Welcome to Geeklog, Anonymous Thursday, December 26 2024 @ 05:04 am EST
Geeklog Forums
Worm Problem
Hello. The site won't even come up. Please advise what to do. GreenlandPines.com Greenland Pines.com . I don't even know where to begin. Thank you. This is a school website. Who, in their right mind would want to attack school kids? Oh for goodness sake!
I would appreciate any help you can offer. thank you.
Send Me To The Royal Wedding-http://www.royaltys.com - to enter my site.
I would appreciate any help you can offer. thank you.
Send Me To The Royal Wedding-http://www.royaltys.com - to enter my site.
12
13
Quote
Status: offline
Dirk
Site Admin
Admin
Registered: 01/12/02
Posts: 13073
Location:Stuttgart, Germany
The site does come up, but redirects to somewhere else. Before it does, this can be seen at the top of the browser window:
My guess is that someone modifed lib-sessions.php and inserted some code there that does the redirect.
So, first step, replace lib-sessions.php with the original version. That should hopefully fix that.
Next step, upgrade that site to the lasted 1.3.11 version. It's on 1.3.11sr1, apparently, and that version is known to have security issues.
And after that, password-protect the system, plugins, logs, and all the other directories that should not have been in public_html in the first place ...
bye, Dirk
Warning: Cannot modify header information - headers already sent by (output started at /home/cougar/public_html/config.php:763) in /home/cougar/public_html/system/lib-sessions.php on line 188
Warning: Cannot modify header information - headers already sent by (output started at /home/cougar/public_html/config.php:763) in /home/cougar/public_html/system/lib-sessions.php on line 200
Warning: Cannot modify header information - headers already sent by (output started at /home/cougar/public_html/config.php:763) in /home/cougar/public_html/system/lib-sessions.php on line 200
My guess is that someone modifed lib-sessions.php and inserted some code there that does the redirect.
So, first step, replace lib-sessions.php with the original version. That should hopefully fix that.
Next step, upgrade that site to the lasted 1.3.11 version. It's on 1.3.11sr1, apparently, and that version is known to have security issues.
And after that, password-protect the system, plugins, logs, and all the other directories that should not have been in public_html in the first place ...
bye, Dirk
13
15
Quote
ironmax
Anonymous
nanvr,
I did a drive by into that irc chat room and sure enough, someone there did it. They were talking about all their accomplishments that they had done. Some of them were asking a ransom on a site that they had just done. So I can sympathize with you on getting hacked. Like dhaun had said, the best thing you can do is update/upgrade your site and plug the holes on how they got in.
Michael
I did a drive by into that irc chat room and sure enough, someone there did it. They were talking about all their accomplishments that they had done. Some of them were asking a ransom on a site that they had just done. So I can sympathize with you on getting hacked. Like dhaun had said, the best thing you can do is update/upgrade your site and plug the holes on how they got in.
Michael
15
16
Quote
All times are EST. The time is now 05:04 am.
- Normal Topic
- Sticky Topic
- Locked Topic
- New Post
- Sticky Topic W/ New Post
- Locked Topic W/ New Post
- View Anonymous Posts
- Able to post
- Filtered HTML Allowed
- Censored Content