http://digitalhorse.net/

everything in the main directory is gone. >:
so anywho, what should i do about this?

First thing's first, talk to your web host. Any decent host will have a complete backup of your site that they can restore. Then maybe see if they can find out when the site was hacked and who did it.

First thing's first, talk to your web host. Any decent host will have a complete backup of your site that they can restore. Then maybe see if they can find out when the site was hacked and who did it.

He left his name and email address right there :/

Seems like a small time Greyhat who was probably paid by a security company to hack you....

That's kinda dumb,because anybody can bomb-drop his address...

Tell him that your website was the only source of income for your dieing, black, gay, disabled mother and thanks to him she could not afford her painkillers this week. It may appeal to his concience and force him to mend his ways.

fucking gay how he says he didnt change anything or whatever but your entire main directory is gone.

ass

Cosmic Law: Anyone who says they are "testing your security" was trying to be malicious.

I already e-mailed him, and he hasn't replied yet, so i'm about to email my host. I hope they have a backup, cause lots of people had images in my upload dir. :(

what a jerk

Hm, they just restored everything to 5 days ahead of it being hacked. :o

They said they're not sure how it happened, but they'er in the proccess of finding out.

So, I submitted a help ticket and told them what had happened.


-----------------------------------------------
Andy S. has responded to your help desk request.
-----------------------------------------------
Hello,


restore is in progress. If you have any 3rd party software make sure it is up to date.




Thank you,


Andy S.


If you have any questions, please do not hesitate to contact us.


Bring the Web Closer to Your World




**Please do not modify the subject line of this email**
**The subject line provides tracking for this request**
**To reopen a ticket, just reply back to the email**


Thank you for contacting AdvancedNetworkHosts.com
AdvancedNetworkHosts.com
Phone: 1-800-955-2841
Fax: 1-630-469-9737


Ok, thanks. Well, I thought I'd give him a little heads up..

Thanks. I don't have any 3rd party software installed. I'm not sure if this is accurate, but I heard that this could have happened through some security holes in the FrontPage extensions.



-----------------------------------------------
Terry N. has responded to your help desk request.
-----------------------------------------------
Hello,


You are backup, we have the latest version of FP Extensions which have not holes.




Thank you,


Terry N.


If you have any questions, please do not hesitate to contact us.


Bring the Web Closer to Your World




**Please do not modify the subject line of this email**
**The subject line provides tracking for this request**
**To reopen a ticket, just reply back to the email**


Thank you for contacting AdvancedNetworkHosts.com
AdvancedNetworkHosts.com
Phone: 1-800-955-2841
Fax: 1-630-469-9737


So, apparently they have not holes. I guess that means I was at fault. :x

does your image uploader let people upload scripts?

without knowing anything about it, that would be the first thing I'd check.

It's pretty difficult to hack a website unless the website itself has vulnerabilities. I know these things because it happened to me. Now I'm a paranoid freak about my web development.

unless the server itself is vulnerable - like if you are running a very old version of PHP or whatever where you could just type in the right thing into the URL and do all kinds of nasty things.

and you don't even have to know what you're doing. when a new version comes out to fix a security problem, how to take full advantage of that problem quickly becomes public knowledge that can then be exploited by a 12 year old retard who just happened to be in the right chatroom. :(

especially if you use open-source software, you HAVE to keep it up-to-date, which is a problem when you don't have that kind of access to your web host's server and they don't see it as a big deal. :/

i've been paranoid as hell about security ever since a buddy called me up from an old job and in the course of conversation mentioned an old script i put on our server had been hijacked as a spam-remailer. >:

lol he did it again. :(

http://digitalhorse.net/

Aw, he was nice enough to leave his email address.

Quit leaving that shit up. Take it down right away. Fuck.

well this time i cant get into my cpanel, so i have to wait for my host. :(

Don't you get direct FTP access?

Yes, but im not able to use any FTP software atm, and I didn't realize it 'til this morning. :o

I was planning on changing hosts soon, anyway. And, since this is the second time it's happened, I mine as well change now. Any suggestions on a new host?

www.fuitadnet.com

:o