my Gallery got hacked. PLease find the file for me

[Indrit]

Hello all,

I think my Gallery got hacked. Please see it in action:  http://galeri.fieri.com  I am not sure which file they have changed and I would really appreciate if someone out there can help me find the file and fix it.   

Ah.., I am running version 1.4.8.  Please let me know what to do to prevent this low life people who have nothing else to do other than to destroy and bring problems to us.

Best regards,
Indrit

[Indrit]

PLease try to clik here and see it for your self:  http://galeri.fieri.com/index.php   If you go to  http://galeri.fieri.com  it looks OKAY. I have no idea where and how to fix.

Please someone help

[AlexBarTender]

I think is index.php. Just download coppermine again, and upload just index.php

That file don't have change associate with your theme aspect gallery 

[Indrit]

NO! I tried that. It gives me the idea it is index.php but I dont think is that.

Someone pleaseeeeeeeeee any advice ideas?

[François Keller]

the gallery seems to work as expectetd for me, please if simething is wrong on the gallery post screan captures with comments

[Indrit]

Actually I just finished the upgrade from version 1.4.8 to 1.4.19 and THAT took away all the problems however now When I try to modify  going to:  Config -> General settings -> URL of your coppermine gallery folder (no 'index.php' or similar at the end)   ->  when I modify the URL here to fit the actual URL and I hit "Save new Configuration" I get directed to another page please see the image (LOgin.jpg) attached and when I put in there my LOGIN info I get directed to another page, see attachment (finale.jpg).  As you see is blank page. I have to go back manually to http://galeri.fieri.com/admin.php and when I try to see if all is saved I see in fact it is the same as before.

[Indrit]

Ah.., also I forgot to add when I do a version check of course via Admin panel I get e list of a lot of files in RED color and a lot in yellow. I know that means those file/folder are missing, if in RED but I can see them in my gallery folder. Something must be wrong somewhere. See attachment.

Please advice

[Indrit]

the gallery seems to work as expected for me, please if something is wrong on the gallery post screen captures with comments

Since you asked for it (see attachment) here I had a open page from when my gallery was hacked. THe text on top of the header was there and I could not find what file they changed/modified. Anyway my actual problem it is not this anymore but the one previously mentioned.

Please advice

[Hein Traag]

http://forum.coppermine-gallery.net/index.php/topic,51927.0.html

Read through that topic and perform the nescesary steps.

[Indrit]

As a matter of fact I have replaced all files on my gallery with the latest stable release so I am OK on the walk-through that you suggested however I can NOT be able to change anything on my admin page of the gallery.

[Joachim Müller]

Upgrading does not sanitize your gallery if it has already been infected. Do as Hein suggested and read the sanitization thread thoroughly. Do as suggested there.