Quick help after someone hacked into my site

[barcacms]

Soemone recently hacked into my site and replace my index.php file with an html file that reads "This SiTe HaCkEd By !! Mr CrAzY !!". grrrrrrr.

I have managed to fix one of my sites by reloading the index.php document, but on another I am having problems as I guess I have the wrong version or something.

Is there any way I can check the version by the files on my server?

The message I get when I reload index.php and navigate to the site is:

xxxxxxxxxxxxxxxxxxxxxxxx

Any ideas how this happened? I spoke to my host who reckon someone must have got hold of my host password

[RonnyK]

Check http://forum.cmsmadesimple.org/index.ph ... #msg109186

You didnt state the running version, and as no one so far, mentioned the 1.2.5 being hacked, I guess you are running an older version of CMSMS. The topic given, describes that people search the internet for CMSMS hacks and target older versions..

Ronny

[cyberman]

xxxxxxxxxxxxxxxx

bootstrap.inc is not a CMSms file.

Open version.php with a text editor (not word). There you should found some lines (21-23) like this

Code: Select all

$CMS_VERSION = "1.2.5";
$CMS_VERSION_NAME = "Free Hill";
$CMS_SCHEMA_VERSION = "29";

So you can see what CMSms version was installed.

You should delete all CMSms files (without config.php) and upload a fresh install once again. Delete all database tables and restore a secure/unhacked database backup And make a update to current CMSms version. And read this

http://wiki.cmsmadesimple.org/index.php ... mall_Guide

[Pierre M.]

recently hacked...
Is there any way I can check the version by the files on my server?

This is not what matters. You must first destroy everything (hence including intruders) : all files, folders, hidden files, hidden folders, database...
Then recreate database and install from scratch on a sane environment.
Hopefully, you have a sane backup ?

Pierre M.