Thread

I was also recently hacked. I suspected something was up when the control panel prompted me that the index had changed, though I’ve been doing a lot of dev and couldn’t remember if I had changed it for some reason or not. Then I decided to update my system to 2.4 and stupidly accepted the changes to index.php. I noticed that all of my pages were running very slow and suspected it was just a problem with my host ... then I got a time out error referencing some script that is definitely hackerish: [removed][removed]

I’ve checked all of the files that were mentioned above to locate where this was inserted but I can’t find it. Are there any other places to look? It seems to be adding itself automatically to every page—both control panel and live webpages— just above the closing body tags.

Hi Lauren,

I am sorry to hear you are running into this hack. I feel your pain.

Please call your hosting provider and let them know you are being hacked. They need to know this in order to help stop it. Typically the only way to get rid of this is to find out how the exploit is being made and to repair that. This could be an operating system level fix or it could be another application installed in your web root. Do you have anything else installed, like phpBB, WordPress, or the like?

Until you find the offender, adding files back is going to be a battle you never win.

Once that is taken care of, then refer to what Kevin said above.

Again, sorry for your troubles with this.

Cheers,