Messages:
    628
    Likes Received:
    325
    I would definitely check your coding... since your site appears and then redirects it has to be in the code that displays on every page or just front page so (index / header / footer)
     
  5. ppcicon

    ppcicon Newbie

    Joined:
    Feb 8, 2010
    Messages:
    13
    Likes Received:
    2
    Man, if you never backed up your site then you just learnt an important lesson. Make sure you never make this mistake again, there are plenty of automated plugins that will do it for you.
     
  6. gregstereo

    gregstereo Elite Member

    Joined:
    Oct 5, 2009
    Messages:
    1,833
    Likes Received:
    1,027
    Occupation:
    I'm known to locate certain things from time to ti
    Location:
    Moose Factory, ON
    I don't see any porn. Oh well off to fap somewhere else.

    But seriously, yeah take the advice above. And also let's all learn from this...backup early and often.
     
  7. dirtbag

    dirtbag Senior Member

    Joined:
    Jul 24, 2008
    Messages:
    990
    Likes Received:
    525
    they do have a massive subforum on phishing. you probably got your passwords phished, lol. lesson learned...
     
  8. MyDymo

    MyDymo Junior Member

    Joined:
    Sep 15, 2009
    Messages:
    194
    Likes Received:
    56
    Occupation:
    Working
    Location:
    XYZ
    Um yes how did you know i own all those domains lol? and Il check the passwords now

    EDIT:

    The Cpanel pass is fine, must of been a wordpress exploit/ injection. Host has changed my pass to something good :p

    Now i need to think what to do with this domain :( Any ideas?
     
  9. magpie2419

    magpie2419 Regular Member

    Joined:
    Mar 27, 2009
    Messages:
    313
    Likes Received:
    343
    Occupation:
    Millionaire
    Location:
    Newcastle UK Or Morocco
    have a look in the WP folders and see if there is a file called index.html NOT index.php if you find the html file delete it check each folder and delete them all. Then just upload the latest WP version, I bet you were running an out of date version of WP. These so called hacks/exploits are easily fixed. If you havnt deleted your DB and content folder.
     
  10. lobo13

    lobo13 Regular Member

    Joined:
    Nov 3, 2009
    Messages:
    297
    Likes Received:
    75
    Location:
    └A
    after you clean all that up make sure they didnt left a backdoor or else they are gonna take control all over again ...
     
  11. MyDymo

    MyDymo Junior Member

    Joined:
    Sep 15, 2009
    Messages:
    194
    Likes Received:
    56
    Occupation:
    Working
    Location:
    XYZ
    Yes they tried to leave some exploited html.access and hmtl/php files! i deleted them all! wooo! im back they can suck on my big ... yeah.. um.. k now who wants to buy domains or offer ideas on what to do with them, cause now im totally stumped lol
     
  12. seo-pro

    seo-pro Newbie

    Joined:
    Mar 3, 2010
    Messages:
    46
    Likes Received:
    88
    I knew the domains because I looked at the source code of your site with 'view source' in FF. Wanted to see any obvious sign you had been hacked. I was thinking it might have been a simple for of redirect.
     
  13. Alex Brooks

    Alex Brooks BANNED BANNED

    Joined:
    Mar 17, 2009
    Messages:
    1,199
    Likes Received:
    297
    Most hosts offer free backups (hostgator i know do), I highly doubt it was a wordpress exploit, unless your running a old version of wordpress, I also doubt it was a SQL injection, you've more then likely been keylogged or something very similar, I highly suggest you run a full anti virus scan, change your passwords to everything, change your creditcard/bankaccount data (Contact your bank to do this) and oh, lesson learnt, always backup.
     
  14. MyDymo

    MyDymo Junior Member

    Joined:
    Sep 15, 2009
    Messages:
    194
    Likes Received:
    56
    Occupation:
    Working
    Location:
    XYZ
    yeah i still havnt found the cause, but thanks guys i have the sites back, and im using offshore hosting no backups ;9