Hi,
A developer created our website for us (blueabaco.com) and now the hosting company pulled our website because they say we were running the eggdrop bot (even though I have no idea why our developer would be using it for a shopping cart website).
Can somebody please tell me what I could search for in all the PHP files that I have to see if we really were running EggDrop? Is there some lines of code I could search for? Or a certain file name?
I have HomeSite so I can do a search through all the files, but I have no idea what I'm looking for since I'm not familiar with it. And of course, our developer has vanished into thin air.
I want to get our website up as quickly as possible, so if I can come back to the hosting company and say they made a mistake (because I think they did), then we would be great appreciated.
Thanks for any help you can provide!
Scott
This is the new home of the egghelp.org community forum.
All data has been migrated (including user logins/passwords) to a new phpBB version.
For more information, see this announcement post. Click the X in the top right-corner of this box to dismiss this message.
All data has been migrated (including user logins/passwords) to a new phpBB version.
For more information, see this announcement post. Click the X in the top right-corner of this box to dismiss this message.
Please Help -- need to find Eggdrop in code for website...
There is a probable chance that an eggdrop was running in your web-space.
Whilst it is not the normal way of doing things, it is possible to run it.
First off, I sugest you check the details on THIS page. Make sure these are your details, or some1 that has authorty over the domain name.
Second, contact the web-host, explaining you where not aware of what eggdrop is, and the fact it was running on there systems.
Explain that the developer of your site (if need be, provide receipts (you have got receipts)), had sole access to the site, and you had not conducted a security audit after regaining control from the person.
The web-host may be within there rights to prevent you ever accessing there service again, without refund, or access to your files. The web-developer was your contractor, and as such, your responsibility.
You should also ask the web-host if they can provide access to access logs, so that you can contact the authorties regarding this breach of trust.
Whilst it is not the normal way of doing things, it is possible to run it.
First off, I sugest you check the details on THIS page. Make sure these are your details, or some1 that has authorty over the domain name.
Second, contact the web-host, explaining you where not aware of what eggdrop is, and the fact it was running on there systems.
Explain that the developer of your site (if need be, provide receipts (you have got receipts)), had sole access to the site, and you had not conducted a security audit after regaining control from the person.
The web-host may be within there rights to prevent you ever accessing there service again, without refund, or access to your files. The web-developer was your contractor, and as such, your responsibility.
You should also ask the web-host if they can provide access to access logs, so that you can contact the authorties regarding this breach of trust.
-
sscottarkin
Hi ppslim,
Thank you very much for your reply. I sent an email asking our hosting provider to reinstate service and told them basically what you told me.
In the meantime, is there anyway I can determine if eggdrop is in the php pages code and/or files? Is there a string of text or a certain document type that I can look for?
Thanks!
Scott
Thank you very much for your reply. I sent an email asking our hosting provider to reinstate service and told them basically what you told me.
In the meantime, is there anyway I can determine if eggdrop is in the php pages code and/or files? Is there a string of text or a certain document type that I can look for?
Thanks!
Scott
Eggdrop is compiled software, and was creating in the C programming language, not PHP.
Some things you will need to look out for include.
It may not be a eggdrop. There are other IRC robots available, and it's just as plausable to be one of them. Eggdrop just happens to be the most well known/used robot, and as such, the provider, or your search result may be wrong.
The provider may be wrong. The provider may not be doing there homework, and may possibly blaimg you for a faulse reason.
Are you at all running a chatroom within your web-page? Either this being IRC, or a board where people can chat live? Many providers may think this is a bot, when it is not. You should check the T&S's of the provider to see if this is allowed.
Somthing else you could ask the provider. Ask for an exact copy of the files, they beleive to be a bot. These may help find your cuplpret (it will be in one of his chat-rooms).
SOmthing else you may like to ask your web-host. Allthough it may cost you, it will get you back in there good books. Ask them to do a security audit, or to recomend some1 that can do a audit on your site.
Some things you will need to look out for include.
It may not be a eggdrop. There are other IRC robots available, and it's just as plausable to be one of them. Eggdrop just happens to be the most well known/used robot, and as such, the provider, or your search result may be wrong.
The provider may be wrong. The provider may not be doing there homework, and may possibly blaimg you for a faulse reason.
Are you at all running a chatroom within your web-page? Either this being IRC, or a board where people can chat live? Many providers may think this is a bot, when it is not. You should check the T&S's of the provider to see if this is allowed.
Somthing else you could ask the provider. Ask for an exact copy of the files, they beleive to be a bot. These may help find your cuplpret (it will be in one of his chat-rooms).
SOmthing else you may like to ask your web-host. Allthough it may cost you, it will get you back in there good books. Ask them to do a security audit, or to recomend some1 that can do a audit on your site.
-
sscottarkin
Thanks ppslim & Photon! Your help was MOST appreciated!
I spoke with the hosting provider and they're letting me reinstate the account after explaining the whole situation. They did find the eggdrop application in one of the sub-directories.
Needless to say, I've changed the passwords so that won't happen anymore.
Again, THANK YOU!!
Scott
I spoke with the hosting provider and they're letting me reinstate the account after explaining the whole situation. They did find the eggdrop application in one of the sub-directories.
Needless to say, I've changed the passwords so that won't happen anymore.
Again, THANK YOU!!
Scott
