homepage Welcome to WebmasterWorld Guest from 54.237.98.229
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member
Home / Forums Index / WebmasterWorld / Webmaster General
Forum Library, Charter, Moderators: phranque

Webmaster General Forum

    
Sites have been hacked :(
rhonda427

5+ Year Member



 
Msg#: 3583842 posted 12:41 pm on Feb 25, 2008 (gmt 0)

This morning I noticed a php script on one of my sites with functionality aimed at cracking passwords, and on two other sites programs containing Trojans. I have of course immediately deleted these files from the public_html folder.

Anyones with a idea about what else I should be looking at to make sure that there are no other damages?

I assume the possibility to upload files must be due to some kind of unsecure form?

Thanks for any help and ideas on how to prevent against this!

 

pageoneresults

WebmasterWorld Senior Member pageoneresults us a WebmasterWorld Top Contributor of All Time 10+ Year Member



 
Msg#: 3583842 posted 2:00 pm on Feb 25, 2008 (gmt 0)

These topics are showing up a bit more frequently these days.

It sounds like your server has been compromised. You'll need to lock down the server as there is most likely a hole there. If you are on some sort of commodity hosting plan on a shared IP, I'd be considering a new home.

The possibility to upload files is probably due to an open FTP port and a dictionary attack on the login. That is just one method. If your on a shared hosting plan with thousands of others, there is the probability that many of the others are in the same position as you. :(

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / WebmasterWorld / Webmaster General
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved