Hello dear Support,
I have a problem with my domain. One of our domains seems to have been hacked.
The domain “dezentralbox.org” points to a torrent page. This is not our Site and we dont know why this happen.
Here is a screenshot of the site: https://imgur.com/a/ntAG5s7
We have 20+ domains. The Domains are located on on Raidboxes.de and are redirected with Claoudflare to our main side “decentralbox.com”.
I do not know unfortunately, how my old agency made that with the forwarding by Cloudflare. But they claim that they have NOTHING to do with it.
Also raidboxes says, that this is a problem on Cloudflare, because the domains point to the nameserver of Cloudflare.
But if I log in on Cloudflare, I do not see forwarding or an entry for the Domain “dezentralbox.org”
Here are some screenshots of Cloudflare:
Only the domains that can be seen will redirect you to the main page.
When I search for the capped domain “dezentralbox.org” Cloudflare does not find an entry
Also the audit log does not show up when I search for “dezentralbox.org”. The period is from 2018.
whoishostingthis.com spits out these details about the capped domain to me:
I have now set the name server on raidboxes to default for the capped domain, before it was this one:
These nameserver from Cloudflare are also active on other domains from me, but there was no such mess.
Question 1: What was hacked now? Account of Raidboxes or Cloudflare?
Question 2: Which passwords do I have to change? Email, Hoster, Raidboxes and Cloudflare, or just EVERYTHING?
Question 3: Can our website “decentralbox. com” also be hacked, only we don’t know it yet?
Thank you very much for your attention and help!