hacked need help

**moobymoo** · 03-11-2008 06:50 PM

i have been recently hacked and seems like someone uploaded some mocks and shell script on server and then had added some user with root priviligious

i did remove script and mocks from server..but still one of my account get it's ads changed on a specific time how can it be possible??
is there anyway to secure my server and then track down that problem..some days back i had server crash due to that

**Infopro** · 03-11-2008 08:04 PM

If he got root access, its already too late. Time to go to plan B I would think.

**moobymoo** · 03-11-2008 08:23 PM

what is the plan b

**Silver_2000** · 03-11-2008 11:59 PM

usually it means reinstall of the OS

**mitul** · 03-12-2008 01:26 AM

To be on safer side its better to reload OS.

**moobymoo** · 03-12-2008 03:21 AM

that's what i don't want..i mean reinstall of os..any other way for it??? or that is there anyone who can help

**Specks** · 03-12-2008 01:16 PM

If your box was pwned then its better to reinstall OS than to have to deal with getting out all the root kits he installed to stay in your box.

**compunet2** · 03-12-2008 06:09 PM

No one ever wants to reinstall the OS, but if the boxed is owned then you wont have a choice. Hope you have backups...

LinkBack

Thread Tools

hacked need help

Have I been hacked?

Did I just get hacked?

HACKED again?!?!

Getting hacked!

Hacked Help Me Please =*(