1
MinnesotaW
EDIT: Site messed up, help!
  • 2007/8/25 13:08

  • MinnesotaW

  • Just popping in

  • Posts: 38

  • Since: 2007/1/22


Hi all...yeah...for some odd reason I had the incorrect permissions on my cache folder and I got hacked, here is the file they installed in cache to help shut the site down, and what exactly changed? (I'm good at kicking PHP tires but that's about all)

EDIT...

Helpful folks have pointed out the script is something created by xoops...excuse my noobieness to PHP

2
MinnesotaW
Re: Site Hacked, look at the script they used and help!
  • 2007/8/25 15:07

  • MinnesotaW

  • Just popping in

  • Posts: 38

  • Since: 2007/1/22


Where I'm at right now...no modules "exist" according to clicking on the site.

Anyone? 53 views and no suggstions

3
McDonald
Re: Site Hacked, look at the script they used and help!
  • 2007/8/25 15:30

  • McDonald

  • Home away from home

  • Posts: 1072

  • Since: 2005/8/15


I don't think this script is a hack!

Normally there's a file called adminmenu.php placed in the cache folder on XOOPS 2.0.x websites.

This script is different per site because of the different modules users install.

Probably it's better to put the script back in your cache folder and check if any other files are modified.

Make in the mean time a backup of your database if possible.

4
MinnesotaW
Re: Site Hacked, look at the script they used and help!
  • 2007/8/25 15:39

  • MinnesotaW

  • Just popping in

  • Posts: 38

  • Since: 2007/1/22


Quote:

McDonald wrote:
I don't think this script is a hack!

Normally there's a file called adminmenu.php placed in the cache folder on XOOPS 2.0.x websites.

This script is different per site because of the different modules users install.

Probably it's better to put the script back in your cache folder and check if any other files are modified.

Make in the mean time a backup of your database if possible.


Bummer...it's the only file in the entire directory with a date even close to today!

I think I'm hosed...backup the db isn't a problem and that I can do.

If you'd like to peek at this, http://www.vetteaction.com

Clicking on anything has a "this module not active" message, and for a while the entire site disappeared!

5
skenow
Re: Site Hacked, look at the script they used and help!
  • 2007/8/25 15:39

  • skenow

  • Home away from home

  • Posts: 993

  • Since: 2004/11/17


That script does look valid, as McDonald says.

Can you access any part of your site? login at /user.php, register at /register.php, administration menu at /admin.php

Check your database, it may be the problem - module installation status is stored in the database. If files were missing, you would get 404 errors instead of not installed.

6
MinnesotaW
Re: Site Hacked, look at the script they used and help!
  • 2007/8/25 15:43

  • MinnesotaW

  • Just popping in

  • Posts: 38

  • Since: 2007/1/22


Quote:

skenow wrote:
That script does look valid, as McDonald says.

Can you access any part of your site? login at /user.php, register at /register.php, administration menu at /admin.php

Check your database, it may be the problem - module installation status is stored in the database. If files were missing, you would get 404 errors instead of not installed.


Right now I cannot access anything on the site, database seems all there, and the directory structure is still intact on the webserver.

When I attempted to get on this AM, the site looked normal, I tried to logon and it stated incorrect password...then the login block disappeared, then the news block disappeared (as I clicked around), then gallery, etc...

7
skenow
Re: Site Hacked, look at the script they used and help!
  • 2007/8/25 15:53

  • skenow

  • Home away from home

  • Posts: 993

  • Since: 2004/11/17


The database may be there, but it does not sound like it is the way you left it - incorrect password = altered database; blocks missing and modules not installed = altered database, too.

I would:
1. change your database user/password immediately
2. determine if the root user for the database has a password and create one if it doesn't
3. determine if there is an anonymous user that can access the database and remove it if it does exist
4. remove any other database users
5. determine if phpmyadmin can access the db without entering a username/password - change it if it can
6. find your most recent database backup before the hack was noticed and be ready to restore it

8
McDonald
Re: Site Hacked, look at the script they used and help!
  • 2007/8/25 15:55

  • McDonald

  • Home away from home

  • Posts: 1072

  • Since: 2005/8/15


Quote:
That script does look valid, as McDonald says.


On my testservers I have a script called adminmenu.php in the cache folders:

$xoops_admin_menu_js "function popUpL1() {
shutdown();
popUp("
L1",true);
}
function popUpL16() {
shutdown();
popUp("
L16",true);
}
function popUpL23() {
shutdown();
popUp("
L23",true);
}
function popUpL26() {
shutdown();
popUp("
L26",true);
}
function popUpL33() {
shutdown();
popUp("
L33",true);
}
function popUpL43() {
shutdown();
popUp("
L43",true);
}
function popUpL52() {
shutdown();
popUp("
L52",true);
}
function popUpL59() {
shutdown();
popUp("
L59",true);
}
function popUpL66() {
shutdown();
popUp("
L66",true);
}
function popUpL79() {
shutdown();
popUp("
L79",true);
}
function popUpL91() {
shutdown();
popUp("
L91",true);
}
function popUpL95() {
shutdown();
popUp("
L95",true);
}
function popUpL104() {
shutdown();
popUp("
L104",true);
}
function popUpL109() {
shutdown();
popUp("
L109",true);
}
function popUpL117() {
shutdown();
popUp("
L117",true);
}
function popUpL129() {
shutdown();
popUp("
L129",true);
}
function popUpL131() {
shutdown();
popUp("
L131",true);
}
function popUpL135() {
shutdown();
popUp("
L135",true);
}
"
;
$xoops_admin_menu_ml[1] = "setleft('L1',105);
settop('L1',150);
"
;
$xoops_admin_menu_ml[30] = "setleft('L16',105);
settop('L16',165);
"
;
$xoops_admin_menu_ml[39] = "setleft('L23',105);
settop('L23',180);
"
;
$xoops_admin_menu_ml[41] = "setleft('L26',105);
settop('L26',195);
"
;
$xoops_admin_menu_ml[42] = "setleft('L33',105);
settop('L33',210);
"
;
$xoops_admin_menu_ml[43] = "setleft('L43',105);
settop('L43',225);
"
;
$xoops_admin_menu_ml[45] = "setleft('L52',105);
settop('L52',240);
"
;
$xoops_admin_menu_ml[48] = "setleft('L59',105);
settop('L59',255);
"
;
$xoops_admin_menu_ml[51] = "setleft('L66',105);
settop('L66',270);
"
;
$xoops_admin_menu_ml[56] = "setleft('L79',105);
settop('L79',285);
"
;
$xoops_admin_menu_ml[68] = "setleft('L91',105);
settop('L91',300);
"
;
$xoops_admin_menu_ml[69] = "setleft('L95',105);
settop('L95',315);
"
;
$xoops_admin_menu_ml[70] = "setleft('L104',105);
settop('L104',330);
"
;
$xoops_admin_menu_ml[71] = "setleft('L109',105);
settop('L109',345);
"
;
$xoops_admin_menu_ml[72] = "setleft('L117',105);
settop('L117',360);
"
;
$xoops_admin_menu_ml[73] = "setleft('L129',105);
settop('L129',375);
"
;
$xoops_admin_menu_ml[74] = "setleft('L131',105);
settop('L131',390);
"
;
$xoops_admin_menu_ml[75] = "setleft('L135',105);
settop('L135',405);
"
;
$xoops_admin_menu_sd[1] = "popUp('L1',false);
"
;
$xoops_admin_menu_sd[30] = "popUp('L16',false);
"
;
$xoops_admin_menu_sd[39] = "popUp('L23',false);
"
;
$xoops_admin_menu_sd[41] = "popUp('L26',false);
"
;
$xoops_admin_menu_sd[42] = "popUp('L33',false);
"
;
$xoops_admin_menu_sd[43] = "popUp('L43',false);
"
;
$xoops_admin_menu_sd[45] = "popUp('L52',false);
"
;
$xoops_admin_menu_sd[48] = "popUp('L59',false);
"
;
$xoops_admin_menu_sd[51] = "popUp('L66',false);
"
;
$xoops_admin_menu_sd[56] = "popUp('L79',false);
"
;
$xoops_admin_menu_sd[68] = "popUp('L91',false);
"
;
$xoops_admin_menu_sd[69] = "popUp('L95',false);
"
;
$xoops_admin_menu_sd[70] = "popUp('L104',false);
"
;
$xoops_admin_menu_sd[71] = "popUp('L109',false);
"
;
$xoops_admin_menu_sd[72] = "popUp('L117',false);
"
;
$xoops_admin_menu_sd[73] = "popUp('L129',false);
"
;
$xoops_admin_menu_sd[74] = "popUp('L131',false);
"
;
$xoops_admin_menu_sd[75] = "popUp('L135',false);
"
;
$xoops_admin_menu_ft[1] = ".XOOPS_URL."/modules/system/admin.php' onmouseover='moveLayerY("L1", currentY,event) ; popUpL1();'>.XOOPS_URL."/modules/system/images/system_slogo.png' alt='' />
"
;
$xoops_admin_menu_ft[30] = ".XOOPS_URL."/modules/smartsection/admin/index.php' onmouseover='moveLayerY("L16", currentY,event) ; popUpL16();'>.XOOPS_URL."/modules/smartsection/images/module_logo.gif' alt='' />
"
;
$xoops_admin_menu_ft[39] = ".XOOPS_URL."/modules/marquee/admin/index.php' onmouseover='moveLayerY("L23", currentY,event) ; popUpL23();'>.XOOPS_URL."/modules/marquee/images/marquee_slogo.png' alt='' />
"
;
$xoops_admin_menu_ft[41] = ".XOOPS_URL."/modules/extcal/admin/index.php' onmouseover='moveLayerY("L26", currentY,event) ; popUpL26();'>.XOOPS_URL."/modules/extcal/images/extcal_logo.png' alt='' />
"
;
$xoops_admin_menu_ft[42] = ".XOOPS_URL."/modules/news/admin/index.php' onmouseover='moveLayerY("L33", currentY,event) ; popUpL33();'>.XOOPS_URL."/modules/news/images/news_slogo.png' alt='' />
"
;
$xoops_admin_menu_ft[43] = ".XOOPS_URL."/modules/ronssection/admin/index.php' onmouseover='moveLayerY("L43", currentY,event) ; popUpL43();'>.XOOPS_URL."/modules/ronssection/images/ronssection_slogo.png' alt='' />
"
;
$xoops_admin_menu_ft[45] = ".XOOPS_URL."/modules/tinyeditor/admin/index.php' onmouseover='moveLayerY("L52", currentY,event) ; popUpL52();'>.XOOPS_URL."/modules/tinyeditor/images/tinyeditor.png' alt='' />
"
;
$xoops_admin_menu_ft[48] = ".XOOPS_URL."/modules/smartprofile/admin/admin.php' onmouseover='moveLayerY("L59", currentY,event) ; popUpL59();'>.XOOPS_URL."/modules/smartprofile/images/module_logo.gif' alt='' />
"
;
$xoops_admin_menu_ft[51] = ".XOOPS_URL."/modules/article/admin/index.php' onmouseover='moveLayerY("L66", currentY,event) ; popUpL66();'>.XOOPS_URL."/modules/article/images/logo.png' alt='' />
"
;
$xoops_admin_menu_ft[56] = ".XOOPS_URL."/modules/wfdownloads/admin/index.php' onmouseover='moveLayerY("L79", currentY,event) ; popUpL79();'>.XOOPS_URL."/modules/wfdownloads/images/module_logo.gif' alt='' />
"
;
$xoops_admin_menu_ft[68] = ".XOOPS_URL."/modules/wfchannel/admin/index.php' onmouseover='moveLayerY("L91", currentY,event) ; popUpL91();'>.XOOPS_URL."/modules/wfchannel/images/wfs_channel_slogo.png' alt='' />
"
;
$xoops_admin_menu_ft[69] = ".XOOPS_URL."/modules/wflinks/admin/index.php' onmouseover='moveLayerY("L95", currentY,event) ; popUpL95();'>.XOOPS_URL."/modules/wflinks/images/wfl_slogo.gif' alt='' />
"
;
$xoops_admin_menu_ft[70] = ".XOOPS_URL."/modules/xoopscare/admin/index.php' onmouseover='moveLayerY("L104", currentY,event) ; popUpL104();'>.XOOPS_URL."/modules/xoopscare/images/xoopscare_logo.png' alt='' />
"
;
$xoops_admin_menu_ft[71] = ".XOOPS_URL."/modules/xoopsinfo/admin/index.php' onmouseover='moveLayerY("L109", currentY,event) ; popUpL109();'>.XOOPS_URL."/modules/xoopsinfo/images/xoopsinfo_slogo.png' alt='' />
"
;
$xoops_admin_menu_ft[72] = ".XOOPS_URL."/modules/wfsection/admin/allarticles.php' onmouseover='moveLayerY("L117", currentY,event) ; popUpL117();'>.XOOPS_URL."/modules/wfsection/images/wfs_slogo.gif' alt='' />
"
;
$xoops_admin_menu_ft[73] = ".XOOPS_URL."/modules/captcha/admin/index.php' onmouseover='moveLayerY("L129", currentY,event) ; popUpL129();'>.XOOPS_URL."/modules/captcha/images/captcha_slogo.png' alt='' />
"
;
$xoops_admin_menu_ft[74] = ".XOOPS_URL."/modules/smartobject/admin/index.php' onmouseover='moveLayerY("L131", currentY,event) ; popUpL131();'>.XOOPS_URL."/modules/smartobject/images/module_logo.gif' alt='' />
"
;
$xoops_admin_menu_ft[75] = ".XOOPS_URL."/modules/xoopstube/admin/index.php' onmouseover='moveLayerY("L135", currentY,event) ; popUpL135();'>.XOOPS_URL."/modules/xoopstube/images/xtube_slogo.gif' alt='' />
"
;
$xoops_admin_menu_dv "System.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=banners' onmouseover='popUpL1();'>Banners
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=blocksadmin' onmouseover='popUpL1();'>Blocks
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=groups' onmouseover='popUpL1();'>Groups
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=images' onmouseover='popUpL1();'>Images
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=modulesadmin' onmouseover='popUpL1();'>Modules
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences' onmouseover='popUpL1();'>Preferences
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=smilies' onmouseover='popUpL1();'>Smilies
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=userrank' onmouseover='popUpL1();'>User Ranks
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=users' onmouseover='popUpL1();'>Edit User
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=findusers' onmouseover='popUpL1();'>Find Users
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=mailusers' onmouseover='popUpL1();'>Mail Users
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=avatars' onmouseover='popUpL1();'>Avatars
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=tplsets' onmouseover='popUpL1();'>Templates
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=comments' onmouseover='popUpL1();'>Comments
[Close]
.XOOPS_URL."/modules/system/images/system_slogo.png' alt='' />"._VERSION.": 1.02"._DESCRIPTION.": For administration of core settings of the site.

SmartSection.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartsection/admin/index.php' onmouseover='popUpL16();'>Index
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartsection/admin/category.php' onmouseover='popUpL16();'>Categories
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartsection/admin/item.php' onmouseover='popUpL16();'>Articles
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartsection/admin/permissions.php' onmouseover='popUpL16();'>Permissions
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartsection/admin/mimetypes.php' onmouseover='popUpL16();'>Mimetypes
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=30' onmouseover='popUpL16();'>Preferences
[Close]
.XOOPS_URL."/modules/smartsection/images/module_logo.gif' alt='' />"._VERSION.": 2.13"._DESCRIPTION.": Section Management System for your XOOPS Site

Marquee.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/marquee/admin/index.php' onmouseover='popUpL23();'>Manage marquees
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=39' onmouseover='popUpL23();'>Preferences
[Close]
.XOOPS_URL."/modules/marquee/images/marquee_slogo.png' alt='' />"._VERSION.": 2.41"._DESCRIPTION.": Enable you to create scrolling texts (marquees)

eXtCal.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/extcal/admin/index.php' onmouseover='popUpL26();'>Index
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/extcal/admin/cat.php' onmouseover='popUpL26();'>Category
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/extcal/admin/event.php' onmouseover='popUpL26();'>Event
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/extcal/admin/perm.php' onmouseover='popUpL26();'>Permissions
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/extcal/admin/prune.php' onmouseover='popUpL26();'>Pruning
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=41' onmouseover='popUpL26();'>Preferences
[Close]
.XOOPS_URL."/modules/extcal/images/extcal_logo.png' alt='' />"._VERSION.": 2.04"._DESCRIPTION.": XOOPS Calendar Module

News.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/news/admin/index.php?op=topicsmanager' onmouseover='popUpL33();'>Topics Manager
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/news/admin/index.php?op=newarticle' onmouseover='popUpL33();'>Post/Edit News
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/news/admin/groupperms.php' onmouseover='popUpL33();'>Permissions
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/news/admin/index.php?op=prune' onmouseover='popUpL33();'>Prune news
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/news/admin/index.php?op=export' onmouseover='popUpL33();'>News Export
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/news/admin/index.php?op=stats' onmouseover='popUpL33();'>Statistics
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/news/admin/index.php?op=configurenewsletter' onmouseover='popUpL33();'>Newsletter
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/news/admin/index.php?op=metagen' onmouseover='popUpL33();'>Metagen
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=42' onmouseover='popUpL33();'>Preferences
[Close]
.XOOPS_URL."/modules/news/images/news_slogo.png' alt='' />"._VERSION.": 1.53"._DESCRIPTION.": Creates a Slashdot-like news section, where users can post news/comments.

RonsSection.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/ronssection/admin/index.php' onmouseover='popUpL43();'>Main Index
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/ronssection/admin/indexpage.php' onmouseover='popUpL43();'>Index Page Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/ronssection/admin/category.php' onmouseover='popUpL43();'>Category Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/ronssection/admin/index.php?op=edit' onmouseover='popUpL43();'>Add Article
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/ronssection/admin/upload.php' onmouseover='popUpL43();'>Image Upload
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/ronssection/admin/votedata.php' onmouseover='popUpL43();'>Votes
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/ronssection/admin/myblocksadmin.php' onmouseover='popUpL43();'>Block Settings
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=43' onmouseover='popUpL43();'>Preferences
[Close].XOOPS_URL."/modules/ronssection/images/ronssection_slogo.png' alt='' />"._VERSION.": 1"
._DESCRIPTION.": Creates a article section where users can read/submit/rate various articles.
tinyeditor.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/tinyeditor/admin/index.php' onmouseover='popUpL52();'>Admin index
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/tinyeditor/admin/permissions.php' onmouseover='popUpL52();'>Permissions
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/tinyeditor/admin/toolsets.php' onmouseover='popUpL52();'>Toolsets
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/tinyeditor/admin/mimetypes.php' onmouseover='popUpL52();'>Mimetypes
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/tinyeditor/admin/about.php' onmouseover='popUpL52();'>About
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=45' onmouseover='popUpL52();'>Preferences
[Close].XOOPS_URL."/modules/tinyeditor/images/tinyeditor.png' alt='' />"._VERSION.": 1"
._DESCRIPTION.": An advanced WYSIWYG WebEditor for Xoops
Extended Profiles.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartprofile/admin/user.php' onmouseover='popUpL59();'>Users
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartprofile/admin/category.php' onmouseover='popUpL59();'>Categories
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartprofile/admin/field.php' onmouseover='popUpL59();'>Fields
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartprofile/admin/step.php' onmouseover='popUpL59();'>Registration Steps
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartprofile/admin/permissions.php' onmouseover='popUpL59();'>Permissions
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=48' onmouseover='popUpL59();'>Preferences
[Close].XOOPS_URL."/modules/smartprofile/images/module_logo.gif' alt='' />"._VERSION.": 1"
._DESCRIPTION.": Module for managing custom user profile fields
Article.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/article/admin/index.php' onmouseover='popUpL66();'>Index
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/article/admin/admin.category.php' onmouseover='popUpL66();'>Category
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/article/admin/admin.topic.php' onmouseover='popUpL66();'>Topic
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/article/admin/admin.article.php' onmouseover='popUpL66();'>Article
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/article/admin/admin.permission.php' onmouseover='popUpL66();'>Permission
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/article/admin/admin.block.php' onmouseover='popUpL66();'>Block
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/article/admin/admin.spotlight.php' onmouseover='popUpL66();'>Spotlight
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/article/admin/admin.trackback.php' onmouseover='popUpL66();'>Trackback
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/article/admin/admin.file.php' onmouseover='popUpL66();'>File
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/article/admin/admin.synchronization.php' onmouseover='popUpL66();'>Utility
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/article/admin/about.php' onmouseover='popUpL66();'>About
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=51' onmouseover='popUpL66();'>Preferences
[Close].XOOPS_URL."/modules/article/images/logo.png' alt='' />"._VERSION.": 1"
._DESCRIPTION.": Article Management
WF-Downloads.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfdownloads/admin/index.php' onmouseover='popUpL79();'>Index
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfdownloads/admin/indexpage.php' onmouseover='popUpL79();'>Index Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfdownloads/admin/category.php' onmouseover='popUpL79();'>Categories
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfdownloads/admin/index.php?op=Download' onmouseover='popUpL79();'>Files
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfdownloads/admin/review.php' onmouseover='popUpL79();'>Reviews
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfdownloads/admin/mirror.php' onmouseover='popUpL79();'>Mirrors
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfdownloads/admin/upload.php' onmouseover='popUpL79();'>Image Upload
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfdownloads/admin/mimetypes.php' onmouseover='popUpL79();'>Mimetypes
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfdownloads/admin/votedata.php' onmouseover='popUpL79();'>Votes
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfdownloads/admin/permissions.php' onmouseover='popUpL79();'>Permissions
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=56' onmouseover='popUpL79();'>Preferences
[Close].XOOPS_URL."/modules/wfdownloads/images/module_logo.gif' alt='' />"._VERSION.": 3.1"
._DESCRIPTION.": Creates a downloads section where users can download/submit/rate various files.
WF-Channel.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfchannel/admin/index.php' onmouseover='popUpL91();'>Channel admin
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfchannel/admin/index.php?op=create' onmouseover='popUpL91();'>Create page
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=68' onmouseover='popUpL91();'>Preferences
[Close].XOOPS_URL."/modules/wfchannel/images/wfs_channel_slogo.png' alt='' />"._VERSION.": 1.08"
._DESCRIPTION.": About us type Module
WF-Links.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wflinks/admin/index.php' onmouseover='popUpL95();'>Main Index
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wflinks/admin/indexpage.php' onmouseover='popUpL95();'>Index Page Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wflinks/admin/category.php' onmouseover='popUpL95();'>Category Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wflinks/admin/index.php?op=edit' onmouseover='popUpL95();'>Link Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wflinks/admin/upload.php' onmouseover='popUpL95();'>Image Upload
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wflinks/admin/votedata.php' onmouseover='popUpL95();'>Votes
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wflinks/admin/myblocksadmin.php' onmouseover='popUpL95();'>Block Settings
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=69' onmouseover='popUpL95();'>Preferences
[Close].XOOPS_URL."/modules/wflinks/images/wfl_slogo.gif' alt='' />"._VERSION.": 1.03"
._DESCRIPTION.": Creates a links section where users can link/submit/rate various links.
Xoops Care.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopscare/admin/index.php?op=prefs' onmouseover='popUpL104();'>Preferences
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopscare/admin/index.php?op=extra' onmouseover='popUpL104();'>Extra
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopscare/admin/index.php?op=help' onmouseover='popUpL104();'>Help
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=70' onmouseover='popUpL104();'>Preferences
[Close].XOOPS_URL."/modules/xoopscare/images/xoopscare_logo.png' alt='' />"._VERSION.": 1"
._DESCRIPTION.": A module to take care of your site
XOOPS Info.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopsinfo/admin/index.php' onmouseover='popUpL109();'>Xoops Info.
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopsinfo/admin/php.php' onmouseover='popUpL109();'>Server Info.
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopsinfo/admin/mysqlinfo.php' onmouseover='popUpL109();'>MySql Info.
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopsinfo/admin/modules.php' onmouseover='popUpL109();'>Modules Info.
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopsinfo/admin/editors.php' onmouseover='popUpL109();'>Editors Info.
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopsinfo/admin/templates.php' onmouseover='popUpL109();'>Overriding Info.
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=71' onmouseover='popUpL109();'>Preferences
[Close].XOOPS_URL."/modules/xoopsinfo/images/xoopsinfo_slogo.png' alt='' />"._VERSION.": 2.12"
._DESCRIPTION.": Basic module for displaying XOOPS, Apache, MySQL, and PHP information.
wfsection.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfsection/admin/pathconfig.php' onmouseover='popUpL117();'>Path Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfsection/admin/indexpage.php' onmouseover='popUpL117();'>Index Page Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfsection/admin/category.php' onmouseover='popUpL117();'>Section Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfsection/admin/allarticles.php' onmouseover='popUpL117();'>Article Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfsection/admin/index.php?op=newarticle' onmouseover='popUpL117();'>-- Create New Article
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfsection/admin/filemanager.php' onmouseover='popUpL117();'>File Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfsection/admin/brokendown.php?op=listBrokenDownloads' onmouseover='popUpL117();'>List Broken downloads
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfsection/admin/allarticles.php?action=submitted' onmouseover='popUpL117();'>List Submitted Articles
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfsection/admin/reorder.php' onmouseover='popUpL117();'>Weight Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/wfsection/admin/wfsfilesshow.php' onmouseover='popUpL117();'>Article Downloads
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=72' onmouseover='popUpL117();'>Preferences
[Close].XOOPS_URL."/modules/wfsection/images/wfs_slogo.gif' alt='' />"._VERSION.": 2.01"
._DESCRIPTION.": 
Captcha Module.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/captcha/admin/index.php' onmouseover='popUpL129();'>INDEX
[Close].XOOPS_URL."/modules/captcha/images/captcha_slogo.png' alt='' />"._VERSION.": 0.11"
._DESCRIPTION.": Library for anti comment spam
SmartObject Framework.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartobject/admin/index.php' onmouseover='popUpL131();'>Index
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartobject/admin/link.php' onmouseover='popUpL131();'>Links
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/smartobject/admin/tag.php' onmouseover='popUpL131();'>Tags
[Close].XOOPS_URL."/modules/smartobject/images/module_logo.gif' alt='' />"._VERSION.": 0.9"
._DESCRIPTION.": Framework providing functionnalities to SmartModules
XoopsTube.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopstube/admin/index.php' onmouseover='popUpL135();'>Main Index
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopstube/admin/indexpage.php' onmouseover='popUpL135();'>Index Page Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopstube/admin/category.php' onmouseover='popUpL135();'>Category Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopstube/admin/index.php?op=edit' onmouseover='popUpL135();'>Video Management
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopstube/admin/upload.php' onmouseover='popUpL135();'>Image Upload
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopstube/admin/votedata.php' onmouseover='popUpL135();'>Votes
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/xoopstube/admin/myblocksadmin.php' onmouseover='popUpL135();'>Block Settings
.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=75' onmouseover='popUpL135();'>Preferences
[Close].XOOPS_URL."/modules/xoopstube/images/xtube_slogo.gif' alt='' />"._VERSION.": 1"
._DESCRIPTION.": Add embedded movies from YouTube to your website.



"
;

?>


and this one

$xoops_admin_menu_js "function popUpL2() {
shutdown();
popUp("
L2",true);
}
function popUpL4() {
shutdown();
popUp("
L4",true);
}
function popUpL6() {
shutdown();
popUp("
L6",true);
}
function popUpL8() {
shutdown();
popUp("
L8",true);
}
function popUpL10() {
shutdown();
popUp("
L10",true);
}
function popUpL12() {
shutdown();
popUp("
L12",true);
}
"
;
$xoops_admin_menu_ml[2] = "setleft('L2',105);
settop('L2',165);
"
;
$xoops_admin_menu_ml[4] = "setleft('L4',105);
settop('L4',180);
"
;
$xoops_admin_menu_ml[5] = "setleft('L6',105);
settop('L6',195);
"
;
$xoops_admin_menu_ml[6] = "setleft('L8',105);
settop('L8',210);
"
;
$xoops_admin_menu_ml[7] = "setleft('L10',105);
settop('L10',225);
"
;
$xoops_admin_menu_ml[8] = "setleft('L12',105);
settop('L12',240);
"
;
$xoops_admin_menu_sd[2] = "popUp('L2',false);
"
;
$xoops_admin_menu_sd[4] = "popUp('L4',false);
"
;
$xoops_admin_menu_sd[5] = "popUp('L6',false);
"
;
$xoops_admin_menu_sd[6] = "popUp('L8',false);
"
;
$xoops_admin_menu_sd[7] = "popUp('L10',false);
"
;
$xoops_admin_menu_sd[8] = "popUp('L12',false);
"
;
$xoops_admin_menu_ft[1] = ".XOOPS_URL."/modules/system/admin.php' onmouseover='shutdown();'>.XOOPS_URL."/modules/system/images/system_slogo.png' alt='' />
"
;
$xoops_admin_menu_ft[2] = ".XOOPS_URL."/modules/news/admin/index.php' onmouseover='moveLayerY("L2", currentY,event) ; popUpL2();'>.XOOPS_URL."/modules/news/images/news_slogo.png' alt='' />
"
;
$xoops_admin_menu_ft[4] = ".XOOPS_URL."/modules/newbb/admin/index.php' onmouseover='moveLayerY("L4", currentY,event) ; popUpL4();'>.XOOPS_URL."/modules/newbb/images/xoopsbb_slogo.png' alt='' />
"
;
$xoops_admin_menu_ft[5] = ".XOOPS_URL."/modules/xoopspoll/admin/index.php' onmouseover='moveLayerY("L6", currentY,event) ; popUpL6();'>.XOOPS_URL."/modules/xoopspoll/images/xoopspoll_slogo.png' alt='' />
"
;
$xoops_admin_menu_ft[6] = ".XOOPS_URL."/modules/smartsection/admin/index.php' onmouseover='moveLayerY("L8", currentY,event) ; popUpL8();'>.XOOPS_URL."/modules/smartsection/images/module_logo.gif' alt='' />
"
;
$xoops_admin_menu_ft[7] = ".XOOPS_URL."/modules/article/admin/index.php' onmouseover='moveLayerY("L10", currentY,event) ; popUpL10();'>.XOOPS_URL."/modules/article/images/logo.png' alt='' />
"
;
$xoops_admin_menu_ft[8] = ".XOOPS_URL."/modules/tinyeditor/admin/index.php' onmouseover='moveLayerY("L12", currentY,event) ; popUpL12();'>.XOOPS_URL."/modules/tinyeditor/images/tinyeditor.png' alt='' />
"
;
$xoops_admin_menu_dv "News.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=2' onmouseover='popUpL2();'>Instellingen
[Sluit venster]
.XOOPS_URL."/modules/news/images/news_slogo.png' alt='' />"._VERSION.": 1.44"._DESCRIPTION.": Creates a Slashdot-like news section, where users can post news/comments.
CBB.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=4' onmouseover='popUpL4();'>Instellingen
[Sluit venster].XOOPS_URL."/modules/newbb/images/xoopsbb_slogo.png' alt='' />"._VERSION.": 3.04"
._DESCRIPTION.": XOOPS Community Bulletin Board
Polls.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=5' onmouseover='popUpL6();'>Instellingen
[Sluit venster].XOOPS_URL."/modules/xoopspoll/images/xoopspoll_slogo.png' alt='' />"._VERSION.": 1.1"
._DESCRIPTION.": Shows a poll/survey block
SmartSection.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=6' onmouseover='popUpL8();'>Instellingen
[Sluit venster].XOOPS_URL."/modules/smartsection/images/module_logo.gif' alt='' />"._VERSION.": 2.12"
._DESCRIPTION.": Sectie Management Systeem voor uw XOOPS Site
Article.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=7' onmouseover='popUpL10();'>Instellingen
[Sluit venster].XOOPS_URL."/modules/article/images/logo.png' alt='' />"._VERSION.": 0.99"
._DESCRIPTION.": Article Management
tinyeditor.XOOPS_URL."/images/pointer.gif' width='8' height='8' alt='' /> .XOOPS_URL."/modules/system/admin.php?fct=preferences&op=showmod&mod=8' onmouseover='popUpL12();'>Instellingen
[Sluit venster].XOOPS_URL."/modules/tinyeditor/images/tinyeditor.png' alt='' />"._VERSION.": 1"
._DESCRIPTION.": Een geadvanceerde WYSIWYG WebEditor voor Xoops



"
;

?>


It's not a script that comes with Xoops, but I think it is created upon installing or so...

I haven't checked it, but I think if I remove it it can't find any modules either.

EDIT:
When somebody hacks a site they normally leave something behind (a message or files). Speaking about files, did you check if somebody stored big files somewhere?
This happened ones with my site where somebody placed some big movie files in a folder. It slowed down my site first until it crashed.

9
skenow
Re: Site Hacked, look at the script they used and help!
  • 2007/8/25 15:59

  • skenow

  • Home away from home

  • Posts: 993

  • Since: 2004/11/17


admin.php calls a script - layersmenu.js - that contains that popup code
Christian Web Master Resources
New SimplyWiki release

10
MinnesotaW
Re: Site Hacked, look at the script they used and help!
  • 2007/8/25 16:04

  • MinnesotaW

  • Just popping in

  • Posts: 38

  • Since: 2007/1/22


Quote:

skenow wrote:
The database may be there, but it does not sound like it is the way you left it - incorrect password = altered database; blocks missing and modules not installed = altered database, too.

I would:
1. change your database user/password immediately
2. determine if the root user for the database has a password and create one if it doesn't
3. determine if there is an anonymous user that can access the database and remove it if it does exist
4. remove any other database users
5. determine if phpmyadmin can access the db without entering a username/password - change it if it can
6. find your most recent database backup before the hack was noticed and be ready to restore it


1. Done
2. it does, always has
3. all tools my provider (Ipower) has for me I cannot see
4. only 1 db user, that's all I've ever had
5. phpmyadmin doesn't let you in without the valid userid/pwd...bogus or blank is rejected
6. yeah...I thought that might be the answer

Appreciate the suggestions, I'll let you know how it comes out.

Login

Who's Online

349 user(s) are online (278 user(s) are browsing Support Forums)


Members: 0


Guests: 349


more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Nov 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits