So, the first time I was hacked, they gained access to admincp, they inserted a plug in, as well as sent mail to my users. A holes! I locked down the ability to execute to a particular IP, changed all passwords, and they came back, but this time, they just hit the postparsed table and injected their bit of java to redirect every link.

Any additional ideas on how to lock this down? I have vbseo and other plugins. This spans latest 4 and 3.8 boards I run.

English please.. How do I fix ASAP without having to go through 4 years of computer science?

My phpmyadmin is secure to my IP, I don't see any new plugins....How do I validate that there are no remote access users? Thanks for the guidance/help.

Passwords have been changed for admin IDs.. Below is a list of plugins that I have installed.. Majority of them were disabled as of last week due to 18,000+ emails going out..

Any plugins match those from other sites having issues?


vBulletin 4.1.11
AME 3 3.0.1 Auto Media Embedder and Video Extender
BBR - Google Analytics Addon 1.0.3 Adds Google analytics code below the</head> tag.
DragonByte Tech: vBShop (Lite) 1.2.1 vBShop is an advanced Shop system for vBulletin, designed to let your members spend accumulated points on various forum actions.
DragonByte Tech: vBShout (Lite) 5.4.4 vBShout by DragonByte Technologies: Allow your forum members to chat with eachother in real-time with this AJAX-powered Shoutbox!
Hasann - Sub-Forum Manager 4.0.1 Sub-Forum Manager by Hasann
ibProArcade for vBulletin 2.7.0 ibProArcade - professional Arcade System for vBulletin
Post Thank You Hack 7.82 Post Thank You Hack
Skimlinks Plugin 4.1.11 Official Skimlinks plugin for vBulletin
User CP Referral ID and Referrer in Profile 1.0.5 This product will add a content box at the top of the User CP displaying a customizable referral "Message" and the member's "Referral Link" along with their referral count. This will also show who referred a user in their profile in the About Me tab.
vBadvanced CMPS 4.1.2 vBadvanced Content Management & Portal System
vBH - Add new tabs 1.2 1.2 This plugin adds new tabs to the main navbar
vBSEO 3.5.1 PL1 vBulletin SEO
vBSkinZone - Simple Ad Management 1.0 Enables the inclusion of ads without editing templates
vbStopForumSpam 0.61 This plugin allows you to check new registrations against www.StopForumSpam.com
vBulletin Blog 4.1.11 Personal web log, integrated with vBulletin.
vBulletin CMS 4.1.11 Content Management System
VSa - Advanced Forum Statistics 7.0.3 VSa - Advanced Forum Statistics
VSa - Login To User Account 3.0.5 VSa - Login To User Account
VSa - PayPal Donate 5.0 VSa - PayPal Donate
[APM] Advanced Product Management 4.0.001 Product Management Center: add/edit/delete product's components.

Passwords have been changed for admin IDs.. Below is a list of plugins that I have installed.. Majority of them were disabled as of last week due to 18,000+ emails going out..

Any plugins match those from other sites having issues?


vBulletin 4.1.11
AME 3 3.0.1 Auto Media Embedder and Video Extender
BBR - Google Analytics Addon 1.0.3 Adds Google analytics code below the</head> tag.
DragonByte Tech: vBShop (Lite) 1.2.1 vBShop is an advanced Shop system for vBulletin, designed to let your members spend accumulated points on various forum actions.
DragonByte Tech: vBShout (Lite) 5.4.4 vBShout by DragonByte Technologies: Allow your forum members to chat with eachother in real-time with this AJAX-powered Shoutbox!
Hasann - Sub-Forum Manager 4.0.1 Sub-Forum Manager by Hasann
ibProArcade for vBulletin 2.7.0 ibProArcade - professional Arcade System for vBulletin
Post Thank You Hack 7.82 Post Thank You Hack
Skimlinks Plugin 4.1.11 Official Skimlinks plugin for vBulletin
User CP Referral ID and Referrer in Profile 1.0.5 This product will add a content box at the top of the User CP displaying a customizable referral "Message" and the member's "Referral Link" along with their referral count. This will also show who referred a user in their profile in the About Me tab.
vBadvanced CMPS 4.1.2 vBadvanced Content Management & Portal System
vBH - Add new tabs 1.2 1.2 This plugin adds new tabs to the main navbar
vBSEO 3.5.1 PL1 vBulletin SEO
vBSkinZone - Simple Ad Management 1.0 Enables the inclusion of ads without editing templates
vbStopForumSpam 0.61 This plugin allows you to check new registrations against www.StopForumSpam.com
vBulletin Blog 4.1.11 Personal web log, integrated with vBulletin.
vBulletin CMS 4.1.11 Content Management System
VSa - Advanced Forum Statistics 7.0.3 VSa - Advanced Forum Statistics
VSa - Login To User Account 3.0.5 VSa - Login To User Account
VSa - PayPal Donate 5.0 VSa - PayPal Donate
[APM] Advanced Product Management 4.0.001 Product Management Center: add/edit/delete product's components.

The hackers also installed Skimlinks on my forum, because I certainly didn't install it.

It is starting to look like VBSEO is the common product among us. I beginning to wonder if running vbseo is even worth it.

I also logged into phpmyadmin and found that every user had a wildcard setup as an acceptable host. I know I didn't set these up... I even had ANY user set to be able to connect from ANY host. So check out those mysql privileges, password protect your phpmyadmin directory.

Please explain what you mean by the wildcard setup for "every user". I just want to make sure I'm understanding you right.