Shoutbox

chris help plz (MyBB hacked) - Printable Version

-Shoutbox (https://shoutbox.menthix.net)
+-- Forum: MsgHelp Archive (/forumdisplay.php?fid=58)
+--- Forum: Skype & Technology (/forumdisplay.php?fid=9)
+---- Forum: Tech Talk (/forumdisplay.php?fid=17)
+----- Thread: chris help plz (MyBB hacked) (/showthread.php?tid=82265)
chris help plz (MyBB hacked) by Jarrod on 03-11-2008 at 07:32 AM

i was using a "MyBB" forum for my mum's website and some one hacked it,
it is possible i made the admin password a bit to easy, but i think the php was actually exploited. how do i fix it, and how do i prevent it

:$
http://home.exetel.com.au/goldenleads/benatural/forum/index.php

RE: chris help plz by Th3rmal on 03-11-2008 at 07:42 AM

quote:
Originally posted by xen0h
http://home.exetel.com.au/goldenleads/benatural/forum/index.php
that made my browser go crazy
RE: chris help plz by ShawnZ on 03-11-2008 at 08:02 AM

were you using mybb 1210?

edit: oh, nevermind. you were using 1209. you were hacked.

RE: chris help plz by Jarrod on 03-11-2008 at 08:04 AM

quote:
Originally posted by mybb header

<?php
/**
* MyBB 1.2
* Copyright © 2006 MyBB Group, All Rights Reserved
*
* Website: http://www.mybboard.net
* License: http://www.mybboard.net/eula.html
*
* $Id: index.php 3030 2007-04-26 00:19:47Z Tikitiki $
*/

RE: chris help plz by Jarrod on 03-11-2008 at 08:02 PM

DZ help would have been nice,
also i put an index.html in the forum directory so the hacked site is only viewable using index.php

RE: chris help plz by WDZ on 03-11-2008 at 08:37 PM

quote:
Originally posted by xen0h
how do i fix it
Depends how much damage was done by the script kiddie.

It looks like they overwrote your inc/config.php, so first delete that file and upload a backup or a fresh copy. There might be other damaged stuff, but I can't tell.

quote:
and how do i prevent it
Always keep your forum software up-to-date.
RE: chris help plz (MyBB hacked) by MeEtc on 03-11-2008 at 10:06 PM

Yeah, DZ, keep your forum software up to date 8-)

RE: chris help plz (MyBB hacked) by Voldemort on 03-11-2008 at 10:11 PM

isn't it liek, ddosing some server?