The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
#1
|
||||
|
||||
problem on a non vb website - advice please
hi there i wonder if someone could help with a non vb problem i've got.
yesterday i noticed i had a problem with a website i made, the index page wasnt showing up and upon further inspection i found that it had been replaced with another that contained this: PHP Code:
-thanks very much -dave |
#2
|
||||
|
||||
lol that's cute.
You either got hacked or your host restored a backup incorrectly and gave you someone else's phishing website. What this script does is it redirects a person to a website giving them all of your server information. It grabs the memory address of the post variable on your server (this is so they can perform a buffer overflow attack on you later), then it checks the hacker's website to see if your server's IP address has already been added to his database. Finally it relies on someone finding your website through a search engine, if someone finds your site on google or yahoo (and clicks on it) then they are redirected to the hacker's website instead of yours. The website mentioned is known for a windows verification scam, I believe they were trying to get serial numbers for windows vista or XP. You should probably figure out a way of cleaning input on that site, that way this doesn't happen again. |
#3
|
||||
|
||||
thanks for the advice, its the second problem i've had like this in a month from this hosting, which really is the last straw so i'm cancelling it
thanks again - dave |
#4
|
||||
|
||||
Don't be so quick to blame the host. It's usually a security flaw in one of your website scripts. You should be sure that if you're running customized code, you have some method of input cleaning when dealing with post variables.
|
#5
|
||||
|
||||
Is that an actual file that had been replaced?
|
#6
|
||||
|
||||
yes my index page had been completely replaced, i dont run any web scripts on the sites i host with that hosting company, its just 4 plain html websites, which is what i was so concerned about
|
Thread Tools | |
Display Modes | |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|