Block Title Problem

New Member Joined: Nov 08, 2007 Posts: 18

Hello. I have a problem with something and i have searched sites and cannot find anything relating to this sort of problem. Every block on my site has this

Code:

d3d3LnRoZS1kZXZpbHMtZHVuZ2Vvbi5jb20=.d3d3LnRoZS1kZXZpbHMtZHVuZ2Vvbi5jb20=.LzFEdW5nZW9uMS8=.TW96aWxsYS80LjAgKGNvbXBhdGlibGU7IE1TSUUgNy4wOyBXaW5kb3dzIE5UIDUuMTsgLk5FVCBDTFIgMS4xLjQzMjIp.NTguMTA1LjU3LjE4OQ==.

As the title on every block on my site. Not sure if someone has hacked my site or what. It has made a mess of the blocks with the title pushing everything across to the right. If anyone knows of a prob like this could you help and point me to any links that may resolve this sort of problem. Thanks

Posted: Wed Jan 07, 2009 11:08 am

Can you change it in the blocks admin, by editing the custom title for the block ?

Posted: Wed Jan 07, 2009 2:20 pm

First, if someone was able to hack your site to put this title in then you need to deal with that problem and eliminate their ability to access the site first. Otherwise they will just be able to do it again. Figure out when this happened and check your logs for just before that time and see what happened. Change your admin passwords, and any passwords for FTP and/or Cpanel or the like.

Once that's done you could establish the "official" titles for each block from the SQL used to load the database in the installation directory. Look for the default data loaded into the "title" field of the blocks table. You could use PHPmyadmin to edit in this data to your existing blocks table, if nothing else is wrong. Or you could do as Nukeum66 said and use the blocks editor.

registered · Posted: Wed Jan 07, 2009 11:44 pm

Pretty sure its a hack. Looks like its base64 encoded

Decoded reveals

Code:




www.the-devils-dungeon.com?ýÝÝÜ¹Ñ¡”µ‘•Ù¥±Ìµ‘Õ¹•½¸¹½´ÿòóGVævVöãóÿÓ[Þš[KÍŒ


ÛÛ\]X›NÈTÒQHËŒÈÚ[™ÝÜÈ•KŒNÈ“‘UÓˆKŒKÌŒŠ58.105.57.189ÿü��

Posted: Thu Jan 08, 2009 6:54 am

Thanks for all replies. What imma do is delete the folder after I have backed up pics and stuff. I have another question which seems have me puzzled is I have downloaded the latest raven nuke and installed it without any problems but whats disturbing is i have not given anyone a link and i start seeing Guest IP addys in the site info block. I have gone through all files i have that have members ips in them and have started blocking them all in a range cause when i do a search on the ips i seem to get places like POLAND and unknown places so all i can think of is someone is trying to hack it again. Whats the best way to prevent these people accessing the site.

Posted: Thu Jan 08, 2009 8:53 am

You can block individual countries through Sentinel's IP2country facility but that won't stop, completely, hackers from visiting your site. Generally if you have Sentinel installed and configured correctly you won't get hacked. You can look at tracked IP's to see what the hackers are up to also. You might want to activate http_auth (instructions are in the how to install manual in the distribution) as an additional level of protection.

Once you put a site on the Internet people are going to visit you from all over. You don't have to advertise to have that happen nor can you stop it.