Welcome to WebmasterWorld Guest from 220.127.116.11 , register , free tools , login , search , pro membership , help , library , announcements , recent posts , open posts Become a Pro Member
Went to FTP to my site and saw that every .htm had a duplicate named .htm.aff_sa_bak.
The legit .htm just has my code. The .htm.aff_sa_bak has this script appended under the </html> tag
I tried to figure out what it was, why it was, or what I should do, but I was stumped. What's going on with this thing?
Looks like hacking from Google search; alert your host. larryhatch
I googled up aff_sa_bak, and mostly got junk.
One site had some info, a blog for webmasters. The writer's site got hacked.
The aff_sa_bak URLs led to popup ads. Yes, contact your host right away.
The perps apparently break in to the server itself so they can mess with every site there. -Larry
Thanks all! I deleted the offending files: no online troubles with the site. I alerted my host. I'll keep you posted.