XOOPS 
Forum
Forum Index General Forums Community Support Modules Support Themes Support Development International Support Module Hack Reviews Theme Designer Talk
  1. Board index / 
  2. XOOPS Community Support forums / 
  3. Beginner's Corner 
  4.  / URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30
Register
1
ipwgc
URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 13:34

  • ipwgc

  • Quite a regular

  • Posts: 216

  • Since: 2005/8/13


URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

Dear XOOPS friends,
Today my site is hacked. http://www.ipwgc.com/english/
The XOOPS portal is under the english folder. You cannot see it because has a redirected html page for the IPWGC.com root at this moment.

On Thursday, June 29, 2006 1:17 AM I updated the Portal for the last release of XOOPS 2.0.14.
Please help me because I have others XOOPS portal under the same IPWGC.com root, and I have to give all security possible.

Together in this battle.
David
2
davidl2
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 13:39

  • davidl2

  • XOOPS is my life!

  • Posts: 4843

  • Since: 2003/5/26


Can you provide a few more details about the possible hack?
3
ipwgc
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 13:43

  • ipwgc

  • Quite a regular

  • Posts: 216

  • Since: 2005/8/13


I delete the redirect page is open at thie mommet go her
http://www.ipwgc.com/english/ go now

THANK
DAVID
4
zyspec
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 13:44

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


David,

I'm willing, but not sure how, to help with the information you've provided. You need to include a little more data so we can try and help you figure out what happened and how to prevent another occurrance.

1) Can you explain exactly what happened. For example, Were files replaced/deleted? Were additional files added?

2) You said you upgraded to 2.0.14 so I'm assuming this was completed. Can you explain exactly what steps you went through when upgrading. For example, did you reset mainfile.php to read only rights (CHMOD 444)? Did you delete the install and/or upgrade folders when you were done? etc.. etc..

3) Do you have access to a web stats type program (AWSTATS, etc) to help identify a visitors IP address, etc.?

4) Do you have a backup of your site or is it 'repairable'?

EDIT:
5) What other modules do you have installed?
5
davidl2
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 13:47

  • davidl2

  • XOOPS is my life!

  • Posts: 4843

  • Since: 2003/5/26


(As this has been mentioned in the last day as being a possible problem... do you have MyAds installed?)
6
ipwgc
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 13:50

  • ipwgc

  • Quite a regular

  • Posts: 216

  • Since: 2005/8/13


(As this has been mentioned in the last day as being a possible problem... do you have MyAds installed?)

YES, I have MyAds installed.

but I need close the site, for thie reazon I insert my html redirect page

wat I need to do, righ now
david
7
zyspec
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 13:57

  • zyspec

  • Module Developer

  • Posts: 1095

  • Since: 2004/9/21


One additional thing I've found is that there isn't an index.html file in the /cache or /templates_c directories - so I know there's a version of pical.
8
davidl2
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 14:02

  • davidl2

  • XOOPS is my life!

  • Posts: 4843

  • Since: 2003/5/26


There is a recent hack using MyAds - which is the most likely way these nasty peope (I wish I could use stronger words!) got in to your site...
9
ipwgc
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 14:03

  • ipwgc

  • Quite a regular

  • Posts: 216

  • Since: 2005/8/13


3) Do you have access to a web stats type program (AWSTATS, etc) to help identify a visitors IP address, etc.?
4) Do you have a backup of your site or is it 'repairable'?
EDIT:
5) What other modules do you have installed?

to ansewer your question 5
I have intalled the same modules on the 2 site, english and espanish to see the modules go here http://www.ipwgc.com/espanol/

When hackead your site that is the first step that has to do? that is important

David
10
ipwgc
Re: URGENT - PLEASE MY SITE IS HACKED TODAY Friday june 30

  • 2006/6/30 14:13

  • ipwgc

  • Quite a regular

  • Posts: 216

  • Since: 2005/8/13


People I need solutions that I do now,

looks at my site http://www.ipwgc.com/english/

Have a blue message "Hached by Mad Hacker1 & Leak"

David
(1) 2 3 4 »

Login

Register now!  |  Lost Password?

Search

Advanced Search

Recent Posts

Who's Online

269 user(s) are online (219 user(s) are browsing Support Forums)

Members: 0

Guests: 269

more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Nov 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits