Hello my site is broken:
http://musicollaborate.com/

There are a whole bunch of database errors and I don't know where to begin. Also, I am unable to log into my admin with my password, is it possible that my site has been hacked or is this a corruption in the user database?

I have tried repairing and optimizing the database, but this changes nothing.

Any help would be appreciated.

Comments

bsherwood’s picture

bsherwood commented
Assigned: hugeknot » Unassigned
Priority: Critical » Normal

What modules do you have installed? Did you make any admin changes before you got the errors?

hugeknot’s picture

hugeknot commented

These are all the modules that are in my Sites/Modules folder:

abuse
addthis
adsense
adsense_injector
advanced_profile
advuser
alter_css
asset
audio
badbehavior
bbcode
bio
bio_role_terms
block_assign
blockanonymouslinks
blockcache
captcha
cck
competition
creativecommons_lite
date
devel
dynamic_logo
emfield
evoca_ms
extra_voting_forms
false_account
fastpath_fscache
finduser
flashnode
front
geobrowser
getid3
globalredirect
gmaplocation
guitar
image
imagecache
importexportapi
inactive_user
janode
job_queue
link
location
logotool
mass_contact
mediafield
mediafield_display
members
nice_menus
nodefamily
nodeprofile
nodevote
nodewords
og
og_forum
panels
phpbb2drupal
poormanscron
privatemsg
profileplus
relativity
share
simpleinvite
subform_element
swfobject
swfobject_api
tagadelic
tagadelic_views
taxonomy_access
token
tracknstack
update_status
user_badges
userlink
userpoints
userpoints_contrib
userpoints_top_contributors
versus
views
views_popup
vote_up_down
votingapi
xmlsitemap
xtracker

I don't know which ones are installed or active as I cannot access the site. I have made no recent admin changes.

hugeknot’s picture

hugeknot commented

In mysql, I found that the field 'users' has this error:

Error

SQL query: Edit

SHOW FULL FIELDS FROM `users` ;

MySQL said: Documentation
#130 - Incorrect file format 'users'

I am sure this is not right?

hugeknot’s picture

hugeknot commented

Is there anyone who can help me?

It seems like the user database has been wiped. How could this have happened? I have a backup, but it is quite old. Unless anyone has any suggestions of how I can get the data back, then my site is lost.

xmarket’s picture

xmarket commented

Check out Drush module if you have direct access to the server (console):
http://drupal.org/project/drush

Advise to get rid of problem:
1; You should disable any module which isn't part of the drupal core. -> I think after this step you have a working site again.
2; Check every module minimum requirements. The minimum required versions highly recommended.
3; Re-enable the disabled modules one-by-one to detect which module has this evil side effect.

If the problem remains you should check index.php after wierd html (iframe) tags. Anyway, try to replace every source code in your site, and check the last committed nodes(node table) and the users table with phpmyadmin. Maybe they committed some tricky content.

And the most important part: Update your drupal core to 5.21 at least and you should check the modules versions too.

Cheers,
xmarket

dkeays’s picture

dkeays commented

How about accessing the database via phpmyadmin, exporting 'nodes' and 'node_revisions' and anything else that may have changed since the backup, recovering from the backup, and importing the nodes into the 'new' site?

Have you done anything recently to your site? Install new modules, upgrade the kernel, or perform a task for the first time?

hugeknot’s picture

hugeknot commented

Thanks, some good advice, but I will loose all that user info??
I have not made any changes to my site for ages, this was the first time I had visited it for a couple of weeks.

It would be good to know what happened.

dkeays’s picture

dkeays commented

Maybe you could read through the security bulletins. An SQL injection could have done what you describe (I'm not saying it did, just that it could). An SQL injection is one of the more common forms of attack against a web app, and the kernel you are using is old enough to be vulnerable I would think. How many users did you have on your system? Can they be sacrificed?

hugeknot’s picture

hugeknot commented

I had about ten thousand users.
I have decide to start from scratch. My old users will probably not forgive me, but at least they weren't paying. I will set up a directory where they can claim their old files if they want but they will have to create their profiles from scratch.

bsherwood’s picture

bsherwood commented
Status: Active » Fixed

Since you are starting from scratch, I am going to set this to 'fixed'. To avoid this problem in the future, you should try and keep backups depending on how often you update your site.

Status: Fixed » Closed (fixed)

Automatically closed -- issue fixed for 2 weeks with no activity.