我的FTP无法连接上.GD给的回帖我不知道什么意思

maoyaa

求大神指教.

maoyaa

我的FTP无法连接上, 给GD发了ticket后 他回复我
:
Thank you for contacting Online Support. I understand you have not been able to connect to your site using FTP. Thank you for bringing this to our attention. The issue you have been experiencing with FTP is being worked on by our technicians. Service will return to normal as soon as possible. We are unable to give a specific time frame for this resolution. We appreciate your patience and understanding in this matter and we apologize for any inconvenience.

是不是说是他们的错呢? 该怎么解决?

另外,问个题外话. 我搞了个discuz x1.5 的论坛, 因为有漏洞.被攻击.  GD给我发信. 我看不懂. 是不是没有解决就要关掉我的论坛?
麻烦各位老大看看. 谢谢啦. 另外 如果我如果关闭站点话 还不会再收攻击?? 希望大家不吝赐教. 谢谢!!!
Dear Sir/Madam,

Regarding your hosting account metpop.com:

The metpop.com web site has been found to be compromised which is a violation of section 3 "Your Obligations" of Go Daddy's Web Hosting and Virtual Dedicated Hosting Service Agreement.

The relevant passage of this agreement has been provided below:
"You may not use Go Daddy's servers and Your web site as a source, intermediary, reply to address, or destination address for mail bombs, Internet packet flooding, packet corruption, denial of service, or other abusive activities. Server hacking or other perpetration of security breaches is prohibited and Go Daddy reserves the right to remove sites containing information about hacking or links to such information."
Go Daddy's "Web Hosting and Virtual Dedicated Hosting Service Agreement" is located at the following URL: https://www.godaddy.com/agreements/showdoc.aspx?pageid=HOSTING_SA

This situation has resulted in a potential security threat to Go Daddy's network and the security we provide to other customers. It appears that this abusive action may have been the result of your server becoming compromised and ultimately exploited by a third party. Upon detection of this problem Go Daddy's Security Operations Center requested that Go Daddy's Advanced Hosting Team alert you of this action in the hope that you can resolve the issue.

*** IMPORTANT ***

Due to the serious nature of this malicious action, your site is scheduled to be suspended if you do not take immediate action. This suspension will take place on January 11, 2012 and will occur if either a repeat occurrence of the abuse is, at any time, detected OR you fail to reply to this message.

****************

Go Daddy's security team has collected the following information to assist you in troubleshooting this issue:

Your hosting account was compromised on or before January 5, 2012 through an anonymous upload script which was used to upload malicious content to this hosting account.  Our security team has removed the found malicious content.  You will need to review all site and database content to ensure it has not been further infected.  You should also update your scripts to ensure they restrict the types of files that can be uploaded to only allow files such as .jpg or .gif.
Attack logfiles:
2012-01-06 16:00:58 W3SVC6762174 POST /bbs/api/trade/notify_credit.php - 80 173.245.48.132 - - 200 3120 578
2012-01-06 16:00:59 W3SVC6762174 POST /bbs/api/trade/notify_credit.php - 80 173.245.48.132 - - 200 699 578
2012-01-06 16:00:59 W3SVC6762174 POST /bbs/api/trade/notify_credit.php - 80 173.245.48.132 - - 200 699 578
2012-01-06 16:01:00 W3SVC6762174 POST /bbs/api/trade/notify_credit.php - 80 173.245.48.132 - - 200 699 578
2012-01-06 16:01:01 W3SVC6762174 POST /bbs/api/trade/notify_credit.php - 80 173.245.48.132 - - 200 699 578
2012-01-06 16:01:01 W3SVC6762174 POST /bbs/api/trade/notify_credit.php - 80 173.245.48.132 - - 200 699 578
2012-01-06 16:01:02 W3SVC6762174 POST /bbs/api/trade/notify_credit.php - 80 173.245.48.132 - - 200 699 578
2012-01-06 16:01:03 W3SVC6762174 POST /bbs/api/trade/notify_credit.php - 80 173.245.48.132 - - 200 699 578
2012-01-06 16:01:05 W3SVC6762174 POST /bbs/api/trade/notify_credit.php - 80 173.245.48.132 - - 200 3120 578
2012-01-06 16:01:05 W3SVC6762174 POST /bbs/api/trade/notify_credit.php - 80 173.245.48.132 - - 200 3120 578
2012-01-06 16:01:06 W3SVC6762174 POST /bbs/api/trade/notify_credit.php - 80 173.245.48.132 - - 200 699 578
2012-01-06 16:02:21 W3SVC6762174 POST /bbs/api/trade/notify_credit.php - 80 173.245.48.132 - - 200 3120 578
2012-01-06 16:06:09 W3SVC6762174 POST /bbs/member.php mod=register 80 173.245.48.29 Mozilla/4.0 http://www.metpop.com/bbs/member.php?mod=register 200 5394 1076

Files Removed by anti-virus:
D:\Hosting\2954853\html\wp-content\themes\mycuisine\cache\d5e4980b2bf053ccf7327a9272edcc39.php

This matter can be closed by simply responding to this notice with the following:

1. A statement that you have reviewed and agree to abide by the terms of the "Web Hosting and Virtual Dedicated Hosting Service Agreement," and
2. A statement that you have removed any malicious content residing on your web site, and
3. A statement that you agree to secure your web site in such a way as to ensure that there is not a re-occurrence of this issue in the future.

After we receive your reply with these statements we consider the matter resolved and continue to monitor the situation. (We reserve the right to suspend the site again if a repeat occurrence of this security violation is discovered.)
If you have questions about this matter, you may contact us by replying to this email or by calling 480-505-8871.

We appreciate your cooperation in this matter.

Hosting Support Team

maoyaa

暮木娃娃 发表于 2012-1-8 09:16 AM
第一个是说他们的工作人员正在解决，但不能给出具体时间，请你耐心等待
第二个是说你的网站被恶意攻击，这 ...

谢谢你!!
另外我解决问题后
只要就原来那份邮件直接回复就好吗?
还是要重新发ticket? 谢谢!

lwbo1987

回复也可以，重新发也可以的

暮木娃娃

第一个是说他们的工作人员正在解决，但不能给出具体时间，请你耐心等待
第二个是说你的网站被恶意攻击，这个违反了Godaddy的虚拟主机服务条款，会影响到Godaddy服务器安全和其他用户的安全，所以如果在2012年1月11日之前你不能解决这个问题，Godaddy将暂停你的网站。
在2012.1.5号或者之前通过匿名上传脚本上传了而已内容，你要检查你所以网站内容，确保没有进一步的感染。
你解决了问题之后，给出保证，然后联系Godaddy客服。