Domain Name

I encountered some particularly smart malware on a site I was working on once, it read the server’s log files to determine the IP addresses of the site owners (whoever had logged in via ssh) and when they visited the site, it displayed normally. It could be something similar here.

Search your code for eval functions, when I’ve seen sites hijacked like this they hide the malicious PHP code in eval(base64_decode() and put it in strange places in the file e.g. prefixed by 100 spaces so you have to scroll across in your editor to even notice it.

3 Likes

sorry not sure what you mean here, but I understood what you said about malicious php code.

You have a one page website that as long as you made a backup it up would take you an hour or so to replace. If you change all the passwords and you do that you should be fixed.This would prove if there is a problem with your site or not.

As I see it you have been over a day and not done anything?

This site was made by another developer agency with the client I work for, and they are currently looking into it.

This topic was automatically closed 91 days after the last reply. New replies are no longer allowed.