• GoDaddy Community
  • Websites + Marketing | Website Builders
  • Websites + Marketing | Website Builders

    cancel
    Showing results for 
    Show  only  | Search instead for 
    Did you mean: 
    Highlighted

    My shared hosting account just got hacked

    This Morning on my shared hosting account, all my index.php files where modified and am using drupal. All my website started redirecting to porn sites and other advertising websites. this only happened if my clients use the search engine to come to my websites. i managed to modify all the index.php files and it stopped redirecting, how can i set permission to my files whiile using the old Linux shared hosting.

     

    Thank you

    3 REPLIES 3
    Highlighted
    Helper IV Helper IV
    Helper IV

    Re: My shared hosting account just got hacked

    Can I suggest patching your drupal and any plugins/themes? Changing file permissions may cause more damage than good.

     

    Read here:

    https://www.drupal.org/security

     

    https://www.drupal.org/security/secure-configuration



    Alex Sirota, PMP - NewPath Consulting - Schedule some time with Alex
    "At the moment of commitment, the universe conspires to assist you." -Johann Wolfgang von Goethe
    Highlighted

    Re: My shared hosting account just got hacked

    May I suggest moving away from Drupal 🙂

     

    Highlighted

    Re: My shared hosting account just got hacked

    Hey -- Not sure if you fixed your problem, but I was just dealing with this exact problem today. It's got nothing to do with drupal. The way the spammers do it is they put a file called .htaccess in the root of your website, and that file redirects traffic coming in to the site from search engines to a malicious script that loads up spam. On my site, the malicious script was called associating-commander.php. I solved the problem by deleting that script and the .htaccess file. (You can do that using GoDaddy's file manager tool.) Hope this helps.
    James