I really don't believe someoen did this to you through our website. 
You will need 2 things to find out.
- Command prompt
- Task Manager.
Open your command prompt. If you are running windows 7. Type CMD in the search menu under start up. and the command prompt will appear. ( Command prompt is a black window with some writting and a basic cursor for typing in commands.
In the command prompt type....
netstat -ano
.....Then press enter
A list will pop up, there you will see who or what is listening and what is established. It is okay if you see established listeners, it could be websites or other regular software that functions that way. Leave the command prompt open and set to one side of the screen.
Next open your task manager.... Go to the process tab... then at the top click on view.... in the list click on "select Columns".... in that list, you will see "PID (Process identifier)" make sure the checkmark on that box is turned on.
Now in the process screen of the task manager, you can see the PID section. ( At the bottom of the screen, click on "Show process from all users" And behold, the list in the task manager just got longer.
Back to the Command prompt. The command prompt has a PID section too. And there are numbers. Match the PID number inside of the command prompt, with the PID numbers inside of the task manager. The task manager will tell you who or what it is that is connecting with you.
Sometimes it is just your software, but examine everything. If you have to google all the names you find in the task manager, and you may find a trojan.
that's so unfari to say, you know so little about my coding skills.
look, i didn't go to programming school or anything. i'm all self taught. what that means is that i occasionally missed out on a teacher yelling at me to not do a certain method becsaue it is flawed. i can do anything with a web brower, i have confidence in myself in that, i just.. have some mistakes i have to make in order to learn from.
luckily for you guys, your passwords are encrypted, your ip's are NOT logged, and we take security flaws very seriously and i'm confident that those flaws have been corrected. if not, well, it's not as if the forums will explode so don't get your shorts in a bundle okay?
The CMS has several exploits and I am unsure if they have been patched or not.
1. When you edit something you can create a frame that's essentially 1x1 pixel on your PC. This frame can open up a browser and run unrestricted java code, basically opening you to the flood gates. If someone posted and requested Luna to edit anything for them, it's possible this ran the exploit on the PC.
2. Because this forum does not use encrypted passwords and/or encrypted login, it would be very easy to sniff out any passwords used by the admins. I believe the SQL back end is also stored in non-encrypted format.
3. Login forum does not have CSRF. An attacker could potentially "ride an admins session" and do what he or she pleases.
These first and last exploit is targeted toward your CMS but its basic "best practice" guidelines for any forum. #2 is also something that we may want to consider.
Luna,
This kind of stuff happens when you begin webdev, just think of everyone as your beta testers.
You're a liar.
We don't even have a CMS. And our passwords ARE encrypted. I know they are, so you are lieing!
We don't even have an admin~ Do you think I'm an admin? Do you think I have special powerrs? If you logged into my account you could see it's no different from yours.
this forum is completely custom
i have been polite to you why are you trolling?
With or without a CMS, you have a webpage. A webpage that supports non-secure connections. This means the information is transmitted in clear text and can be sniffed out by any 13 year old who knows how to google. I'm assuming the passwords and information are stored in a SQL back end. If they are, you may want to read this:
http://thinkdiff.net/mysql/encrypt-mysql-data-using-aes-techniques/
You are not understanding what I am conveying to you. I am not trolling you, I am telling you what you should look at. This is the reason why people use pre-packaged forums and/or applications. It is already secured.