Hacked by Dr. CruZz

Discussion in 'Masalah Teknik dan Keamanan' started by galuh82, 26 Apr 2011.

Thread Status:
Not open for further replies.
  1. galuh82

    galuh82 Hosting Guru Web Hosting (Company)

    Messages:
    2,514
    Likes Received:
    186
    Trophy Points:
    63
    hallo,

    kaget, beberapa site client terutama yang pake wp kena deface dan ada juga yang cuma nyimpen file x.txt. ada yang bisa share nggak untuk antisipasi supaya tidak kena lagi ?

    ribuan site dah kena ama nih hacker :) listnya bisa dilihat di http://www.zone-h.org/archive/notifier=Hacked By Dr. CruZz

    salam,
     
  2. PusatHosting

    PusatHosting Hosting Guru Web Hosting

    Messages:
    3,333
    Likes Received:
    326
    Trophy Points:
    83
  3. ngalam

    ngalam Apprentice 1.0

    Messages:
    285
    Likes Received:
    5
    Trophy Points:
    18
    beberpa klien saya juga Bro, pake WP :-(
     
  4. galuh82

    galuh82 Hosting Guru Web Hosting (Company)

    Messages:
    2,514
    Likes Received:
    186
    Trophy Points:
    63
    bisa di share nggak rule mod_security yang dimaksud ? :)

    anehnya hacker bisa nyimpen file di folder wp-includes dengan nama class-includes.php, dari sana ternyata dia leluasa berkarya ..

    salah satu lognya

    salam,
     
  5. ngalam

    ngalam Apprentice 1.0

    Messages:
    285
    Likes Received:
    5
    Trophy Points:
    18
  6. galuh82

    galuh82 Hosting Guru Web Hosting (Company)

    Messages:
    2,514
    Likes Received:
    186
    Trophy Points:
    63
    barusan :

    find /home/ -name 'class-includes.php' 2>/dev/null

    allhammdulillah dapet banyak, semoga yang melakukan hal ini senantiasa diberikan hidayah .. karena cenderung merugikan pihak lain. amiin

    :)
     
  7. vishualhost

    vishualhost Expert 2.0

    Messages:
    813
    Likes Received:
    80
    Trophy Points:
    28
    ada yg masih simpen isi filesnya ga , itu isi dalemnya make php apa di base64 encoder
     
  8. galuh82

    galuh82 Hosting Guru Web Hosting (Company)

    Messages:
    2,514
    Likes Received:
    186
    Trophy Points:
    63
    ini dia lupa nggak di save, btw saya sempet lihat isinya campur jadi nggak murni encoder script.
     
  9. vishualhost

    vishualhost Expert 2.0

    Messages:
    813
    Likes Received:
    80
    Trophy Points:
    28
    ini orangnya yg make nick kalong666 , belum lama sempet mampir jg diserver coba mengeksekusi beberapa acc diserver subuh2 sebelum akhirnya ketauan , senjatanya banyak dia selain perl , php , base64 decoder, gzinflate dan strroot_13 , matikan prosesnya dr root dengan read filesnya dan masukan ke rules set mod sec / matikan langsung dr php server
     
  10. fasthostonline

    fasthostonline Apprentice 2.0

    Messages:
    484
    Likes Received:
    7
    Trophy Points:
    18
    anak indonesiacoder ya ini
     
Loading...
Thread Status:
Not open for further replies.

Share This Page

Loading...