Hello and welcome to our community! Is this your first visit?
Register
Enjoy an ad free experience by logging in. Not a member yet? Register.
Page 1 of 2 12 LastLast
Results 1 to 15 of 18
  1. #1
    Regular Coder
    Join Date
    Dec 2008
    Location
    Always Roaming Around Burbank Illnois or TO
    Posts
    177
    Thanks
    13
    Thanked 4 Times in 3 Posts

    Is There A Way To Avoid Hackers From Hacking Your Website?

    Hi Guys,

    I am wondering if there is a way to avoid hackers from hacking into your website. My website has been repeatedly and I don't know what to do now. Yesterday, I noticed that it has been hack again so I upload it and publish again so it was working again but just now when I checked the site, it's been Hacked Again, and this time it's the same ugly head. The first one was a different with a Mettalica thingy showing . But I think they are coming from the same Bad guys who nothing to do but create pain for people trying to make a legal and decent living on the web.

    I need some help if someone here knows of what to do..

    BTW... the site is www.mynoogee.com

    Thanks for any advice....

    JulieV
    Last edited by JulieV; 07-03-2009 at 03:02 AM. Reason: additional info

  • #2
    Senior Coder
    Join Date
    Oct 2005
    Posts
    1,340
    Thanks
    0
    Thanked 61 Times in 60 Posts
    Well, if you keep doing the same thing you'll keep getting the same thing. You can block his IP address but you have to make sure you have your permissions set correctly so outsiders can't get in. Do you know how to do that? (I'm assuming a Linux server.)

  • Users who have thanked drhowarddrfine for this post:

    JulieV (07-03-2009)

  • #3
    Regular Coder
    Join Date
    Dec 2008
    Location
    Always Roaming Around Burbank Illnois or TO
    Posts
    177
    Thanks
    13
    Thanked 4 Times in 3 Posts
    Yes it is from GoDaddy.com and Linux server.

    I do not know how to get the IP address of the hacker and or to do what you are saying. Do care to share how i can do what yu are telling me?

    thanks a lot

    JulieV

  • #4
    Master Coder
    Join Date
    Apr 2003
    Location
    in my house
    Posts
    5,211
    Thanks
    39
    Thanked 201 Times in 197 Posts
    somwhere in your server or in your code, you have a vulnerability. re-publishing the site simply means that it is in the same state as it was before being hacked. If it had the hole in it the first time,it'll still have it with future uploads until you remoive the weakness. what language are you using? (php,perl etc) Maybe a post of your code into that forum would get you a speedier answer.


    bazz
    "The day you stop learning is the day you become obsolete"! - my late Dad.

    Why do some people say "I don't know for sure"? If they don't know for sure then, they don't know!
    Useful MySQL resource
    Useful MySQL link

  • Users who have thanked bazz for this post:

    JulieV (07-03-2009)

  • #5
    Regular Coder
    Join Date
    Dec 2008
    Location
    Always Roaming Around Burbank Illnois or TO
    Posts
    177
    Thanks
    13
    Thanked 4 Times in 3 Posts
    Oppppsss... I don't know the language I am using. My site ends with the .html I don;t know if that helps you understand the language which I am using. I used and Xsitepro web builder and simply publish it form there.
    And how would i remove the " Weakness"? Are you saying something the like... there is a bug or something the hacker is using in my web builder?


    BTW. Thanks very much for Bazz and drhowrddrfine...


    JulieV

  • #6
    Master Coder
    Join Date
    Apr 2003
    Location
    in my house
    Posts
    5,211
    Thanks
    39
    Thanked 201 Times in 197 Posts
    Your site may just be made with static html pages but I think it is more likely that they have used 'mod rewrite' or similar so that dynamic pages just show that extension.

    I don't know anything about Xsitepro but if what you are doing is uploading your data and their templated pages output that data then I would notify them of the problem and see if they can fix it. Otherwise I would change hosts.

    Hang about for someone else to drop by. They may know more about them and your predicament

    bazz
    "The day you stop learning is the day you become obsolete"! - my late Dad.

    Why do some people say "I don't know for sure"? If they don't know for sure then, they don't know!
    Useful MySQL resource
    Useful MySQL link

  • #7
    Regular Coder
    Join Date
    Dec 2008
    Location
    Always Roaming Around Burbank Illnois or TO
    Posts
    177
    Thanks
    13
    Thanked 4 Times in 3 Posts
    Thanks very much Bazz....

    I really appreciate your help and sharing your knowledge on this matter..

    Many Thanks

    JulieV

  • #8
    Supreme Master coder! _Aerospace_Eng_'s Avatar
    Join Date
    Dec 2004
    Location
    In a place far, far away...
    Posts
    19,291
    Thanks
    2
    Thanked 1,043 Times in 1,019 Posts
    From what I've seen about your sites is you are likely using php with mod rewrite. You will need to post your index.php file or hire someone to go in an look for any vulnerabilities.
    ||||If you are getting paid to do a job, don't ask for help on it!||||

  • #9
    Regular Coder
    Join Date
    Mar 2008
    Posts
    235
    Thanks
    6
    Thanked 21 Times in 20 Posts
    Just so you know, hackers will often not hack if they don't need to, as it's not the actual hacking they enjoy its the buzz of messing around with stuff once they get in.

    What would be best is to change all usernames and passwords you can (if you don't know how to do this as GoDaddy) and perform antivirus and spyware checks on any machine you have accessed the website from. There are a lot of worms which are specifically made for grabbing FTP details etc.

    Hope this helps
    Andrew Sharman
    Web designer, developer and programmer.

    If you found my post helpful, why not give thanks! :)

  • #10
    Regular Coder
    Join Date
    Dec 2008
    Location
    Always Roaming Around Burbank Illnois or TO
    Posts
    177
    Thanks
    13
    Thanked 4 Times in 3 Posts
    What is the probable cost if I get someone to look into it?

    After the hack, I was able to re-published it using another password but this time, I have already change the password and I cannot re-upload or re-publish it.

    As i do not have that much of money

    thanks
    Last edited by JulieV; 07-09-2009 at 12:41 AM. Reason: spelling

  • #11
    Master Coder
    Join Date
    Apr 2003
    Location
    in my house
    Posts
    5,211
    Thanks
    39
    Thanked 201 Times in 197 Posts
    Not sure I understand fully.

    Before you pay to have someone look at it, let's try to get your ftp access working again.

    Is there a control panel you are using where you can reset your passwords? If so, make sure you have reset it in your ftp program too.

    bazz
    "The day you stop learning is the day you become obsolete"! - my late Dad.

    Why do some people say "I don't know for sure"? If they don't know for sure then, they don't know!
    Useful MySQL resource
    Useful MySQL link

  • Users who have thanked bazz for this post:

    JulieV (07-09-2009)

  • #12
    Regular Coder
    Join Date
    Dec 2008
    Location
    Always Roaming Around Burbank Illnois or TO
    Posts
    177
    Thanks
    13
    Thanked 4 Times in 3 Posts
    Good advice I guess, right ?

    i have gone to my godaddy.com account and changed my hosting pasword and then go to my XsitePro Web Builder and change the password as well and then I try to re-publish or re-upload the site again...and this time it doesn't.

    The last three times it has been hacked, I simply go to my godaddy account and change the hosting password and re-publish it and it worked but his time it is not working.

    What it shows on the publishing window is that it has been upload or publish already.

    Is there something else I can do?

    thanks
    JulieV
    Last edited by JulieV; 07-09-2009 at 01:41 AM. Reason: spelling

  • #13
    Master Coder
    Join Date
    Apr 2003
    Location
    in my house
    Posts
    5,211
    Thanks
    39
    Thanked 201 Times in 197 Posts
    I am not familiar with godaddy's hosting. sorry. I have read in these forums though, that they aren't great and that hostgator is much better. I am only passing on what I have read and am not vouching for them.

    bazz
    "The day you stop learning is the day you become obsolete"! - my late Dad.

    Why do some people say "I don't know for sure"? If they don't know for sure then, they don't know!
    Useful MySQL resource
    Useful MySQL link

  • #14
    Regular Coder
    Join Date
    Dec 2008
    Location
    Always Roaming Around Burbank Illnois or TO
    Posts
    177
    Thanks
    13
    Thanked 4 Times in 3 Posts
    Hi Guys,

    for some reason I finally get my site going and its now running and hope that who ever is doing this to me shall stop now.

    I know this is not the place to put my plea for the hackers to stop messing up my site but if in case they are following me.... Please leave alone and don't hack my site again...

    Thanks
    JulieV

  • #15
    Master Coder
    Join Date
    Apr 2003
    Location
    in my house
    Posts
    5,211
    Thanks
    39
    Thanked 201 Times in 197 Posts
    I understand your predicament but, in concreto, would you leave your front door open and shout 'Burglars, please don't come in', before going to the shops leaving the door open? Thought not.

    bazz
    "The day you stop learning is the day you become obsolete"! - my late Dad.

    Why do some people say "I don't know for sure"? If they don't know for sure then, they don't know!
    Useful MySQL resource
    Useful MySQL link


  •  
    Page 1 of 2 12 LastLast

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •