is there any black hole in vbulletin 4.0.2 ?
who is this hacker ?
chek it
*** Link removed, probably infected with virus ***

--------------- Added 17 Mar 2010 at 09:25 ---------------

how i fix it any solution ?

Reupload your index.php

Check you havent got any files chmodded to 777

i upload index php
but same

Reupload your index.php

Check you havent got any files chmodded to 777

Our styles folder thing is 777 but that's because VB instructions said to do so, is that going to be a problem?

is there any black hole in vbulletin 4.0.2 ?
who is this hacker ?
chek it
*** Link removed, probably infected with virus ***

--------------- Added 17 Mar 2010 at 09:25 ---------------

how i fix it any solution ?

I can''t load the page. How were you hacked?

I can''t load the page. How were you hacked?

chek page is loading

chek page is loading

Replace all your vb files with a fresh set from the vb package (your version). This will take care of cleaning up all your forum files. Then scan all the other files in your server space and look if they have been injected with malicous codes and clean them up if they have been. Look also for anything out of the ordinary, like files that shouldn''t be there etc. Then scan your pc for any malware programs and change all your passwords (for your forum, ftp, cp of your host etc). And upgrade your forum to the latest version if you are running an older version. And as last but not least, inform your host so they can check their access logs and see how the hacker got in. Hope it helps.

sir thanks for help
i will need upload all new data (overwrite) ?
or i will need to delete old folder and then upload new ?

sir thanks for help
i will need upload all new data (overwrite) ?
or i will need to delete old folder and then upload new ?

Well, have you installed mods that required uploading of files? Anyway, I don''t think that deleting of the forum folder will necessary. Overwritting them will be more than enough, however check the forum folder for any suspicious files. i.e. files that shouldn''t be there.

DO NOT CLICK THAT LINK IN POST #1

It has been reported, the hacker embedded a Virus into that index page.

https://vborg.vbsupport.ru/external/2010/03/38.png

--------------- Added 1268829981 at 1268829981 ---------------

gsmlover4u

Run scans on your PC now and make sure your not infected, same for anyone else who did not see an alert by their anti-virus or other software used to prevent such, active x exploit etc.

I had no-script running however it bypassed that luckily AVG caught the little demon.

Edit: Thanks Marco for the quick edit - You DA MAN ;)

To troubleshoot this, please remove any hacks and disable your plugins, then see if you still have this problem.
Note: To temporarily disable the plugin system, edit config.php and add this line right under <?php

define('DISABLE_HOOKS', true);

If so, reupload all the original vB non-image files (except install.php). Make sure you upload these in ASCII format and overwrite the ones on the server.

If your problem still exists, please create a new Style with no Parent set. Now browse the forum using this new style, do you still have the same problems? If you are troubleshooting login or guest issues, you will need to set this style as board default in the vBulletin Options.

If that doesn't solve your problem, please open a support ticket.