No announcement yet.

My Forum hacked and redirecting to other URL

  • Filter
  • Time
  • Show
Clear All
new posts

  • My Forum hacked and redirecting to other URL

    Hello Guys
    I am facing a very weird problem. My Forum was hacked other day, someone edited my DB and inserted some kind of shell script.
    After that, my forum started redirecting to some other Website URL. I restored my DB Backup, but still facing same problem. I also deleted all php files but still facing the issue.
    Is there are method to find and remove that shell script from Database?

  • #2
    do a search in the database "url" in question.
    FTP also? >>
    Look in your htaccess file (especially him).

    make a diagnosis of files not original vbulletin
    in the admin panel (Maintenance >> Versions suspicious files)
    my forum Support bug reports please


    • #3
      Do a search for "base64" in all templates and plugins - often malicious code is base64 encoded so it is not obvious what it does.

      What version of VB are you running? Only 3.8.7 is kept up to date security wise, earlier versions have known security exploits- it could just keep happening.


      • #4
        base64 returned with a lot of queries, i deleted all queries and upgraded to latest stable version. Now Problem Resolved!
        Thank Joe


        widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.