Information
Removal - 1
Removal - 2
Removal - 3
Pictures
Feedback
Useful Links

Pharmacy Alert Security Team
Information

Welcome

You have come here to learn more information about the Pharmacy Alert Security Team.

You have received an alert via email, advising that your server has been compromised. At this web site you will learn what the pharmacy hacker does, and how to remove the intruder's code from your server.

Site server addresses abused:  218.21.90.7 - 82.98.201.40 - 59.45.13.253 - 68.73.223.5 - 60.2.225.106 - 80.98.203.161 - 200.62.226.85 - 200.160.91.198 -  60.8.49.122 - 222.173.251.30 - 203.97.108.117 - 201.236.86.
253-  24.232.38.38 -  220.132.53.217- 213.85.227.50 - 194.9.76.29 -  59.120.127.152 -  85.136.20.235 - 200
.115.166.50 -  200.122.158.15

Image server addresses abused:  218.106.165.95 - 210.170.77.210 - 194.108.160.12268.12.69.27 - 89.32.106.38 - 213.240.234.132 - 81.171.22.142 -   87.106.8.105 - 82.242.12.102 - 80.86.83.166 - 82.149.224.231 - 137.207.234.52 - 204.8.226.154 - 194.145.201.202 - 72.22.82.169

Domain name server addresses abused in Oct 2007: 58.61.154.58 - 58.83.12.11 - 59.116.184.115 - 61.10.122.23 - 61.167.116.129 - 61.189.175.36 - 61.64.210.145 - 61.92.129.101 - 64.212.191.98 - 69.233.139.181 - 76.188.33.146 - 77.41.83.30 - 80.191.123.206 - 82.131.60.172 - 83.15.82.74 - 84.47.153.163 - 84.60.169.229 - 85.136.20.235 - 85.176.247.1 - 87.68.56.115 - 89.145.232.30 - 89.233.197.147 - 116.199.136.5 - 121.121.121.121 - 121.137.164.75 - 122.16.166.219 - 196.28.224.82 - 200.175.203.3 - 200.205.214.188 - 200.215.102.156 - 200.55.195.198 - 200.60.230.107 - 200.99.139.250 - 201.236.86.60 - 201.36.72.254 - 202.162.138.71 - 203.168.237.29 - 203.174.60.36 - 210.68.253.50 - 210.96.194.180 - 213.141.158.45 - 218.190.213.161 - 218.254.190.187 - 219.237.229.198 - 219.254.39.54 - 221.122.64.36 - 221.122.64.37 - 221.127.156.128 - 221.127.157.130 - 221.127.157.173 - 221.127.158.195 - 221.127.174.48 - 221.127.213.233 - 221.127.35.127 - 222.166.140.199 - 222.175.50.10 

To remove the infection, first change the root and administrator passwords to make the system more secure. Use complex passwords. Then shut down the server, and restart it. The infection is in memory, and will not reload. However, you may have a problem changing the password. See the next page for more specific instructions.

> Removal Page 1


This information is provided by the Pharmacy Alert Security Team. Our aim is to remove these criminal spammers from the Internet by providing wide exposure of their criminal activities. 
 


 


site  zoomshare