2011-02-10, 07:49 AM
Hello there, today i have a question want to be answered Was i got hacked ? Well, this is the problem i had yesterday:
-Yesterday, when i went to my community forums i received a download request from browser, it asked me download a file named: "Default". I pressed "Cancel" when i was at the main index, it asked me download a file named: "index.php". At my forums chatbox: It have this code:
I'm using VN Chatbox, after 10 minutes. I can access normally, but when i come to backup tools to create a backup, it asked me CHMOD 777. I'm so suprised, because i was never be asked to CHMOD 777 backups folder before. Same with the language files.... I decided no CHMOD and come here to ask first, i think he forced me CHMOD 777 the folders so he - the attacker can attack me easier ???
What was happened to my forums ??? What do you think ? Please let me know by reply back, please i need all your helps.
Thanks a lot!
-Yesterday, when i went to my community forums i received a download request from browser, it asked me download a file named: "Default". I pressed "Cancel" when i was at the main index, it asked me download a file named: "index.php". At my forums chatbox: It have this code:
$config['max_message_len']) $shout['message'] = substr($shout['message'], 0, $config['max_message_len']).'...'; $shout['userid'] = intval($shout['userid']); $shout['groupid'] = intval($shout['groupid']); $shout['color'] = strip_tags($shout['color']); $shout['font'] = strip_tags($shout['font']); $shout['dateline'] = time(); $checknoticecm = substr($shout['message'], 0, strlen($command['notice'])+1); $checkbancm = substr($shout['message'], 0, strlen($command['ban'])+1); $checkunbancm = substr($shout['message'], 0, strlen($command['unban'])+1); $checkpruneuser = substr($shout['message'], 0, strlen($command['prune'])+1); $type = ''; if ($shout['message'] == $command['prune'] AND $cancommand) { $type = 'prune1'; } else if ($checkpruneuser == $command['prune'].' ' AND $cancommand) { $type = 'prune2'; } else if ($shout['message'] == $command['notice'] AND $cancommand) { $type = 'notice1'; } else if ($checknoticecm == $command['notice'].' ' AND $cancommand) { $type = 'notice2'; } else if ($checkbancm == $command['ban'].' ' AND $cancommand) { $type = 'ban'; } else if ($checkunbancm == $command['unban'].' ' AND $cancommand) { $type = 'unban'; } else { $type = 'chat'; } $shout['type'] = $type; switch ($type) { case 'prune1': $handle = fopen($fcbfile['message'],"w"); fwrite($handle, build_prune1($shout)."\n"); fclose($handle); break; case 'prune2': $info = explode(" ", $shout['message']); $shout['pruneuserid'] = intval($info[1]); $shout['reason'] = substr($shout['message'], strlen($command['prune'].' '.$info[1])+1); $shout['pruneusername'] = findusername($shout['pruneuserid']); if ($shout['pruneusername']) { $shouts = file($fcbfile['message']); $handle = fopen($fcbfile['message'],"w"); foreach ($shouts as $shoutline) { $shoutf = split_shoutline($shoutline); if ($shoutf['userid'] != $shout['pruneuserid'] OR ($shoutf['type'] != 'chat' AND $shoutf['type'] != 'isme')) { fwrite($handle, $shoutline); } } fwrite($handle, break; case 'unban': $banneds = unserialize(file_get_contents($fcbfile['ds_banned'])); $info = explode(" ", $shout['message']); $shout['unbanuserid'] = intval($info[1]); $shout['unbanusername'] = findusername($shout['unbanuserid']); $shout['reason'] = substr($shout['message'], strlen($command['unban'].' '.$info[1])+1); unset($banneds[$shout['unbanuserid']]); $handle = fopen($fcbfile['ds_banned'], "w"); fwrite($handle, serialize($banneds)); fclose($handle); $handle = fopen($fcbfile['message'],"a"); fwrite($handle, build_unban($shout)."\n"); fclose($handle); break; case 'chat': if ($config['checkflood'] AND is_flood($request_ip, $shout['message'])) { echo "
".$phrase['checkflood']."
"; exit; } if ($config['checkflood']) { // save last shout $handle = fopen($fcbfile['ds_lastshout'],"w"); $ls['ip'] = $request_ip; $ls['message'] = $shout['message']; $data = serialize($ls); fwrite($handle, $data); fclose($handle); } $smilies = unserialize(file_get_contents($fcbfile['ds_smilie'])); // save chat message $handle = fopen($fcbfile['message'],"a"); if ($config['remove_badword']) { $shout['message'] = remove_bad_word($shout['message']); } fwrite($handle, build_chat($shout)."\n"); fclose($handle); } } } ############################# SHOW MESSAGE ################################ $notice = file_get_contents($fcbfile['ds_notice']); if ($notice) echo $phrase['notice'],$notice,'
'; $shouts = file($fcbfile['message']); krsort($shouts); $count = 0; foreach ($shouts as $shout) { ++$count; $shout = trim($shout); echo '
'.build_message($shout).'
'; if ($count == $config['maxmessage']) break; } ?>
I'm using VN Chatbox, after 10 minutes. I can access normally, but when i come to backup tools to create a backup, it asked me CHMOD 777. I'm so suprised, because i was never be asked to CHMOD 777 backups folder before. Same with the language files.... I decided no CHMOD and come here to ask first, i think he forced me CHMOD 777 the folders so he - the attacker can attack me easier ???
What was happened to my forums ??? What do you think ? Please let me know by reply back, please i need all your helps.
Thanks a lot!