π₯ ... and it was my own stupid fault. I still can't fathom how stupid I have been. But here some infos first:
Website: http://sharpe.fan-fictions.org
Version: 3.1.1
Hacks or Patches: None
Skin: My own
What happened:
Well I am not entirely sure but I have a pretty good guess and I could slap myself for what I did. I upgraded the website from version 2.0.7 to 3.1. and then 3.1.1 some weeks ago and all went well. But and here comes the big mistake I've made - after upgrading I should have deleted the install.php again - I forgot that little part or, at least, I cannot remember having deleted it after the upgrade. I am pretty sure the hacker used the install.php to hack the site. I don't thing he used my dbconfig.php.
Since this is the first time - ever - that any of my sites got hacked, I am really unsure of how to proceed. What do I need to do to fix the site. Could he have changed the database?
from my experience, you could of been hacked even with that gone. note https://efiction.org/forums/index.php?topic=4716.msg25527#new
make back ups, reinstall, update the files with the ones from your backup i believe
I am rebuilding efiction! Join us on irc! #efiction at
To clarify, you should have made the backup before you got hacked. Restoring from a backup made after would not fix anything. Also, if you restore your database and files from a backup, you shouldn't need to reinstall.
What exactly happened, Souly? Please provide as much information as possible so that the problem can be tracked down. When I go to your site, it's not there. Your site being completely deleted is not something that can happen from your efiction software being hacked so I'm guessing it's just coincidence, or you gave us the wrong url?
