 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 54
 Members: 0
 Total: 54
|
|
|
|
|
|
Full disclosure |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
 Posted: Sun Mar 09, 2008 2:36 pm |
 |
|
| abdulbasit |
| Regular user |
 |
|
| Joined: Mar 07, 2008 |
| Posts: 24 |
|
|
|
 |
|
 |
|
| gibbocool wrote: | | Get your logs and go through them to find IP and other info about what he's been doing. Then you can report it to your local authorities. |
Can I get the logs of my add-on domain also ? As the domain which is getting hacked is add-on domain and I am on shared hosting plan. |
|
|
|
|
| Posted: Mon Mar 10, 2008 1:07 am |
|
|
| gibbocool |
| Advanced user |
 |
|
| Joined: Jan 22, 2008 |
| Posts: 208 |
|
|
|
|
|
|
|
| Yes you can, unless whoever owns the account was stupid enough not to enable logs. |
|
|
|
|
| Posted: Mon Mar 10, 2008 9:36 am |
|
|
| abdulbasit |
| Regular user |
|
|
| Joined: Mar 07, 2008 |
| Posts: 24 |
|
|
|
|
|
|
|
| How to get the logs for my site which is an Add-on domain and provide you? |
|
|
|
|
| Posted: Mon Mar 10, 2008 12:42 pm |
|
|
| gibbocool |
| Advanced user |
|
|
| Joined: Jan 22, 2008 |
| Posts: 208 |
|
|
|
|
|
|
|
OMG dude, do you expect me to SMELL what host you are on?
Log into Cpanel and get the logs. if you dont have access to cpanel, ask someone who does to get you your logs! |
|
|
|
|
| Posted: Mon Mar 10, 2008 12:56 pm |
|
|
| abdulbasit |
| Regular user |
|
|
| Joined: Mar 07, 2008 |
| Posts: 24 |
|
|
|
|
|
|
|
| gibbocool wrote: | OMG dude, do you expect me to SMELL what host you are on?
Log into Cpanel and get the logs. if you dont have access to cpanel, ask someone who does to get you your logs! |
I logged in to Cpanel and see 3 things
Raw Access Logs
Raw Log Manager
Error log
Which log you want me to get and provide you to look at... |
|
|
|
|
|
|
|
|
| Posted: Mon Mar 10, 2008 9:01 pm |
|
|
| abdulbasit |
| Regular user |
|
|
| Joined: Mar 07, 2008 |
| Posts: 24 |
|
|
|
|
|
|
|
I searched my whole server and found 2 more hacking files/utilities uploaded on my server which had the long text code with the starting code of base64. I searched for the same keyword on my entire server and found other files with the same text and they were hacking utilities too!
Can you guys help me in telling me some more keywords or specific text which mostly hackers are these days using to add iframe tags in the index pages and other pages of the site.
I will use the entire server search and will try to find and delete everything and for that I will need your help and you all are experts here.
Thank you,
AB |
|
|
|
|
| Posted: Tue Mar 11, 2008 4:46 am |
|
|
| gibbocool |
| Advanced user |
|
|
| Joined: Jan 22, 2008 |
| Posts: 208 |
|
|
|
|
|
|
|
| PM me the raw access log and the error log. |
|
|
|
|
| Posted: Tue Mar 11, 2008 6:10 am |
|
|
| pexli |
| Valuable expert |
 |
|
| Joined: May 24, 2007 |
| Posts: 665 |
| Location: Bulgaria |
|
|
|
|
|
|
| system() passthru() eval() .....etc |
|
|
|
|
www.waraxe.us Forum Index -> PhpBB
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 2 of 2
Goto page Previous1, 2
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|
