• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 246
  • Last Modified:

IIS5.0 hacked

Our IIS5.0 running on 2000serversp4 was hacked. The hackers put a d.text file in and overwrote the html files of each domain names.
It says you've been hacked by cyberlords-Islam.. then a file says it ownz ,,,,
we have applied fixes problem still there. HOw can we restore the files?
thx
0
ungeek
Asked:
ungeek
  • 2
2 Solutions
 
Chris DentPowerShell DeveloperCommented:

Restore them from a backup or replace them from the original site files which presumably someone has.

Chris
0
 
ungeekAuthor Commented:
Backup was comprised and the client didn't save site files.
0
 
Chris DentPowerShell DeveloperCommented:

Hmm... Undelete type tools may help depending on how the files were replaced (that is, modified or replaced). It may be worth a try. It's pretty much all that's left really. Clients really really should maintain full copies of their sites, hosting a site is always a risk no matter how up to date and secure the platform is.

Chris

0
 
r-kCommented:
Try GetDataBack (http://www.runtime.org/gdb.htm)
The free demo version will at least tell you what can be recovered.
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now