Tweet
I am running the latest version with the security patches. Somewhere somehow someone managed to get some kind of code injected into my site that whenever you click on a page it opens up a browser with some very nasty garbage on it. I am in my Admin control panel and It also ahs this issue. It apears to be some sort of overlay code on the page. Where would they be hiding this that I cannot see it in the page source code?
-
-
What is the "nasty garbage" shown at the top of the page? I don't see anything when browsing your site as a guest.Translations provided by Google.
Wayne Luke
The Rabid Badger - a vBulletin Cloud demonstration site.
vBulletin 5 API -
We managed to get it cleaned up by applying the newest version. Thank you for looking. It was some sort of overlay code that made it where whenever you clicked on any part of the page it would bring up a malware page in another browser. I really need to get this site upgraded to the latest and great 5.0. Is there someone that can do it for a fee?Comment
-
You can purchase a professional upgrade on the main page by clicking Purchase and then Addons.Translations provided by Google.
Wayne Luke
The Rabid Badger - a vBulletin Cloud demonstration site.
vBulletin 5 APIComment
-
Nope the malware is still there. Crap. I have shut down the forum for now. Wayne Luke is there a way I might be able to get some help figuring out the issue. It appears to be an overly of the whole site. It is even doing it in the Admin panel. If I click on anything it brings up a second instance of a browser with a maleware site on it. ihave ran through the page source code for over an hour and can't see anything wrong.
Comment
-
Check your plugins here:
AdminCP > Plugins and Products > Plugin Manager
Often we see this come from a plugin that sits by itself at the top of the list that isn't part of an added Product. If there is one there, delete it.
Next, get up to date copies of all Products that you've got installed, update the files on your server and re-import the XML files for them to ensure that the correct code is held in your database.
For security, you should also change the following passwords:
- all Administrator accounts
- all FTP accounts
- your vBulletin database*
*Note that when you do this, you will need to edit includes/config.php to use the new password.
Does this resolve the problem?Comment
-
All the plugins are disabled via the config file. Our people compared all the files to a fresh copy and found a code that did not belong in a file named vbulletin-sidebar.js. We replaced it with a clean version. We cleared the cach. We still have the issue. Also I am not sure how to re-import the XML files.
Comment
-
Yes... There are step by step instructions in this topic: https://www.vbulletin.com/forum/foru...ring-your-site
It will tell you how to investigate vBulletin, find, and remove any malware on your site. It will tell you what you need to do to make sure it doesn't happen again in the future. Though, the software is only as secure as your server. If you're not using SMTP, SFTP, HTTPS, and other security protocols then your site can be at risk.Translations provided by Google.
Wayne Luke
The Rabid Badger - a vBulletin Cloud demonstration site.
vBulletin 5 APIComment
-
Hi
Now "page", "filler" control are in top of page, I would like to have another one in end of page to easy to move next page once we are in end of page - Can we do t... -
I have created another iframe on my site, but this one isnt responding to the code.
http://apco-atlantic.org/Call_For_Papers
Any idea what I missed?... -
-
Wouldn't the current issue (or is it a feature?) that causes all threads to direct to page one regardless of which post you try to access be an SEO nightmare?
It sounds to me like this will...
Comment