Hi,

I have a problem. My website is being hacked using some sort of hacking kit. There are a few ASP files being uploaded to my images folder(not sure how) and then they can be opened and view all my files on my site. These files can be editted/deleted/uploaded/downloaded etc.

The files are named:

swart.asp
cyberspy.asp
r57.asp

and a few more.

The passwords for my site are kept secure, are long and contain numbers and letters etc and have never been given out.

How are these files being uploaded without this information?

Hope you can help :)

Many thanks

Joe

Check with your web host. They need to know about this anyway, as it affects server security, plus they're in the best position to help you sort it out.

Hi,

Thanks for the reply :)

I have already done that. The said they are looking into it but they think it maybe a loop hole in one of my scripts.

I use ASP and Javascript if thats any help

Many thanks

Joe

If it's a loophole in one of your scripts, it might be like looking for a needle in a haystack. :( Do you have any scripts that require user input? That would probably be the place to start looking yourself.

Could be in your image (or other file) upload script that doesn't check for what kind of file extension is being uploaded, if you have that...

I agree. If you have an image upload script then it should be coded to validate images only. Either by file extension or content-type etc.

If it is a security hole on another domain then it's definately down to your host to sort it.

This is like calling a doctor on the phone and asking 'do you know what's wrong with me'...
You could at least give us a link.

Maybe that is done thru your own computer. Can you check the time, these operations happen? If your computer belongs to a network and can be accessed thru that network, I think you should you network especially if you usually do some remote connection to another network with local recources enabled.
I hope this helps
Damod