Ok i have a problem... after banning this guy for the third time.. i went to ban his new spoofed IP and this is what i get when i click on ban members!!!
Notice: Undefined index: shop in C:\Inetpub\vhosts\discusasahobby.com\httpdocs\forum\Sources\Load.php(1086) : eval()'d code on line 449
Notice: Undefined index: don_title in C:\Inetpub\vhosts\discusasahobby.com\httpdocs\forum\Sources\Load.php(1086) : eval()'d code on line 452
An Error Has Occurred!
2: smf_main(C:\Inetpub\vhosts\discusasahobby.com\httpdocs\forum/Sources/ManageMembers.php): failed to open stream: No such file or directory
File: C:\Inetpub\vhosts\discusasahobby.com\httpdocs\forum\index.php
Line: 332
Was i hacked whats going on??
PLEASE HELP
Chad >:( >:( >:(
here kitty kitty
Interesting. Well, it looks like ManageMembers.php is gone. Try uploading it again.
I would check a variety of access logs and other things to see how they got in.
-[Unknown]
yeah he deleted it... i am back up now.. i think he got in thru plesk... any idea how to nail these guys??
Chad
ban him from your site and not just through SMF.
Change all your passwords and deny him access through .htaccess
Fizzy can you tell me how to do this?? I assume i can do this thru pleask??
Chad
Hi Chad,
If I were you I would change every password, working in this sort of order:
Your SMF admin password
SMF forum database password
Your Plesk database password (make it the same as above)
Your Plesk main access password (should on the main index page of Plesk)
Unfortunately too many people are guilty of creating passwords that are quite obvious if you know a little about the person. Make the passwords totally abstract, don't use common words, pet names, family names or notable dates etc.
Regarding the htaccess issue, do you have the IP address or spoofed IP address for the hacker?
If so, you should see that you can ban IP's or whole referer domains from within Plesk itself ?? ?? Not sure on that one so I'll check it our (unless someone can please advise otherwise)