Est-ce que mon site est piraté (Bluehost)?

Je lance un site Web simple sur Bluehost et j'ai besoin d'utiliser des scripts Python personnalisés, j'ai donc créé un dossier cgi-bin dans le directory de mon site et ajouté mes files cgi python. Chaque fois que j'ai essayé d'utiliser une request AJAX pour utiliser les scripts cgi, cependant, le server a continué à renvoyer une erreur de 500.

C'est ce que montre le journal des erreurs principal :

[Sun Nov 30 15:49:15 2014] [error] [client 91.121.209.34] ModSecurity: Access denied with code 406 (phase 1). Pattern match "Mozilla\\\\/5\\\\.0 \\\\(Windows; U; Windows NT 5\\\\.1; ru; rv:1\\\\.9\\\\.0\\\\.2\\\\) Gecko\\\\/2008091620 Firefox\\\\/3\\\\.0\\\\.2" at REQUEST_HEADERS:User-Agent. [file "/etc/httpd/modsecurity.d/eig_rules.conf"] [line "58"] [id "900228"] [msg "Wordpress Brute Force :: Firefox 8"] [hostname "anewroundtable.com"] [uri "/wp-login.php/"] [unique_id "VHue6zJX@FcAADAOSWgAAACA"] [Sun Nov 30 15:49:16 2014] [error] [client 91.121.209.34] ModSecurity: Access denied with code 406 (phase 1). Pattern match "Mozilla\\\\/5\\\\.0 \\\\(Windows; U; Windows NT 5\\\\.1; ru; rv:1\\\\.9\\\\.0\\\\.2\\\\) Gecko\\\\/2008091620 Firefox\\\\/3\\\\.0\\\\.2" at REQUEST_HEADERS:User-Agent. [file "/etc/httpd/modsecurity.d/eig_rules.conf"] [line "58"] [id "900228"] [msg "Wordpress Brute Force :: Firefox 8"] [hostname "anewroundtable.com"] [uri "/wp-login.php/"] [unique_id "VHue7DJX@FcAADAOSWsAAACD"] [Sun Nov 30 15:49:16 2014] [error] [client 91.121.209.34] ModSecurity: Access denied with code 406 (phase 1). Pattern match "Mozilla\\\\/5\\\\.0 \\\\(Windows; U; Windows NT 5\\\\.1; ru; rv:1\\\\.9\\\\.0\\\\.2\\\\) Gecko\\\\/2008091620 Firefox\\\\/3\\\\.0\\\\.2" at REQUEST_HEADERS:User-Agent. [file "/etc/httpd/modsecurity.d/eig_rules.conf"] [line "58"] [id "900228"] [msg "Wordpress Brute Force :: Firefox 8"] [hostname "sunnymedias.com"] [uri "/wp-login.php/"] [unique_id "VHue6zJX@FcAADAOSWoAAACC"] [Sun Nov 30 15:49:16 2014] [error] [client 91.121.209.34] ModSecurity: Access denied with code 406 (phase 1). Pattern match "Mozilla\\\\/5\\\\.0 \\\\(Windows; U; Windows NT 5\\\\.1; ru; rv:1\\\\.9\\\\.0\\\\.2\\\\) Gecko\\\\/2008091620 Firefox\\\\/3\\\\.0\\\\.2" at REQUEST_HEADERS:User-Agent. [file "/etc/httpd/modsecurity.d/eig_rules.conf"] [line "58"] [id "900228"] [msg "Wordpress Brute Force :: Firefox 8"] [hostname "anewroundtable.com"] [uri "/wp-login.php/"] [unique_id "VHue7DJX@FcAAC34XhwAAAHN"] [Sun Nov 30 15:49:16 2014] [error] [client 91.121.209.34] ModSecurity: Access denied with code 406 (phase 1). Pattern match "Mozilla\\\\/5\\\\.0 \\\\(Windows; U; Windows NT 5\\\\.1; ru; rv:1\\\\.9\\\\.0\\\\.2\\\\) Gecko\\\\/2008091620 Firefox\\\\/3\\\\.0\\\\.2" at REQUEST_HEADERS:User-Agent. [file "/etc/httpd/modsecurity.d/eig_rules.conf"] [line "58"] [id "900228"] [msg "Wordpress Brute Force :: Firefox 8"] [hostname "sunnymedias.com"] [uri "/wp-login.php/"] [unique_id "VHue7DJX@FcAADAOSW0AAACF"] [Sun Nov 30 15:49:17 2014] [error] [client 91.121.209.34] ModSecurity: Access denied with code 406 (phase 1). Pattern match "Mozilla\\\\/5\\\\.0 \\\\(Windows; U; Windows NT 5\\\\.1; ru; rv:1\\\\.9\\\\.0\\\\.2\\\\) Gecko\\\\/2008091620 Firefox\\\\/3\\\\.0\\\\.2" at REQUEST_HEADERS:User-Agent. [file "/etc/httpd/modsecurity.d/eig_rules.conf"] [line "58"] [id "900228"] [msg "Wordpress Brute Force :: Firefox 8"] [hostname "anewroundtable.com"] [uri "/wp-login.php/"] [unique_id "VHue7TJX@FcAAC34Xh8AAAHK"] [Sun Nov 30 15:49:17 2014] [error] [client 91.121.209.34] ModSecurity: Access denied with code 406 (phase 1). Pattern match "Mozilla\\\\/5\\\\.0 \\\\(Windows; U; Windows NT 5\\\\.1; ru; rv:1\\\\.9\\\\.0\\\\.2\\\\) Gecko\\\\/2008091620 Firefox\\\\/3\\\\.0\\\\.2" at REQUEST_HEADERS:User-Agent. [file "/etc/httpd/modsecurity.d/eig_rules.conf"] [line "58"] [id "900228"] [msg "Wordpress Brute Force :: Firefox 8"] [hostname "sunnymedias.com"] [uri "/wp-login.php/"] [unique_id "VHue7TJX@FcAADAOSW8AAACH"] [Sun Nov 30 15:49:17 2014] [error] [client 91.121.209.34] ModSecurity: Access denied with code 406 (phase 1). Pattern match "Mozilla\\\\/5\\\\.0 \\\\(Windows; U; Windows NT 5\\\\.1; ru; rv:1\\\\.9\\\\.0\\\\.2\\\\) Gecko\\\\/2008091620 Firefox\\\\/3\\\\.0\\\\.2" at REQUEST_HEADERS:User-Agent. [file "/etc/httpd/modsecurity.d/eig_rules.conf"] [line "58"] [id "900228"] [msg "Wordpress Brute Force :: Firefox 8"] [hostname "anewroundtable.com"] [uri "/wp-login.php/"] [unique_id "VHue7TJX@FcAADAOSXEAAACJ"] [Sun Nov 30 15:49:17 2014] [error] [client 91.121.209.34] ModSecurity: Access denied with code 406 (phase 1). Pattern match "Mozilla\\\\/5\\\\.0 \\\\(Windows; U; Windows NT 5\\\\.1; ru; rv:1\\\\.9\\\\.0\\\\.2\\\\) Gecko\\\\/2008091620 Firefox\\\\/3\\\\.0\\\\.2" at REQUEST_HEADERS:User-Agent. [file "/etc/httpd/modsecurity.d/eig_rules.conf"] [line "58"] [id "900228"] [msg "Wordpress Brute Force :: Firefox 8"] [hostname "sunnymedias.com"] [uri "/wp-login.php/"] [unique_id "VHue7TJX@FcAAC34XiEAAAHI"] 

Sur la base de ce journal des erreurs, est-ce que je peux supposer que mon site obtient une police brute piratée? Cela s'affiche lorsque mon site n'est pas opérationnel. J'ai supprimé le site du directory de files en raison de la peur des pirates, mais cela se manifeste toujours. Qu'est-ce qui se passe exactement ici? Est-ce que mon site est piraté? Ces mêmes journaux continuent d'apparaître chaque seconde, d'ailleurs. Cependant, les noms d'hôtes changent.

Toute aide est grandement appréciée.

  • desservir des files via le sous-domaine
  • Configuration de l'IP du domaine du site Web Fallback
  • Configurer le server loin du public cible?
  • Comment lier un site Web à un service dns dynamic?
  • Plusieurs sites Web dans IIS
  • Est-il sécurisé de download le file SLS (Salt States) vers un server web
  • Moyens d'optimiser la performance du site WordPress, Amazon EC2 Apache et RDS MySQL
  • Linux - Date du dernier file modifié dans un dossier
  • Comment vérifier le code de réponse HTTP d'un site Web sécurisé avec Nagios?
  • Quel type d'URL d'attaque est-ce?
  • Comment mettre à jour un server web en direct?
  • Les astuces du serveur de linux et windows, tels que ubuntu, centos, apache, nginx, debian et des sujets de rĂ©seau.