The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Compromised Server Problem

Discussion in 'Security' started by Donov, Jan 25, 2016.

  1. Donov

    Donov Member

    Joined:
    Jan 19, 2016
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    United Kingdom
    cPanel Access Level:
    Root Administrator
    A friend of mine has just had his server hacked.

    His sudo access has been removed,
    His server refuses SSH login using root password.
    The WHM and cPanel login screens have been hijacked and had a index.htm file added.
    (We still have a root password which we believe is correct)

    Can anyone suggest anything for this, except getting out a hammer :D
    Perhaps theres a way to bypass the index.htm file...
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,765
    Likes Received:
    662
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    I suggest consulting with your hosting provider or a qualified system administrator to determine the best course of action. It's likely you will need to setup a new server and transfer the accounts over to it after regaining access. Here's a list of system administration services:

    System Administration Services

    Thank you.
     
Loading...

Share This Page