I noticed this week while downloading site stats that there have been page request for some of the payment plugin files. This includes: linkpoint/linkpoint.inc.php secpay/config.inc.php I don't use these payment methods on my site. Is it possible that someone is trying to hack these plugins? If so, how do I discover their work and undo it? Is it possible to remove these options from my aMember install? I don't keep CC-info on my server. However, I don't want the site to be taken over or mined if I ever do. Any input or experiences with this is most appreciated. Thanks.
Take a look at this page: http://www.amember.com/p/Main/SecurityNote04 According to that security note, the secpay and some other payment plugins in the older versions of aMember apparently had some security holes so I guess some wanna-be-hacker is trying their luck. If you are not using those plugins, it's probably safe to simply physically delete them. As far as I know it was only a problem if you had PHP configured improperly (e.g. register globals set to "on") so hardenning PHP should help. Tomas