Uutiset:

SMF 2.1.4 has been released! Take it for a spin! Read more.

Main Menu
Advertisement:

I think i have been hacked!!!

Aloittaja Chadgqx, maaliskuu 17, 2005, 11:00:39 IP

« edellinen - seuraava »
Tulosta
Siirry alas Sivuja1
Käyttäjän toimet

Chadgqx

maaliskuu 17, 2005, 11:00:39 IP
Ok i have a problem... after banning this guy for the third time.. i went to ban his new spoofed IP and this is what i get when i click on ban members!!!

Notice: Undefined index: shop in C:\Inetpub\vhosts\discusasahobby.com\httpdocs\forum\Sources\Load.php(1086) : eval()'d code on line 449

Notice: Undefined index: don_title in C:\Inetpub\vhosts\discusasahobby.com\httpdocs\forum\Sources\Load.php(1086) : eval()'d code on line 452

An Error Has Occurred!
2: smf_main(C:\Inetpub\vhosts\discusasahobby.com\httpdocs\forum/Sources/ManageMembers.php): failed to open stream: No such file or directory
File: C:\Inetpub\vhosts\discusasahobby.com\httpdocs\forum\index.php
Line: 332 

Was i hacked whats going on??

PLEASE HELP

Chad >:( >:( >:(

here kitty  kitty

[Unknown]

#1
maaliskuu 18, 2005, 03:53:57 AP
Interesting.  Well, it looks like ManageMembers.php is gone.  Try uploading it again.

I would check a variety of access logs and other things to see how they got in.

-[Unknown]

Chadgqx

#2
maaliskuu 18, 2005, 07:18:19 IP
yeah he deleted it... i am back up now.. i think he got in thru plesk... any idea how to nail these guys??


Chad

IchBin™

#3
maaliskuu 19, 2005, 01:50:49 AP
ban him from your site and not just through SMF.
IchBin™        TinyPortal

Fizzy

#4
maaliskuu 19, 2005, 03:32:39 AP
Change all your passwords and deny him access through .htaccess
"Reality is merely an illusion, albeit a very persistent one." - A.E.

Chadgqx

#5
maaliskuu 19, 2005, 02:29:58 IP
Fizzy can you tell me how to do this?? I assume i can do this thru pleask??

Chad

Fizzy

#6
maaliskuu 21, 2005, 08:26:15 AP
Hi Chad,

If I were you I would change every password, working in this sort of order:

Your SMF admin password
SMF forum database password
Your Plesk database password (make it the same as above)
Your Plesk main access password (should on the main index page of Plesk)

Unfortunately too many people are guilty of creating passwords that are quite obvious if you know a little about the person. Make the passwords totally abstract, don't use common words, pet names, family names or notable dates etc.

Regarding the htaccess issue, do you have the IP address or spoofed IP address for the hacker?

If so, you should see that you can ban IP's or whole referer domains from within Plesk itself ?? ?? Not sure on that one so I'll check it our (unless someone can please advise otherwise)
"Reality is merely an illusion, albeit a very persistent one." - A.E.
Tulosta
Siirry ylös Sivuja1
Käyttäjän toimet
Advertisement: