egghelp/eggheads community

My server has been hacked

2004-12-16T02:50:02-04:00

Mouse, why are you bringing up such an old topic.. The guy isn't even checking this forum for an answer anyhow.

Statistics: Posted by metroid — Thu Dec 16, 2004 2:50 am

My server has been hacked

2004-12-16T01:58:11-04:00

eggdrop is IRC BOT that help the channel operators channel their channel.

psybnc is like irc proxy.

Statistics: Posted by Mouse — Thu Dec 16, 2004 1:58 am

My server has been hacked

2004-10-21T06:34:06-04:00

delete them?
geez, ur not gonna catch AIDS from an eggdrop, don't freak

Statistics: Posted by YooHoo — Thu Oct 21, 2004 6:34 am

My server has been hacked

2004-10-20T17:34:18-04:00

The "psy" folder has nothing to do with eggdrop! It's your psyBNC folder and it's written in Perl anyway, not TCL.

The "data" folder also probably has nothing to do with eggdrop. Type ps x on your shell to see all running processes, you might get an idea of what is using that folder.

Statistics: Posted by Alchera — Wed Oct 20, 2004 5:34 pm

My server has been hacked

2004-10-20T11:32:23-04:00

Check the bash or log files to see who is fiddling and messing around.

Statistics: Posted by awyeah — Wed Oct 20, 2004 11:32 am

My server has been hacked

2004-10-20T10:28:40-04:00

According to a previous post of yours you had eggdrop up and running with a slight problem which you have resolved.

I'm not sure I understand what you mean...

I have never posted on this message board before and I DON'T even know what eggdrop is or what it can do.

Please explain the "couple of eggdrop directories" statement.

All I know is that I have suddenly found 3 directories on my server called:
Test
.psy
.data

All 3 include a lot of files that have something to do with eggdrop.

Do you or anyone else have an idea on how it could get there, because I have NOT installed it?

And can you explain to me what the hacker who has installed eggdrop will be able to do with my server?

Thanks for your interrest...

By the way about the PHP script problem I belief it got something to do with SQL Injections and not eggdrop as suggested earlier, so I guess this mystery has been solved

Statistics: Posted by Guest — Wed Oct 20, 2004 10:28 am

My server has been hacked

2004-10-19T20:15:31-04:00

According to a previous post of yours you had eggdrop up and running with a slight problem which you have resolved. Please explain the "couple of eggdrop directories" statement.

Statistics: Posted by Alchera — Tue Oct 19, 2004 8:15 pm

My server has been hacked

2004-10-19T17:28:24-04:00

Hi,

I have no clue about what eggdrop is or what it can do but I have just found a couple of eggdrop directories on my server.

I have NOT installed this!

Does anyone have an idea on how it could get there?

I have been told that eggdrop can be installed through a php script or something like that, if the script has a bug. Can anyone here confirm that??

If it’s true, how can I prevent it from happening again?

With eggdrop installed on my server what will the hacker be able to do?

Any help will be useful…

Thanks.

Statistics: Posted by Guest — Tue Oct 19, 2004 5:28 pm