Im seeing a lot of virus talk

NY Jester · 2008-04-02, 06:34 AM

Or moreso Trojans being installed on ST sites...cant their be a fix or a patch? Doesnt seem like its that hard a deal to add the code..exposing an exploit.

And Im far from a TGP guru but how does one go about cleaning that crap out?

papagmp · 2008-04-02, 07:23 AM

Most of what I've seen are script exploits. There are steps we should all take on our servers to tighten security. Our hosting company was very helpful when we got hit - lucky for us, we saw the attempts before they actually cracked us - hopefully we'll be as lucky next time they try. Actually sounds like it was the same scum that hit PClit this week.

pc · 2008-04-02, 09:05 PM

This one I had i was esy to locate,even with huge amount of templates.Edit Plus is good enough with good antivirus software.
Anyway I'm making a small list of weird emails and domains that are suspicious|confused|

I think main idea is to tell everyone at least here on this board that it happend to you ,so others can have they eyes open for this kind of sh*t

Toby · 2008-04-02, 09:17 PM

Cleaning it up, in my case was a matter of downloading the altered files, removing the inserted code then reuploading the files. If you were good with server side search & replace functions you could do the job without the download/upload.

TGP's have been a common target since template driven sites must have file permissions set so that the script can rewrite the files when updates are done. In most cases the security hole the hacker uses is in an entirely separate script.

2008-04-02, 06:34 AM	#1
NY Jester ICQ:147079406 Join Date: Oct 2007 Location: RockMEHardplace Posts: 2,996	Im seeing a lot of virus talk Or moreso Trojans being installed on ST sites...cant their be a fix or a patch? Doesnt seem like its that hard a deal to add the code..exposing an exploit. And Im far from a TGP guru but how does one go about cleaning that crap out? __________________ The Sexy Side of Porn

2008-04-02, 07:23 AM	#2
papagmp That'll teach you to leave your sister unattended..... Join Date: Jan 2007 Location: Colorado Springs Posts: 1,803	Most of what I've seen are script exploits. There are steps we should all take on our servers to tighten security. Our hosting company was very helpful when we got hit - lucky for us, we saw the attempts before they actually cracked us - hopefully we'll be as lucky next time they try. Actually sounds like it was the same scum that hit PClit this week. __________________ Submit: OutlawFreePorn

2008-04-02, 09:17 PM	#4
Toby Lonewolf Internet Sales Join Date: Mar 2005 Location: Houston Posts: 4,826	Cleaning it up, in my case was a matter of downloading the altered files, removing the inserted code then reuploading the files. If you were good with server side search & replace functions you could do the job without the download/upload. TGP's have been a common target since template driven sites must have file permissions set so that the script can rewrite the files when updates are done. In most cases the security hole the hacker uses is in an entirely separate script. __________________ Latex Vixens Babes In Boots Well Heeled Women Dressing For Sex Stocking Vixens

2008-04-02, 09:05 PM	#3
pc Shift Out / X-On Join Date: Jul 2007 Location: unknown Posts: 2,298	This one I had i was esy to locate,even with huge amount of templates.Edit Plus is good enough with good antivirus software. Anyway I'm making a small list of weird emails and domains that are suspicious\|confused\| I think main idea is to tell everyone at least here on this board that it happend to you ,so others can have they eyes open for this kind of sh*t