CMS Made Simple Forums

Dear friends,

Can anybody help me ? I am so stressed because my website has been hacked (tattoobody.org). I use CMS-1.2 version. The index.php has been changed by hacker. How do I restore the index.php file ? Is it possible to run upgrade in order to produce the new index.php with all original condition of website intact ? I still don't know how to do it ...thank you do much

Regards
Alexander Halim

Alexander, the easiest solution is to restore your site from the backup of it that you do every week or so. What? You don't have a backup of your site? Well now you know why you should have a backup. I learned this lesson the hard way just like you. I had three sites hacked and I had no backups. Then I had a 4th site hacked and because I had a backup, it was back up and running (on a new host I might add) within a few hours.

So back to your problem...there is a real possibility that only your index.php page was compromised. Have you looked through your other pages? Have you checked your permissions on the server to see if you've left something vulnerable like a world writable directory? If your database is untouched, then you can probably just delete your entire installation of CMSMS 1.2 and reinstall it. Of course if you have customizations, you will have to restore them.

Once you get back up and running, backup your site and your database then continue to backup at regular intervals. And try to discover how you were hacked. If you have not changed your username and password, do so immediately.

Thanks friends,

I am such a fool that I forget to do backup. I am sure that only index.php has been changed by hacker and the database is untouched. How do I restore the index.php ? If I delete the entire the installation of CMS-1.2 and reinstall it again, do you think I can get my website back ? I am afraid that what I will get is the original cms web site template.....not my website. I have spent a lot of time working on my website....well I am so stressed. Thank to all of your suggestions. I appreciate very much.

Regards
Alexander Halim

If you're sure that the index.php is the only affected file, just copy a fresh one from the original zipped file.

If you're not sure, just copy all of the CMSMS files up to your server and do a re-install, making sure you don't install the sample data when asked.

Nullig

Alexander, before you do anything, get your database backed up. This will ensure that no matter what happens to your installation of CMSMS that at least you will have a database backup to fall back on if something screws up on the front end as you attempt to rebuild your site. As another poster pointed out, if you "accidentally" have an error in judgement during the reinstallation of the CMS, you could easily wipe out your database and then you'd be starting completely from scratch.

Your webhost probably has a very easy way for you to backup your database. Go to your webhost account and look around your admin panel for that area that handles your database and see if it enables you to do a backup.