Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke
Author Message
patriot
New Member
New Member


Joined: Dec 19, 2003
Posts: 4

PostPosted: Mon Feb 23, 2004 11:25 am Reply with quote

I had my site hacked and the admin name and password was changed because I cant log in.

Raven very graciously pointed me to his REsetpassword script but the I am getting the "appears to be an invalid user name" error.

So does this mean they changed my admin user name also??? and if so what can i do about that???

--- Sad
 
View user's profile Send private message
Raven
Site Admin/Owner


Joined: Aug 27, 2002
Posts: 17077

PostPosted: Mon Feb 23, 2004 1:06 pm Reply with quote

Use phpmyadmin and go directly into the authors table and delete all admin accounts. Then, immediately log back into nuke/admin.php and it will request you to make a new admin account.

Or, edit the authors table and delete all account except God and just correct it back to what it should be.
 
View user's profile Send private message
patriot
PostPosted: Mon Feb 23, 2004 2:11 pm Reply with quote

okay this is what I am looking at.....UNDER NUKE_AUTHORS
Image


(please forgive my ignorance, but I am just not sure what I need to get rid of....) --

But can you tell me, are you saying I should delete ALL these tables??? And I do that using the trash can (DROP) right?

And then I can log back in and redo my account? -- I dont see anything with GOD on it so I dont know how to use that option that you speak of....

sorry.
t
 
Raven
PostPosted: Mon Feb 23, 2004 2:48 pm Reply with quote

No no! Click the Go button at the bottom of that screen and it will pull up all the records in the table.
 
patriot
PostPosted: Mon Feb 23, 2004 3:12 pm Reply with quote

Oh wow....thank you thank you thank you!!!! You are the NUKE MEISTER!!!!! Thanks so much!
t
 
Raven
PostPosted: Mon Feb 23, 2004 3:16 pm Reply with quote

Be sure to patch your site now Wink
 
Nukeum66
Life Cycles Becoming CPU Cycles


Joined: Jul 30, 2003
Posts: 551
Location: Neurotic, State, USA

PostPosted: Mon Feb 23, 2004 7:08 pm Reply with quote

patriot,
I'm offended! Laughing
I thought we were a team! Wink
Look at you going elsewhere for help ! Shocked

_________________
Scott Johnson MIS Ubuntu/Linux 11.10 
View user's profile Send private message Visit poster's website
patriot
PostPosted: Thu Feb 26, 2004 8:49 am Reply with quote

OH NO!!! HE found me.....here I was thinking Nukeem wasnt looking and now I've been found out....sorry dude. -- I feel so ashamed. Embarassed

BUT...why I am at it...RAVEN: Can you tell me where to get the patch to prevent this from happening again?
 
Nukeum66
PostPosted: Thu Feb 26, 2004 9:16 am Reply with quote

Only registered users can see links on this board! Get registered or login!
Just above the recent post center block Wink
 
salsaGalaxy
Regular
Regular


Joined: Mar 21, 2004
Posts: 54
Location: Bucharest, Romania

PostPosted: Wed Mar 24, 2004 12:29 pm Reply with quote

so which is security patch for admin hack ?
is it PHP-Nuke Patched Series By Chatserv ver 2.2?
or
Admin.php vulnerability - posted by chatserv in index page ?

_________________
Salsa Forever! Only registered users can see links on this board! Get registered or login! - where salsa is our life style! 
View user's profile Send private message Visit poster's website
Raven
PostPosted: Wed Mar 24, 2004 12:33 pm Reply with quote

The index page. Use either method depending on whether you use my hackattempt script.
 
neophite
Regular
Regular


Joined: Sep 13, 2003
Posts: 56
Location: Virginia

PostPosted: Wed Mar 24, 2004 6:48 pm Reply with quote

Raven wrote:
Use phpmyadmin and go directly into the authors table and delete all admin accounts. Then, immediately log back into nuke/admin.php and it will request you to make a new admin account.

Or, edit the authors table and delete all account except God and just correct it back to what it should be.


Hey Raven - I screwed up my Amin account today, and checked on this site and found this thread. Laughing

I followed your above advice and edit my GOD account (I have NO other Authors listed yet), after changing the name and password and saving it.

I keep getting begone message in my admin login. Embarassed

Also, I can't log out of USER account on my NUKE site either since this has happend. Welcome my name is at top of website mainpage and I can't access my account or any registered restricted areas of my site.

Is this to do with my previously having a user name and Admin name as the same?

_________________
Warmest Regards,
Bob Miedema
 
View user's profile Send private message Visit poster's website
Raven
PostPosted: Wed Mar 24, 2004 8:25 pm Reply with quote

Sounds like a cookie issue. Clear your cache and delete your cookies. Now what happens?
 
neophite
PostPosted: Thu Mar 25, 2004 8:12 am Reply with quote

Raven wrote:
Sounds like a cookie issue. Clear your cache and delete your cookies. Now what happens?


Well, I jumped the gun and after trying several different things (not thinking about a possible "cookie" problem), I used your SQL install program...cleaned up my database and system is back-up.

Now back to rebuilding.... Embarassed

Thanks for the feedback Raven, always thankful for your support Laughing
 
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©