https://proxy2.de/forum/posts/list/3.php JForum - http://www.jforum.net http://www.mavideniz.org/ .- I dont know these mean fellows, or how they accessed the files on my site to enable that process.

The Guestbook script was installed via the CPanel. What can I do to get rid of the malicious script doing the redirection? I am new to PHP, and so I dont know where to look. I just could not locate anything alluding to that site in the index.php of the Guestbook.
Please urgently help, as the website part of a big University website.]]> https://proxy2.de/forum/posts/preList/4336/14694.php https://proxy2.de/forum/posts/preList/4336/14694.php GMT
http://proxy2.de/forum/viewtopic.php?p=14274#14274]]> https://proxy2.de/forum/posts/preList/4336/14711.php https://proxy2.de/forum/posts/preList/4336/14711.php GMT Thanks for that response. I had actually just managed to solve the problem.
Below is a comment I just made in another forum where I had also requested for help. The concerned database table, as also suggested in your forum articles was "book_data".

I did actually go back to the database so I could prove to you what I had said, that there was no suspicious entry! This time, though, I opened the concerned database table in PHPmyAdmin, in a different way, so it showed the entries in detail, and the re-directing script was hidden. I deleted and everything is now okay. Actually those bastards had put their script there as a "Comment" to the last visitors entry! For that reason, even the administration page of the Guestbook, where you could delete/edit the entries was not accessible as the same script would redirect me to the hackers page!



Is there anyway to prevent such??
Regards]]> https://proxy2.de/forum/posts/preList/4336/14722.php https://proxy2.de/forum/posts/preList/4336/14722.php GMT https://proxy2.de/forum/posts/preList/4336/14724.php https://proxy2.de/forum/posts/preList/4336/14724.php GMT

Is there anyway to prevent such??
[/quote]

I don't know - I can't find your guest book - the language is not something I understand on your site and you don't have it set up in a way that is intutive for me to find.

If you have version 2.2 - make certain to use the patch to fix the exploitable hole that allows backdoor access to the admin.

And as Carbonize suggests, turn off HTML if you have it enabled on your guest book - perhaps password your comments - and as I had suggested in the other thread add those "words" to the curse words portion in the admin section to prevent people from even typing them into your guestbook.

You can do these things if you have 2.2 or 2.3.1 versions of the guestbook.]]> https://proxy2.de/forum/posts/preList/4336/14735.php https://proxy2.de/forum/posts/preList/4336/14735.php GMT https://proxy2.de/forum/posts/preList/4336/14737.php https://proxy2.de/forum/posts/preList/4336/14737.php GMT https://proxy2.de/forum/posts/preList/4336/14744.php https://proxy2.de/forum/posts/preList/4336/14744.php GMT