homepage Welcome to WebmasterWorld Guest from 54.234.67.55
register, login, search, subscribe, help, library, PubCon, announcements, recent posts, open posts,
Subscribe and Support WebmasterWorld
Visit PubCon.com
Home / Forums Index / WebmasterWorld / Webmaster General
Forum Library : Charter : Moderators: phranque & physics

Webmaster General Forum

    
Sites have been hacked :(
rhonda427




msg:3583844		 12:41 pm on Feb 25, 2008 (gmt 0)

This morning I noticed a php script on one of my sites with functionality aimed at cracking passwords, and on two other sites programs containing Trojans. I have of course immediately deleted these files from the public_html folder.

Anyones with a idea about what else I should be looking at to make sure that there are no other damages?

I assume the possibility to upload files must be due to some kind of unsecure form?

Thanks for any help and ideas on how to prevent against this!

 

pageoneresults




msg:3583894		 2:00 pm on Feb 25, 2008 (gmt 0)

These topics are showing up a bit more frequently these days.

It sounds like your server has been compromised. You'll need to lock down the server as there is most likely a hole there. If you are on some sort of commodity hosting plan on a shared IP, I'd be considering a new home.

The possibility to upload files is probably due to an open FTP port and a dictionary attack on the login. That is just one method. If your on a shared hosting plan with thousands of others, there is the probability that many of the others are in the same position as you. :(

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / WebmasterWorld / Webmaster General
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About
WebmasterWorld ® and PubCon ® are a Registered Trademarks of Pubcon Inc.
© Pubcon Inc. 1996-2012 all rights reserved