Go Back   vb.org Archive > vBulletin 3 Discussion > vB3 General Discussions
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #1  
Old 04-11-2009, 05:26 AM
Osama11 Osama11 is offline
 
Join Date: Apr 2006
Posts: 131
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default site HAcked---Urgent

my site is getting hacked again n again..
i just did the backup data 30 mins ago n upgraded the scripts.,

AGAIN its get hackeddd...

i have vbulletin. 3.8.1
n my site is still hackeeed

help me how can i fixx my site .. n how can i secure my site..

plzzz help me guysssssssssss

www.onlinedesiclub.com
Reply With Quote
  #2  
Old 04-11-2009, 09:38 AM
Swampfox Swampfox is offline
 
Join Date: Aug 2006
Posts: 119
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

looks like they are just replacing your index.php page with their own, you can still access your site by going to other pages directly

obviously they have access to your server file system, its not necessarily a vbulletin issue, change all of your passwords including your server password and look at moving to a more secure host
Reply With Quote
  #3  
Old 04-11-2009, 10:01 AM
dxflw dxflw is offline
 
Join Date: May 2008
Posts: 218
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Maybe format your pc first beacuse is possible that you have a keylogger ready installed to you pc and thirds persons knows your passwords and can easy access.After the format change all the passwords you use and then replace all your site files. And i think is important to delete all your forum styles and install again from the beggining.That will clean all your templates.

I m not sure 100% if that will finish your problem but its one possible way.
Reply With Quote
  #4  
Old 04-11-2009, 04:01 PM
Osama11 Osama11 is offline
 
Join Date: Apr 2006
Posts: 131
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

some 1 plzz help me how can i solve this isssue
Reply With Quote
  #5  
Old 04-11-2009, 04:04 PM
Phobos49 Phobos49 is offline
 
Join Date: Jan 2009
Posts: 39
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Osama11 View Post
some 1 plzz help me how can i solve this isssue
Change FTP-Password!!!!
Reply With Quote
  #6  
Old 04-11-2009, 04:06 PM
Osama11 Osama11 is offline
 
Join Date: Apr 2006
Posts: 131
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

i did every thing ..

but still its happeneing
Reply With Quote
  #7  
Old 04-11-2009, 04:20 PM
Mellymonster Mellymonster is offline
 
Join Date: Oct 2008
Posts: 308
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Do this, go to your FTP, and see if there is a different page as in for the index, I've had this happen on one of my sites, its just a Index injections. You should just beable to remove the index they injected, and then change your index back to index.php...
Reply With Quote
  #8  
Old 04-11-2009, 04:25 PM
Osama11 Osama11 is offline
 
Join Date: Apr 2006
Posts: 131
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Mellymonster View Post
Do this, go to your FTP, and see if there is a different page as in for the index, I've had this happen on one of my sites, its just a Index injections. You should just beable to remove the index they injected, and then change your index back to index.php...
i did delete it ... but again. again they r hacking my site..

how can i secure my site
Reply With Quote
  #9  
Old 04-11-2009, 04:55 PM
Lynne's Avatar
Lynne Lynne is offline
 
Join Date: Sep 2004
Location: California/Idaho
Posts: 41,180
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

As suggested in post 3, perhaps you've got a keylogger on your PC. If you keep changing the password, and they are immediately getting in again, it sounds like that is a good possibility.
Reply With Quote
  #10  
Old 04-11-2009, 08:45 PM
Osama11 Osama11 is offline
 
Join Date: Apr 2006
Posts: 131
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Lynne View Post
As suggested in post 3, perhaps you've got a keylogger on your PC. If you keep changing the password, and they are immediately getting in again, it sounds like that is a good possibility.
how can i delte key looger from my cp.

do i have to reboot the computer?
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 10:18 PM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.05118 seconds
  • Memory Usage 2,248KB
  • Queries Executed 13 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (3)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (1)pagenav_pagelink
  • (10)post_thanks_box
  • (10)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (10)post_thanks_postbit_info
  • (10)postbit
  • (10)postbit_onlinestatus
  • (10)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete