Help My DataBase Hacked

[xxman]

How To Block Hackers From Connect With My DataBase

[MentaL]

[muzic25]

firstly block 1433 port in the router(if you use) , what website do you use and what serverfile?

Tapatalkkal küldve az én ALE-L21 eszközömről

[xxman]

im not open port 1433 in router i use mvcore website files and server file is scf

[EmmaDCG]

Usas XAMPP??

[xxman]

yes im use xampp

[Taiga]

We cannot help you with this.

Why are you even using Xampp, there is a discussion tread dedicated to why not to use it. It is a development environment. Simply do not use a development environment in production.

Make a back-up and properly install a database and webserver.

[xxman]

ok thanks alot but i only can use xampp

[muzic25]

im not open port 1433 in router i use mvcore website files and server file is scf

the problem is the website :( mvcore has to many security holes i don't recommend that cms try using mucore or dmn cms

Tapatalkkal küldve az én ALE-L21 eszközömről

[KarLi]

as i remember MVCore has somewhere a leak to hack the DB as i remember, someone fixed it or so u better ask in the mvcore thread or search there.
if u use xampp delete unnecessary folders like phpmyadmin/ mysql/ webdav/ etc etc that are not needed

[xxman]

Thanks Karli Can You Tell ME All unnecessary folders

- - - Updated - - -

Thanks muzic25 If You Have Links Please Share

[ScriptKid]

MVCore has an open hole for hackers out there but i think the hacker goes to your SQL by brute forcing it or bypassing it that's why do not use xampp

Also, you must fix the range of your 1433 port firewall

here's a link : http://forum.ragezone.com/f192/stop-...xampp-1135520/

[xxman]

yes it he got all my database info

[ScriptKid]

too bad and next time make a job for SQL back up everyday :)

[xxman]

yes i will now i have to wipe i will change website files

- - - Updated - - -

Thanks For Help

[ScriptKid]

anytime :) be careful next time :)

[LarvasFaint]

Edited.

[RevolGaming]

phpmyadmin, mvcore without recoding, xampp, dataserver, exdb, exploit in gs

[xxman]

i deleted them

[Masteru]

i deleted them

Dear player you are to blame if you have these problems,before you open a server you are documenting how to make security

Secure your xampp delete phpmyadmin/WebDAV/install etc then secure your website to have good security then secure your muserver/ExDB Anti SQL Injection secure sql port from sql server 1433 and now your secure

If you have router open this port example port 80/44405/55901

[Masteru]

We cannot help you with this.

Why are you even using Xampp, there is a discussion tread dedicated to why not to use it. It is a development environment. Simply do not use a development environment in production.

Make a back-up and properly install a database and webserver.

MVCore has an open hole for hackers out there but i think the hacker goes to your SQL by brute forcing it or bypassing it that's why do not use xampp

Also, you must fix the range of your 1433 port firewall

here's a link : http://forum.ragezone.com/f192/stop-...xampp-1135520/

I did not understand the fault of xampp ? if this user he does not know how to make his own security why blame xampp ?

When you open for the first time a server you have to know what security you have to do

You secure your muserver/Exdb to stop SQL injection next you need good website with good security when you use live server then you create security to xampp by delete phpMyAdmin/webdav/install etc final you secure sql server port 1433 to stop any kid,noob,hacker etc

And then attack as much as you like you will not do nothing no matter how advanced you will be

[Taiga]

I did not understand the fault of xampp ? if this user he does not know how to make his own security why blame xampp ?

Xampp is a development environment, it's even written on their website. They made it insecure to increase the development speed.

[EmmaDCG]

Sorry for may English =S

my recommendation is that you restore your operating system, because if you do not detect the shell your attacker uses, the attacker will continue to damage your server


reinstall your XAMPP and delete the Folders
webdav
webalizer
MercuryMail
phpMyAdmin
FileZillaFTP

[KarLi]

also delete FileZillFTP then sendmail folder too, what i do is backup the folders in .RAR
then delete 1 by 1 and test if website is working properly untill i figured out what folders are required.

[RevolGaming]

also delete FileZillFTP then sendmail folder too, what i do is backup the folders in .RAR
then delete 1 by 1 and test if website is working properly untill i figured out what folders are required.

Lol, you made my day with this my friend :D

Guys simple just use a good webhost or nginx.

[Masteru]

Xampp is a development environment, it's even written on their website. They made it insecure to increase the development speed.

I understood this xampp is development but it does not mean it has no good security come on just because some people do not know how to make their security does not mean it is Xampp's fault

As I said and repeat the fault belongs to you before you open an muonline server, you are documenting how to make security so there's no problem with hackers

If you open muserver with 0 security,website with bad security,xampp with bad security or 0 protection for your sql server then normally you will have problems with hackers