findtim
Top Contributor
i've got a site thats a problem, keeps getting files linking to "nike" chinese sites, i've wordfenced and all clear, i've sucuri and all clear.
but when i try to back it up and download it to search for problems my computer says " F off, i'm not downloading that "
finally got all the files to download and to my surprise there are files at the root that are NOT visible in ftp or cpanel filemanager.
i'm surprised sucuri didn't pick them up but they appear to " not be there " ????
so thus i can't delete them !!!!!!!
i think they are using them as gateways to keep injecting hacks.
has anyone else had this experience ?
the reason i found them was by comparing files form other sites i have with the same "file trees" + they are using ASP files on a php server so it makes it easier to spot.
i haven't been able to find anything on the net to help me.
any advice appreciated
tim
but when i try to back it up and download it to search for problems my computer says " F off, i'm not downloading that "
finally got all the files to download and to my surprise there are files at the root that are NOT visible in ftp or cpanel filemanager.
i'm surprised sucuri didn't pick them up but they appear to " not be there " ????
so thus i can't delete them !!!!!!!
i think they are using them as gateways to keep injecting hacks.
has anyone else had this experience ?
the reason i found them was by comparing files form other sites i have with the same "file trees" + they are using ASP files on a php server so it makes it easier to spot.
i haven't been able to find anything on the net to help me.
any advice appreciated
tim