I run a cron job as part of my dadaMail setup (auto_pickup.pl). Yesterday afternoon I received 5 logs from the cron manager that contained raw HTML. It appears to have come from bhdefaultparking.com.
Here's some snippets from the email
<title>Welcome johnbishopimages.com - Hostmonster.com</title>
This page parked courtesy of <a href="http://www.hostmonster.com/">www.hostmonster.com</a>
There is also a Google Analytics account code of UA-9156498-2, which isn't mine!
<iframe frameborder="0" scrolling="no" src="http://bhdefaultparking.com/?a=johnbishopimages.com" class="icontent"></iframe>
Does anyone know what is going on here? My concern is that either my bh account has been hacked or that all the work I have done on SEO will be undone by bhdefaultparking.
How did this ever get into my account? Surely hostmonster (a subsidiary of bluehost) doesn't want to be associated with this unethical behaviour!