PDA

View Full Version : Help please

Ali-v-8
22nd June 2009, 13:55
I have had my website hacked by a Turkish guy. I reverted the website changed ftp. But he's now done it again.
The guy is masterhacker.com.

Any ideas
JElder
22nd June 2009, 14:07
What are you running on the site - simple HTML or something more complex?
ozbon
22nd June 2009, 14:15
Can you still connect to your site via FTP.

If not, he's also got access to the control panel, and has changed the FTP password.

As such, I would initially make sure that
a) The control panel password gets changed
b) The FTP password gets changed (again) to something secure
c) If you've got a backup of your site from before it was hacked, delete all the files in your webspace, and re-upload the files from the backup, so that you can be more sure there's not some extra files that've been left by the hacker, which could allow him access

Personally I would also look at changing hosts - there's plenty out there - along with new username/password etc., which again makes it harder.

Oh, and make sure your passwords are complex (i.e. upper and lower case, have punctuation and numbers as well as letters, and aren't just words that can be found by a dictionary attack)

Also, just in case, have you done a full virus check on your own computer(s) - always best to make sure, if you know something you use regularly has been hacked.
Ali-v-8
22nd June 2009, 14:23
Can you still connect to your site via FTP.

If not, he's also got access to the control panel, and has changed the FTP password.

As such, I would initially make sure that
a) The control panel password gets changed
b) The FTP password gets changed (again) to something secure
c) If you've got a backup of your site from before it was hacked, delete all the files in your webspace, and re-upload the files from the backup, so that you can be more sure there's not some extra files that've been left by the hacker, which could allow him access

Personally I would also look at changing hosts - there's plenty out there - along with new username/password etc., which again makes it harder.

Oh, and make sure your passwords are complex (i.e. upper and lower case, have punctuation and numbers as well as letters, and aren't just words that can be found by a dictionary attack)

Also, just in case, have you done a full virus check on your own computer(s) - always best to make sure, if you know something you use regularly has been hacked.

we have ftp
we changed just incase

We have changed the site back 4 times now.
he isnt going through ftp.
We think its the form.
Ali-v-8
22nd June 2009, 14:24
What are you running on the site - simple HTML or something more complex?

html and has some flash coding