Questions? Start a Support Ticket
User Registration
Customer Login

Knowledgebase

Portal Home > Knowledgebase > Articles Database > Server hacket


Server hacket




Posted by RomanEpo, 10-24-2013, 01:14 AM
My server hacked,all web site show yopur server hacked. What can i do,i use cpane/whm and centos 6.3 Thank You Roman
Posted by net, 10-24-2013, 01:25 AM
Well, you need to check how it was hacked. And you might need to do an OS reload to clean it then secure it properly to avoid this problem again.
Posted by kevincheri, 10-24-2013, 01:26 AM
What does the site show?, is all sites having the same software etc?, or do you suspect a root level hack?.
Posted by iexo, 10-24-2013, 01:33 AM
Check all the logs, you need to know how it was accessed to avoid it in the future!
Posted by RomanEpo, 10-24-2013, 01:39 AM
all site show same display.I guess root lavel hack coz step by step all site show same page,what can i find infected script. Best Regards Roman E
Posted by Kailash12, 10-24-2013, 01:57 AM
It seems that you do not have server management experience. I suggest you to contact your server provider (if it is managed server) or hire server management company as soon as possible.
Posted by Johnny Cache, 10-24-2013, 03:09 AM
It's incredibly difficult (nearing impossible) to ensure a secure system after experiencing a compromise like this. Reload your OS, install & tweak cPanel - don't assume that default settings are 100% safe -- harden the system. Import your clients' backups and restore away. I'd also suggest some sort of server management option going forward. http://blog.sucuri.net/2013/05/from-...ot-part-i.html
Posted by valley, 10-24-2013, 03:44 AM
Check for the logs and trace the cause for the attack. Harden your server with multiple layers of security.
Posted by EthernetServers, 10-24-2013, 05:17 AM
Do you have backups of the websites? If so, your best bet would be to perform an OS reload and restore the accounts. Then you should hire a System Administrator to work with you on securing the system.
Posted by RomanEpo, 10-24-2013, 05:31 AM
But script running ,i cant trace which script do this work,If i change website than it do this same modify website all index file. I scan antivirus,but same problem. How can i find this script. Thank you Roman
Posted by Vans, 10-26-2013, 10:41 AM
Hi Roman, Look like your server is not properly secured. I suggest you if you have a dedicated server to go with Cloudlinux + CSF + CXS + Malware Detect. Work well for me. Harneding a server is very important too.. ask to a sysadmin to do it for you.


Was this answer helpful?

Add to Favourites Add to Favourites    Print this Article Print this Article

Also Read
Export emails from phpbb (Views: 663)
Need advice (Views: 689)
How to whitelist a domain in Mod_evasive? (Views: 799)
Holding Page... how???? (Views: 669)
Kernel Timer Frequency (Views: 723)


Language:

Our Services

Client Menu

Legal

Terms of Service | Privacy Policy | Refund Policy | Affiliates
Copyright © 2015 DC International LLC in partnership with Bragin IT Solutions Inc. - All Rights Reserved.