HOT DAMN, I got hacked and legit too

W

Watch Me Sink

Madly Diligent
Joined
Dec 31, 2007
Messages
6,381
Reaction score
1
FP$
83
http://disturbedmb.com/index.php :lol: :lol: :lol:

Removing it now, so if you guys want to get a look, better do it soon. Seems like some Indonesian POS had too much time on his hands. It's funny that it took them 6 hours(!?!?!?!?!?!) to hack, yet it's taking me about 30 minutes to get everything resolved.
Better than some people on here "Oh my brother hacked my forum" and "MY OTHER ADMIN HACKED THE FORUM." This is legit :rofl:

EDIT: Removed the hack (lol I just needed to upload a file and replace it with their infected file). However in order to patch the hole, I have to remove e107.

If you missed it: http://webcache.googleusercontent.com/s ... =firefox-a
 
Everything's all good now, minus the fact that I have to get my hosting upgraded. I have some local backups, but they weren't needed.
 
It isn't completely resolved yet. It just happened to happen when I exceeded the disk space on the server. By a lot. So until support gets to the ticket, the forum is fine (see my sig image) except for the fact that I don't have an index.php. That just has to be uploaded.

The hack was actually quite simple. Because I had e107 and SMF bridged, if you hack into e107 you can get right into SMF. e107 RARELY gets updated, and has been deprecated for a while, but I neglected to change to a different software. What the hacker did was somehow uploaded a PHP script into the plugin system of e107. From there he/she/it was able to get into SMF. Once in SMF, he/she/it uploaded another script into the Forum Awards directory. Using the combination of those two scripts, he/she/it overrode my Settings.php file with their "LOLZ U JUST GOT HAXXED." file. Since that file is declared in all SMF and e107 pages, the hack message showed on all those pages. All my other forums were untouched. Then (the hardest part of this) was they messed with some CHMODding so I couldn't delete the script files (but Settings.php was easily overrode). All I have to deal with now is getting that index.php uploaded.

Overall an A for effort, but it was pretty pathetic considering that they spent 6 hours hacking and it was fixed in a matter of 3 hours (for everything, overriding the hack file took about 30 seconds).<br /><br />-- Tue Aug 31, 2010 12:18 pm --<br /><br />Blasphemy! The cache expired. I'll post a screen shot later for the lulz.
 
I didn't get to see the hack, but I'm glad you found it out and got rid of the hack.
 
LOL. Hacker-newbies? Guess thats why it took them 6 hours 😛.
 
Gimgak said:
LOL. Hacker-newbies? Guess thats why it took them 6 hours 😛.
Click to expand...

Must've been. I expect they had to play around with settings and stuff like that before they finally figured out what to do! :lol:
 
Hackers are normally people who can't speel worth **** i noticed :lol:

I notice your site still has the defualt SMF theme, hope you are 100% soon 😀
 
I would hope the guy would have had something more fulfilling to do. Apparently not.
 
You must log in or register to reply here.

About Us

Since 2007, Forum Promotion has specialized in providing advertising solutions to webmasters looking to promote their communities. We pride ourselves in being the bridge that connects forum administrators, bloggers, and more.

Sponsors

Affiliates

    Universal Gaming The Coffee House

Stay Connected

Back
Top Bottom