https://proxy2.de/forum/posts/list/3.php JForum - http://www.jforum.net I was confident and stupid to assume that it was secure, now I am crying, bcz some boozo hacked into the guestbook and destroyed all my 2 yr worth of comments. This was the old version sorry to say that. This is just a church website that does not bother anyone and really of no value.
I am just here venting my frustration or maybe could I have been able to restore it?
Now today I have installed version 2.3.1, and lo and behold my second guestbook visit was unfortunately some stupid boozo again from Turkey who tried to hack it. Now I have become very paranoid. Is this version very secure?

Here are some screen shots


[color="red"][url]http://www.aids-epidemic.com/images/hacker.jpg[/url]

[url]http://www.aids-epidemic.com/images/hacker2005.jpg[/url]
[/color]

Now the guy who unsuccessfully tried to hack the guestbook today only managed to leave this behind. I was able to delete this gargabe, lame attempt.
Any help, advice !!!



[quote]Rawkmetal
<div id=\"Layer1\" style=\"position:absolute; left:0; top:1; width:1000; height:1034;
z-index:1; background-color: #000000; layer-background-color: #ccccc; border: 1px none #000000\"> <strong><font color=\"#777777\" face=\"Verdana\" <!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\">
<title>HACKED BY Rawkmetal : Çıx Çıx Ayıptır Kardeşim </title>

<body bgcolor=\"#000000\" leftmargin=\"0\" topmargin=\"8\" rightmargin=\"0\" bottommargin=\"8\" marginwidth=\"0\" marginheight=\"0\">

<P align=center> </P>
<P align=center> </P>
<P align=center> </P>

<center>
<font color=\'E5E5E5\' size=\'5\'>.:: HACKED BY RAWKMETAL ::.</B><BR><BR><br>

<center>
<center>
<font color=\'E5E5E5\' size=\'5\'>Veritabanını daha bir çok şeyi silebilirdim ama bakınız efendi insanım <br><br>
<font color=\'E5E5E5\' size=\'5\'>Gidiyorum Ama Hep Buralarda Olacagım... <br><br>
<font color=\'E5E5E5\' size=\'3\'>www.rawkmetal.tk // rawkmetal@rawkmetal.tk[/quote][color="red"][/color]]]> https://proxy2.de/forum/posts/preList/4221/13983.php https://proxy2.de/forum/posts/preList/4221/13983.php GMT https://proxy2.de/forum/posts/preList/4221/13984.php https://proxy2.de/forum/posts/preList/4221/13984.php GMT Now today I have installed version 2.3.1, and lo and behold my second guestbook visit was unfortunately some stupid boozo again from Turkey who tried to hack it. Now I have become very paranoid. Is this version very secure?

Now the guy who unsuccessfully tried to hack the guestbook today only managed to leave this behind. I was able to delete this gargabe, lame attempt.
Any help, advice !!!
[/quote]

Your guestbook has probably been "googlized" by the hackers/spammers. They will probably continue to come back now that they have found you....

As Carbonize suggests, you should disable html and there are some simple suggestions for spam and some script-edits for guestbook spam that can be found on this forum if you use the search engine to seek them out.

Good luck with this problem.]]> https://proxy2.de/forum/posts/preList/4221/13990.php https://proxy2.de/forum/posts/preList/4221/13990.php GMT https://proxy2.de/forum/posts/preList/4221/13991.php https://proxy2.de/forum/posts/preList/4221/13991.php GMT https://proxy2.de/forum/posts/preList/4221/13992.php https://proxy2.de/forum/posts/preList/4221/13992.php GMT
The link is]]> https://proxy2.de/forum/posts/preList/4221/14022.php https://proxy2.de/forum/posts/preList/4221/14022.php GMT
http://proxy2.de/forum/viewtopic.php?t=4082]]> https://proxy2.de/forum/posts/preList/4221/14047.php https://proxy2.de/forum/posts/preList/4221/14047.php GMT
[quote]Warning: mysql_connect(): Access denied for user: 'XXXXXXX@localhost' (Using password: YES) in /backup/XXXXXX_html/user_config.php on line 26
Error connecting[/quote]]]> https://proxy2.de/forum/posts/preList/4221/14174.php https://proxy2.de/forum/posts/preList/4221/14174.php GMT https://proxy2.de/forum/posts/preList/4221/14175.php https://proxy2.de/forum/posts/preList/4221/14175.php GMT www.gilbertmatare.com/signup.php I host church songs I let people download from my site. I needed to control bandwidth, so a friend wrote me a php script to force them to register before they can download.. Previuosly they had to email me a password and username then I would enter it manually into my password folder in Cpanel.
The script wont work now, and I have no clue what to do.
I dont know if its even allowed to post this but if you feel sorry to want to help me I can send you all the other details to my site via PM!!!]]> https://proxy2.de/forum/posts/preList/4221/14176.php https://proxy2.de/forum/posts/preList/4221/14176.php GMT webmaster@carbonize.co.uk as this sites PM system is disabled.

ps. It is now 06:12 GMT and I am coming to the end of a 12 hour night shift so don't expect anything soon.]]> https://proxy2.de/forum/posts/preList/4221/14177.php https://proxy2.de/forum/posts/preList/4221/14177.php GMT https://proxy2.de/forum/posts/preList/4221/14178.php https://proxy2.de/forum/posts/preList/4221/14178.php GMT https://proxy2.de/forum/posts/preList/4221/14179.php https://proxy2.de/forum/posts/preList/4221/14179.php GMT The script wont work now, and I have no clue what to do.
I dont know if its even allowed to post this but if you feel sorry to want to help me I can send you all the other details to my site via PM!!![/quote]

Have you considered contacting your friend who wrote the script for assistance?

Essentially, this is saying that it is attempting to get the information to open MySQL from a backup file -
/backup/gilbertm/public_html/user_config.php at about line on line 26
The file it is trying to pull the information from is user_config.php and the error is occurring at (around) line 26.

It seems unusual that the system would be trying to run from a backup directory unless you did an incorrect restore process.]]> https://proxy2.de/forum/posts/preList/4221/14182.php https://proxy2.de/forum/posts/preList/4221/14182.php GMT https://proxy2.de/forum/posts/preList/4221/14188.php https://proxy2.de/forum/posts/preList/4221/14188.php GMT