[Website Hack] 0wn3d By dr.a7sass

Discussion in 'HTML & Website Design' started by redclif, Sep 4, 2010.

0
  1. #1
    Dear DigitalPoint'ers addict..

    currently my blog had attack by a hacker, they change my index[.]php. I've fix it but again and again they change my admin passwd.

    the information from this hacker '0wn3d By dr.a7sass'

    does anyone got this same problem? how to fix it and prevent re attack by this person?

    I know there is a hole on my blog but i didn't know how to fix it.

    thanks and rgds,
     
    redclif, Sep 4, 2010 IP
  2. .TIEU

    .TIEU Peon

    Messages:
    68
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #2
    Upgrade your blog. If that isn't possible change your blog script
     
    .TIEU, Sep 4, 2010 IP
  3. letsjoy

    letsjoy Well-Known Member

    Messages:
    1,166
    Likes Received:
    43
    Best Answers:
    0
    Trophy Points:
    160
    #3
    Also take a look on your host's security :)
     
    letsjoy, Sep 4, 2010 IP
  4. mcfox

    mcfox Wind Maker

    Messages:
    7,526
    Likes Received:
    716
    Best Answers:
    0
    Trophy Points:
    360
    #4
    You should delete everything in your root folder. I presume you have backups of any media, right?

    Then upload clean files. You probably need to check your database as well.
     
    mcfox, Sep 5, 2010 IP
  5. CSM

    CSM Active Member

    Messages:
    1,047
    Likes Received:
    25
    Best Answers:
    0
    Trophy Points:
    55
    #5
    If they had access to your server via ssh you have a big problem.
    I would check the server logs, too.
     
    CSM, Sep 5, 2010 IP
    wisdomtool likes this.
  6. wisdomtool

    wisdomtool Moderator Staff

    Messages:
    15,826
    Likes Received:
    1,367
    Best Answers:
    1
    Trophy Points:
    455
    #6
    Check your FTP logs as well, could be an FTP attack. Hacker may be able to compromise your PC and get hold of your password.
     
    wisdomtool, Sep 5, 2010 IP
  7. redclif

    redclif Active Member

    Messages:
    101
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    51
    #7
    guys,thanks for your response.. i will try all your suggestion here, by check ftp log, delete file on root directory and upgrade my blog.
    till now my blog still problem. the hacker always changed my admin passwd :(
     
    redclif, Sep 7, 2010 IP
  8. Zachary Lassiter

    Zachary Lassiter Active Member

    Messages:
    212
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    50
    #8
    change the password for every user on your server and install logwatch
     
    Zachary Lassiter, Sep 8, 2010 IP
  9. kazuvinz

    kazuvinz Peon

    Messages:
    25
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #9
    delete the index.php. upload the new index.php from your blog . update the software to the newest one. change the password alphanumieric with symbols
     
    kazuvinz, Sep 8, 2010 IP