I have a forum, 4.0.7 and we were attacked, I need some help ridding his statement, restoring and patching ect. Can anyone point me in a good direction of who to ask?

Right now I've replaced index.php with a html just to rid me of his statement showing

Way over my head
BILL

Forum software upgraded, and everything seems to be going right.

I have a forum, 4.0.7 and we were attacked, I need some help ridding his statement, restoring and patching ect. Can anyone point me in a good direction of who to ask?

Right now I've replaced index.php with a html just to rid me of his statement showing

Way over my head
BILL

How exactly were you hacked? Can you post the link to your forum please?

If I were you I would contact the host and ask them to check their logs. It would also be best to upgrade your forum to the latest version as the version you have contains several known security issues, not to mention the unnumerous bugs.

Talk to your host to try to find out how they hacked you. This is important - if you don't find this out, then you may fix everything and then just get hacked again.

Use a database backup make prior to your being hacked.

Reupload all your vbulletin files.

Look for any files that aren't something you added to your site.

Do a search and find other threads about this exact same issue.

I really have no clue, here is the link http://www.rcmt.biz/bd/ I took off my temp html page again so you can see it.
I'll contact my host, see if they can do anything to say what happened.

I am in over my head..:confused:

--------------- Added 1306515111 at 1306515111 ---------------

I really have no clue, here is the link http://www.rcmt.biz/bd/ I took off my temp html page again so you can see it.
I'll contact my host, see if they can do anything to say what happened.

I am in over my head..:confused:

oh man he hacked one of my admins
Website security

Hey Will, I'm HUN. You're propably angry at me because of the deface,
but I would only like to notify you to upgrade vBulletin 4.0.7 to version 4.1.x, since this version has bad security holes,
and if you don't upgrade it, I'll keep hacking your forum.
Cheers

Where you running 4.0.7 or 4.0.7PL1? There was a patch put up a while ago because of a security exploit discovered.

probably the earlier one, it was updated by vbull people for me in Nov or Dec

You should *always* pay attention when there is a security patch released and then patch your site immediately. This notice was posted about it - http://www.vbulletin.com/forum/showthread.php/376995-vBulletin-4.X-Security-Patch?p=2139863&viewfull=1#post2139863 - and a Security Bulletin was sent out to all license holders regarding this.

If I were you, I would make a thorough scan of the db and server space and if nothing out of the ordinary was found, I would delete the hacker account, and upgrade the forum to the latest version a.s.a.p. Or you could revert to your most recent db backup from before the hack and then upgrade your forum.

And pay the hacker no attention, do not "egg on" "challenge" or entice him/her with replies upgrade and stay current, always checking for updates to modifications including commercial third party plugins as well to avoid this in the future. Notices are sent to your admincp in regards to vBulletin, pay attention to those and mark modifications as installed on this site to receive email notices regarding updates and more pertinent information.

I hate to say this and I don't direct it at you solely however everyone needs to understand you can't simply install a forum including a few mods then let it sit and post away. You must upkeep your forum as with anything for example if it's a site you run for your business then it should be considered I dare say like a second house, beach house... you must still upkeep the house and property for regular use on vacations, you can't let it sit and not mow the grass (spam, deletion of spam, bots etc), you must setup something with the water and power company (hosting) otherwise pay monthly in order to enjoy the stay when you their, security system (updates/upgrades) then painting every few years (styles) you must upkeep your forum in the same respect I can't stress that enough :(.