Hi
Somebody tries to hack my forum
Quote:A user has tried to access the Administration Control Panel for Index des Forums. They were unable to succeed in doing so.
Below are the login details:
Username: \'\'\'\'\'\'\'
Password: \'\'\'\'\'\' (MD5: f7f9bc46b53aa1dd11f9672331d8c3ac)
IP Address: 217.107.70.109
Hostname: 217.107.70.109
Thank you.
Quote:A user has tried to access the Administration Control Panel for Index des Forums. They were unable to succeed in doing so.
Below are the login details:
Username: pifdfs\' UNION SELECT username,uid,password,usergroup FROM mybb_users WHERE uid=1 OR uid=\'888
Password: (MD5: d41d8cd98f00b204e9800998ecf8427e)
IP Address: 217.107.70.109
Hostname: 217.107.70.109
Thank you.
This happens from time to time, people try to gain access to your ACP and there's not really that much that can be done about it. As long as they don't get in though, there shouldn't be a problem.
In MyBB Gold you'll be able to change the directory to your ACP so as potential hackers will have difficulty finding it.
it looks like mysql_real_escape_string() is used to convert a ' to \' so any hacking attempt like that won't work- don't worry!
it would seem that it's a Russian !?
Quote:IP address 217.107.70.109
Hostname Not available
ISP Communication company LogosLink. Address: 426000,
Country Russia
Quote:Extra Technical Information
inetnum: 217.107.70.0 - 217.107.71.255
netname: LOGOSLINK
descr: Communication company LogosLink. Address: 426000,
descr: Russia, Udmurtia, Izhevsk city, Karl Marks street, building 425.
country: RU
admin-c: SGG8-RIPE
admin-c: OVZ1-RIPE
tech-c: CcL4-RIPE
status: ASSIGNED PA
mnt-by: AS8342-MNT
source: RIPE
role: Communication company LogosLink
address: 426000, Russia, Udmurtia, Izhevsk city, Karl Marks street,
address: building 425.
trouble: Points of contact for LogosLink Network Operations
trouble: ----------------------------------------------------------
trouble: SPAM issues: [email protected]
trouble: Network security issues: [email protected]
trouble: Mail and News issues: [email protected]
trouble: General information: [email protected]
trouble: ----------------------------------------------------------
e-mail: [email protected]
admin-c: SGG8-RIPE
tech-c: SGG8-RIPE
nic-hdl: CcL4-RIPE
source: RIPE
person: Sergey Gilfanov Glusovitch
address: 426000, Russia, Udmurtia, Izhevsk city, Karl Marks street,
building 425.
phone: +7 3412 259220
e-mail: [email protected]
nic-hdl: SGG8-RIPE
source: RIPE
person: Oleg V. Zanozin
address: 426000, Russia, udmurtia
Izhevsk city
Karl Marks street, building 425
e-mail: [email protected]
phone: +7 3412 259220
nic-hdl: OVZ1-RIPE
source: RIPE
route: 217.106.0.0/15
descr: RTCOMM-RU
origin: AS8342
mnt-by: AS8342-MNT
source: RIPE
IP Address Tracking Program
why not change the directory name of admin folder and just reach it via remote address? I believe you can safely change your admin folder without having to edit any files.
Cory Wrote:why not change the directory name of admin folder and just reach it via remote address? I believe you can safely change your admin folder without having to edit any files.
I just tested it, you can change the admin folder name woith out editing any files from what I have tested.
Hmmm... "d41d8cd98f00b204e9800998ecf8427e" is a blank space. =D