SitePoint Sponsor

User Tag List

Results 1 to 3 of 3
  1. #1
    SitePoint Guru afridy's Avatar
    Join Date
    Mar 2007
    Posts
    966
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)

    Please help me to get rid of cgi-sys/defaultwebpage.cgi

    Hai folks,

    we are a reseller provider. we are having a shared reseller hosting account at (somehostingcompany).
    recently all our client site hacked through whmcs and all home pages are defaced.
    our reseller provider not helping us to restore the hacked websites form the backup.
    so now i wanted to do somthing by myself.

    now all the hacked sites redirects to http://www.clientsite.com/cgi-sys/defaultwebpage.cgi

    I have no idea how to change this to client default index.php or index.html page

    i found the hackers default page at WHM>Account functions > template editor and deleted in our WHM Panel.
    but still those sites are redirecting to the above link only. please help me to get rid of this fefaultwebpage.cgi thing.

  2. #2
    Certified Ethical Hacker silver trophybronze trophy dklynn's Avatar
    Join Date
    Feb 2002
    Location
    Auckland
    Posts
    14,679
    Mentioned
    19 Post(s)
    Tagged
    3 Thread(s)
    afridy,

    1. Change ALL your passwords and use VERY strong passwords (http://strongpasswordgenerator.com).

    2. DELETE all files from your website(s).

    3. Upload all files from your own master copy, NOT from backups on the server!

    4. If you're using PHP as a cgi module, change to SuPHP to eliminate an attack mode.

    5. Review all your scripts for poor coding practices.

    Regards,

    DK
    David K. Lynn - Data Koncepts is a long-time WebHostingBuzz (US/UK)
    Client and (unpaid) WHB Ambassador
    mod_rewrite Tutorial Article (setup, config, test & write
    mod_rewrite regex w/sample code) and Code Generator

  3. #3
    SitePoint Guru afridy's Avatar
    Join Date
    Mar 2007
    Posts
    966
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by dklynn View Post
    afridy,

    1. Change ALL your passwords and use VERY strong passwords (http://strongpasswordgenerator.com).

    2. DELETE all files from your website(s).

    3. Upload all files from your own master copy, NOT from backups on the server!

    4. If you're using PHP as a cgi module, change to SuPHP to eliminate an attack mode.

    5. Review all your scripts for poor coding practices.

    Regards,

    DK
    Thank you for the answer and ill try your suggessions...


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •