ugh server hacked!

Printable View

07-05-2011, 11:18 PM
x0pa

ugh server hacked!

so my server was rooted and im a mess ;p
i have mainstream clients on my server !!

and the hacked page listed one of my gay porn sites !!!

now when you do a search for said mainstream company the rooted text appears instead of the site description HOW THE HELL DO I GET RID OF THAT!!!!!

LOOSING MY MIND HERE!!!!
07-06-2011, 12:21 AM
HunkyLuke

oh no!!! You will probably need a full server rebuild to remove the rootkit, so I hope your host has a backup. Removing rootkits without a restore is tricky as they can leave hidden backdoors. If you don't have a backup, or if you don't maintain an offline copy, then backup your data first and be careful with any encoded files or scripts.

Where is this hosted? I know NatNet will help get this type of situation fixed up.
07-06-2011, 12:25 AM
x0pa

ya there working on it, i do have backups will make sure i request a rebuild i dont want to publicly say where im hosting
07-06-2011, 12:27 AM
x0pa

lol my sig, anyways my last host amerinoc never happened just moved here now this... sadly this can happen anywhere so ;)
07-06-2011, 12:28 AM
x0pa

and im less concerned with my sites but more concerned with the ecommerce sites
07-06-2011, 10:19 AM
HunkyLuke

glad its getting sorted, lets all hope things will get back to normal quickly!
07-06-2011, 10:24 AM
x0pa

yup and ever passwd is going secure completely locked up like a mofo and i get emails every time they attempt to go at it ;p "kind of annoying"

they went after the ecommerce site ;( older script needs updating and went after ftp injection BLAH
07-07-2011, 01:34 AM
PFLJayden

If you need help, shoot Jacob an email: Jacob (at) Jacobidesign.com he's helped us a few times when we've gotten hacked and he's currently helping another from resolving from getting hacked BAD. He's fabulous! He does all of our programming work.
07-10-2011, 12:11 AM
steven619

Double check to make sure you have a decent software firewall. In addition you may want to add a good external firewall with intrusion prevention modules. Cisco has some good ones or email me and I can help with a few choices. Not cheap .. but if you have sites that make good revenue and/or you are hosting e-commerce with PCI needs it may be time to add some extra protection.
07-10-2011, 12:23 AM
x0pa

script was vulnerable

harsh lessons but working. through it

and yes firewalls secure paawords etc

All times are GMT -4. The time now is 03:27 PM.