vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   Please help ASAP I am being hacked AGAIN! (https://vborg.vbsupport.ru/showthread.php?t=161578)

themajor 10-31-2007 01:03 AM
Please help ASAP I am being hacked AGAIN!
 
Somehow I have a member who is getting into the admin cp and changing stuff.

it started subtly by changing a letter in a forum NFL FORUM to NLF FORUM so that it would not work. now i log into the admin cp and this guy has made himself an ADMIN!

please help! what can i do? i feel helpless!!

MrApples 10-31-2007 01:13 AM
Pull the plug for now.

themajor 10-31-2007 01:15 AM
how so? if i turn it off he apparently has been able to hack into the admin cp... i change my password hourly to a random sequence of letters and numbers...

this is insane.

Lynne 10-31-2007 02:31 AM
Does he have access to your Admin panel or to your database? I would password protect the admin panel (htaccess) and also password protect your cpanel/phpMyAdmin. And, change the password to login to ftp.

Awjvail 10-31-2007 03:35 AM
Ban him and turn off new registrations until you get it figured out.. if he can get back in even after the registrations are turned off and he is banned, then he's got access to cpanel/phpmyadmin. If he can't, he's only got access to the Admin CP and you need to change some passwords.

Marco van Herwaarden 10-31-2007 09:20 AM
Please read the following thread on how to improve security for your board:
http://www.vbulletin.com/forum/showthread.php?t=194701

blindman4556 11-01-2007 03:35 AM
get his ip and ban him from the cpanel

cagbaazee 11-01-2007 04:33 AM
It is not so easy.. becoz he can use the proxy so how will u ban u and he will register under new user name. am i correct.

mrjefferson75 11-03-2007 05:02 PM
maybe so but you will get him out of the system and thn just tighten your security

bigcurt 11-03-2007 06:32 PM
remove tools.php from one of your folders..forgot which. That is probably your problem...I believe it should be in your admincp folder..remove it.

Kirk Y 11-03-2007 08:02 PM
Unless he's changed the filename of tools.php, he shouldn't even be able to access the AdminCP; he'll be presented with a security warning stating as much.

Lynne 11-03-2007 10:01 PM
He hasn't come back to post in this thread in several days, so I would assume he fixed the problem.

James McIntosh 11-03-2007 10:10 PM
You might have a keylogger, so don't login to your host cPanel then he'll be able to unban himself.


All times are GMT. The time now is 04:57 PM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01023 seconds
  • Memory Usage 1,726KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (13)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete