MrFewkes - 8:31 pm on Feb 28, 2011 (gmt 0) [edited by: MrFewkes at 8:45 pm (utc) on Feb 28, 2011]
ssgumby - good point - so ive done a few checks in my paranoid state and I would say not! :)
rachel - I would move - but some of my sites which also target this product are on another host - and YUP youve guessed it - they get hacked aswell. So in terms of host - its tricky for me. The revenue - even when its coming in doesnt warrant a mega expensive host so its a bit of a chicken and egg situation.
The hacks are dirty - really dirty. Heres a few of their tricks.
They place iframes in my source code which redirect to malicious urls.
They place spam links (thousands) in my source code.
They create directories and fill them with fake company (banks) html pages.
They change my .htaccess to redirect SE traffic to other malicious sites.
They create files which are scripts which do nasty things to my source code with EVALs to hide the actualy code.
They get the SEs to index the php scripts they place on my server which inserts malicious code into my HTML - of course - my sever executes the evil php every time an SE BOT visits randomly.
When they change a file in my server - they fiddle the date and time setting - so that it doesnt change to reflect that the file changes (this makes it almost impossible to locate changed files because I cannot sort them)
They use the server to send thousands of emails and the bounce rate is awful - this fills my space with returned to sender mails.
Its been hard - but ive cracked all of these - this lost sales one though is totally baffling me.
[edited by: MrFewkes at 8:45 pm (utc) on Feb 28, 2011]