Hacked by Syrians
Collapse
X
-
Tags: None
-
I was also hacked. Running 4.2.0. Please reply with any ideas on how this hacker is accessing vbulletin installs. And any fixes.Comment
-
-
Which announcements and which threads discuss HOW TO FIX this? Please list the URLs for us.
Thank you.Nelson
www.Hobby-Machinist.comComment
-
DELETE the /install/ directory.
PoS coding... WHO does this? I've had one forum hacked number of times before I discovered this fix... there is no email, no security alert and only notice you receive is when you login to admincp.Last edited by InvisionTech; Fri 13 Sep '13, 7:34pm.Wise man says...
Virtualization.net | DefenceTalk.com | World Affairs Talk.com | AutoTalk.com | SinoDefenceForum.com | Solutions.pro | PakistanTalk.comComment
-
...and don't forget to delete the admin usernames that the bastards create.
PoS coding!Wise man says...
Virtualization.net | DefenceTalk.com | World Affairs Talk.com | AutoTalk.com | SinoDefenceForum.com | Solutions.pro | PakistanTalk.comComment
-
I'm not a techie. I couldn't clear this message the hackers put on no matter what I did. I backed up the old site on my computer and tried downloading the 4.2.2 alpha and tried to upgrade and use the fresh install to remove the hacking. No go. It remained and after I ran upgrade.php I got a huge number of errors. Finally, I asked my web server to restore from this morning. We will see fi that works. I will delete the install folder once it is restored. This is a TERRIBLE thing. My site has been hacked 3 times in 3 days now.
Nelson
www.Hobby-Machinist.comComment
-
They may have created plugins, etc. delete those and also edited existing plugins. So you have to do some digging... and revert your templates. FORUMHOME and FORUMDISPLAY, etc.
I know how you feel, one of my website (just a forum) was hacked multiple times over the past 4 days... this exploit existed in 4.0 to 5.0+ so I am not sure what vbulletin team is smoking, obviously, its not the imported stuff. No wonder there are vbulletinsucks websites.
Wise man says...
Virtualization.net | DefenceTalk.com | World Affairs Talk.com | AutoTalk.com | SinoDefenceForum.com | Solutions.pro | PakistanTalk.comComment
-
-
They may have created plugins, etc. delete those and also edited existing plugins. So you have to do some digging... and revert your templates. FORUMHOME and FORUMDISPLAY, etc.
I know how you feel, one of my website (just a forum) was hacked multiple times over the past 4 days... this exploit existed in 4.0 to 5.0+ so I am not sure what vbulletin team is smoking, obviously, its not the imported stuff. No wonder there are vbulletinsucks websites.Nelson
www.Hobby-Machinist.comComment
-
-
For your information it was little file with .dat extensionComment
widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
Comment