Go Back   vb.org Archive > Community Discussions > Modification Requests/Questions (Unpaid)
  #1  
Old 08-20-2007, 11:42 AM
yumyumcat's Avatar
yumyumcat yumyumcat is offline
 
Join Date: Jan 2006
Location: Sunny South Kitty Land
Posts: 66
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default Need some help please for a few hacks

Unfortunately, my board was hacked terribly by some Turkish board, we lost over 100k posts and they got into my database. They have hidden script in many folders and my admin told me it'd be best to start over ;( Five years of our posts down the tubes

In any event, I had some really great hacks I found here over a period of time, but I can't seem to find them.

One of them was when a user signed on, his/her avatar would be displayed at top of forum.
The other was the mood hack and spoilers. Astrological sign. MySpace profile thing too.

I found a spoiler one, but it's not the same one. I suppose it doesn't matter much, but I'm not good at this stuff and my administrator's away at school He was so helpful. My poor members are hanging in there with me, but any help would be greatly appreciated.

I'd love to get the Board back to where it was lot of fun, lots of goodies for my members and I'd be willing to pay (reasonable fee) to anyone that could help me if I can't figure these out for myself. I haven't been able to work on my Board in so long that I've forgotten many things. Things as simple as loading a new skin. I just don't recall *bad motorcycle accident* sooooooo, if anyone has time, could you please contact me either by PM or answer this post.

I used to have an older version, but we upgrade to Version 3.6.7.

Thanks for your time.
Reply With Quote
  #2  
Old 08-20-2007, 11:59 AM
Marco van Herwaarden Marco van Herwaarden is offline
 
Join Date: Jul 2004
Posts: 25,415
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

If they got into the database and where able to upload mallicious files, then most likely the server itself was hacked (or cPanel/FTP account). First step would be to ensure that the server itself is clean and not vulnerable. Any other action would be useless until this is done.

If you have a backup of your database, then you can always restore your posts etc..
Reply With Quote
  #3  
Old 08-20-2007, 01:29 PM
yumyumcat's Avatar
yumyumcat yumyumcat is offline
 
Join Date: Jan 2006
Location: Sunny South Kitty Land
Posts: 66
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Marco van Herwaarden View Post
If they got into the database and where able to upload mallicious files, then most likely the server itself was hacked (or cPanel/FTP account). First step would be to ensure that the server itself is clean and not vulnerable. Any other action would be useless until this is done.
Yes, we think they did! I notified the server folks and they took this quite seriously; thank goodness, but no other sites but mine was effected. I don't have a site that's terribly intriguing, just a bunch of animal, speedbike racing and so many other forums that are just fun. Nothing remarkable about it LOL. That's why I'm so shocked we were targeted.

Anyway, my admin took the old forum and put it in a new folder called "OLD SITE" ~ he even took my subdomains down and everything. Like I said, I'm so unfamiliar with this anymore. Basically, my time's very limited as well.
Quote:

If you have a backup of your database, then you can always restore your posts etc..
He said I couldn't do that. I don't understand. Could you please elaborate? He stated that they put in script within the Board in many places. I suppose if he had different backups of it prior and dated them, then yes, probably could restore it right? I kinda doubt it though.

Thanks for the reply.
Reply With Quote
  #4  
Old 08-20-2007, 02:01 PM
Marco van Herwaarden Marco van Herwaarden is offline
 
Join Date: Jul 2004
Posts: 25,415
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

If you have a (complete) backup then you should always be able to restore it. If you do not run any modifications and the latest vBulletin version, then it should not be possible to post any mallicious content (other then virus infected attachments, but that is a different story) or hack your database/files.
Reply With Quote
  #5  
Old 08-20-2007, 03:24 PM
yumyumcat's Avatar
yumyumcat yumyumcat is offline
 
Join Date: Jan 2006
Location: Sunny South Kitty Land
Posts: 66
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Marco van Herwaarden View Post
If you have a (complete) backup then you should always be able to restore it. If you do not run any modifications and the latest vBulletin version, then it should not be possible to post any mallicious content (other then virus infected attachments, but that is a different story) or hack your database/files.
I'll get with the administrator and find out when he backed it up last. If he feels like there's a way to salvage it, than I would hope he would, but he seemed to think we should just start all over I'm not happy about it that's for sure, but if it can be recovered, than can we integrate it with our new version since that's already up and running?

Sorry for my ignorance.
Reply With Quote
  #6  
Old 08-21-2007, 05:49 PM
ravyn's Avatar
ravyn ravyn is offline
 
Join Date: Sep 2006
Location: Imaginary Space
Posts: 38
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I had a bad time with my board and vbPlaza (I made some edits I shouldn't have and it corrupted the database.) I luckily had a backup, but it had vbPlaza data in it, so when I tried to reload the data into the database (which was a new install without vbplaza) it kept saying that there were too many variable with my posts because of the plaza data, so I have to add everything back in by hand. not fun removing all the vbplaza data and reworking the data. Not fun at all. I feel for you. Good luck!
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 04:30 AM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.10075 seconds
  • Memory Usage 2,210KB
  • Queries Executed 13 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (3)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (6)post_thanks_box
  • (6)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (6)post_thanks_postbit_info
  • (6)postbit
  • (6)postbit_onlinestatus
  • (6)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete