MyBB Community Forums

Before the tirade of abuse heading my way, let me make it clear that my forum is not running the latest MyBB, but instead MyBB 1.6.6 (I had been a little busy of late).

I received quite a few emails from members today along the lines of "my antivirus has flagged the site". My own personal AV didn't but won't i disregard the emails all hinting the same thing. Apparently it goes something like:

HTML/Infected.WebPage.Gen2

At the same time, i have the following error at the top of the site when logged out:

Warning [2] Cannot modify header information - headers already sent by (output started at /home/berlingo/public_html/index.php:1) - Line: 1680 - File: inc/functions.php PHP 5.2.17 (Linux)
File 	Line 	Function
[PHP] 	  	errorHandler->error
/inc/functions.php 	1680 	header
/inc/class_session.php 	365 	my_setcookie
/inc/class_session.php 	98 	session->load_guest
/global.php 	55 	session->init
/index.php 	18 	require_once
Warning [2] Cannot modify header information - headers already sent by (output started at /home/berlingo/public_html/index.php:1) - Line: 1680 - File: inc/functions.php PHP 5.2.17 (Linux)
File 	Line 	Function
[PHP] 	  	errorHandler->error
/inc/functions.php 	1680 	header
/inc/class_session.php 	106 	my_setcookie
/global.php 	55 	session->init
/index.php 	18 	require_once

I was just wondering if someone could recognize the symptoms and if a simple update would secure my site once again or if a vulnerability is now within.

Help appreciated as always.

Getting the same problem thankfully security essentials managed to grab it. But please i would not keep your site online in this state. There is clearly something wrong and you are spreading malware at this moment.

/moved to security management and support

Run File Verification in the ACP and reupload and changed files.

Thanks Paul.

The files it are showing as changed (and in red) are:

index.php
showthread.php

Re upload those files, just keep back up of current files.
After re uploading tell us does the error is still there?

---

Re upload those files, just keep back up of current files.
After re uploading tell us does the error is still there?

@Mr.Kewl the error as now gone. I would like to see if the server/backend is secure though before i go ahead with an immediate backup and upgrade to .6.7. If there are any methods for this i'd like to know!

I would have checked those files for malware, I guess it was because of some plugin you used, what was the latest plugin you uploaded?

Btw:I'm on phone, so can't check.

No new plugins in a long while actually, im hoping its down to the fact that i had not upgraded like i should have.

Latest version has only admincp fixes, do you have any other admin?

Hmm thats not great. I have one other account yeh but its hidden as a registered user and apparently not accessed since December.

I would list my plugins but could be here a while. The ones that are active.

Awaiting Activation Message
Active Users
Contact Form
Default Avatar (1.0)
Donation Page (2.1)
Forum Icons (2.1)
Fit on Page (2.3)
Fun Post Stat (1.0)
Google Analytics (1.5)
Goodbye Spammer (1.0)
Google SEO (1.1.13)
Highlight Sticky Threads (1.0)
Its My Birthday! (2.2)
The Minimum Posts Suite (1.2)
Miss You Email (1.0.0)
Monthly Stats (1.0a)
My Ad Manager (1.2)
MyAnnouncements LITE (v1.0 BETA)
MyDownloads (1.8)
MyShowcase System (2.2.2)
MySupport (0.4.1)
Show the users that has been online today (2.0)
Page Manager (1.5.2)
PM Spy (1.0)
Poll on Index (0.3)
PostAd (1.2.1)
Profile Ban (2.1)
Profile Views (1.2)
Registration Security Question (1.2)
Require Thread Prefixes (1.1)
Search Log (1.0)
MyBB Shops (1.0.0)
Sidebox (1.2.0)
Spoiler MyCode (1.1)
Disable Special Characters in Usernames (1.1)
Stop forum spam (1.2)
Table Generator (1.0)
Tagging Plugin! (1.3.3)
Tapatalk (1.0.0)
Thank You/Like System (1.5)
Tinypic Uploader (1.0)
Thread Link (1.2)
View Unread Posts (2.2)