Originally posted by cataclyzmic
View Post
Announcement
Collapse
No announcement yet.
Site hacked, can someone please help?
Collapse
This topic is closed.
X
X
-
I still can't clear all the user titles. anyone have a solution?
Leave a comment:
-
Originally posted by FallenBeauties View Post
@jaycob
It's really weird, but there's nothing in the logs.. Neither they were deleted, it shows my IP. I think they only did it via query.. Set the bbactive to 0 and updated all user titles..
i have my forum set as, user ID1 is the webmaster but it has no permissions. i have a random hidden user for admincp access. the hacker some how found my hiddin user and logged into it.
FallenBeauties
how can i set (Set the bbactive to 0) please mate? thanks for your help.
Leave a comment:
-
I found bad index.html files in admincp and modcp. I deleted them but in the admincp I still see the hack video on the left column where all the controls are supposed to be. Help?
Leave a comment:
-
Anybody else notice any strange references to "bendercrawler" in their server log files?
It's a very new crawler and it's showing up suspiciously checking /misc.php?do=cfrules right around the time this happened. Might be irrelevant but it could be their discovery bot.
Leave a comment:
-
@Herzog
I'm doing the same thing right now as thank God I do backups each day, so everything's cool I guess.
@jaycob
It's really weird, but there's nothing in the logs.. Neither they were deleted, it shows my IP. I think they only did it via query.. Set the bbactive to 0 and updated all user titles..
Leave a comment:
-
Originally posted by FallenBeauties View Post@cataclyzmic
Mine weren't modified either, just all the user titles were updated and forum was turned off.
i just cant get ride of the user titles.
my board is live and i have looked everywhere, everything seems fine. but one thing i dont think they had was full admincp permissions, like super admin.
it sucks that we are all talking about this and giving them the satisfaction of sitting back and reading all the attention they are getting.
does anyone know the hackers site/forums? pm me is so thanks.
Leave a comment:
-
Originally posted by FallenBeauties View Post@cataclyzmic
Mine weren't modified either, just all the user titles were updated and forum was turned off.
edit: uninstalled advanced forum rules
Leave a comment:
-
4.1.3 using vSA Advanced Forum Rules - hacked by - TeamAnimus.
Turned off for now. Checking the code.
Leave a comment:
-
1. Go in PMA (phpMyAdmin) or SSH connecting
2. Open table user
3. Search your account in forum database ang change usergroupid for your account (set ID 6)
4. Go in Admin CP and delete product Cyb - Advanced Forum Rules
5. Delete administrator Team Animus
6. Reupload forum files
7. Run SQL query
Code:UPDATE user SET [COLOR=red]prefix_[/COLOR]customtitle = 0 WHERE usergroupid = '[COLOR=red]X[/COLOR]';
8. Update the counters - Update User Titles and Ranks
Last edited by TAIFUN; Wed 4 May '11, 7:15pm.
Leave a comment:
-
@cataclyzmic
Mine weren't modified either, just all the user titles were updated and forum was turned off.
Leave a comment:
-
Originally posted by NickCat View Post
My two questions about those who have been hacked again with the update are:
1) Did you check overwrite when installing the new version of the plugin?
2) Did you ensure your servers were clear of any backdoors that may have been installed before going live again?
Leave a comment:
-
Originally posted by krazeguy View PostNone of my physical files on my server were modified with this exploit.
Leave a comment:
Related Topics
Collapse
-
I just signed up for vbulletin. It is used in a lot of gaming communities. I am trying to build my own community and now have enough members to justify building a forum. So I know alot of the clans/gaming...
-
Channel: vB Cloud Support & Troubleshooting.
Wed 7 Jun '17, 8:25am -
Leave a comment: