So finaly my forum has been hacked... what to do?

[Arthur]

Ahh A saudi heh? adeeni ragm jawalo..
Give me his cell phone number ? I will be the proxy between you and him.

don't have man.. but got his ID...... if someone could hack his id it would be very beneficial for others.....

OMG posts at KWWH make my eyes bleed (not all some )

\

[pompom]

hmmmmmmm
ok i'll kep that in mind in future... but many forums are running on nulled script? isn't there any security percautions?

In the mean time,type in google "vbulletin security" and read all articles

[SuicidalMedia]

Read about CHMOD here :

http://php.about.com/od/phpbasics/ht/chmod.htm

If you didn't opened it you're fine. And also, which version of vBulletin you were using?

[Noimus]

Lmao typical retards saying you trust them and u give them something like that lol

Well contact your host get it back. But before you do that do a clean reboot of the PC. Also tell your host to look for some backdoored c99 shells or anything like that.

[Exel]

Holy shit people on the internet are so smart these days.

PM me your cpanel, msn, email, ftp, and social insurance number and I can fix it.

[dermechove]

Man I want to clarify some points:
-This so called hacker used a vuln in your script OR on your server.
-If you are runing some old vBulletin or you have installed a vulnerable plugins or products (and they are a lot) he must have used it.
-This guy IS NOT A HACKER :: he is simply a script kidie or w/e it's called.
what he have simply done is:

Code: 

-went to milw0rm (or any other sited that publish 0day exploits)
-have found a 0day exploit.
-he used the dork supplied WITH the exploit to search IN Google for infected sites.
-he just used the Exploit.

so guys don't worry just keep your scripts up to date and you'll be fine.
And yeah don't give you passwords to any one(on the Internet) u don't know who is watching you.

[Arthur]

Read about CHMOD here :

http://php.about.com/od/phpbasics/ht/chmod.htm

If you didn't opened it you're fine. And also, which version of vBulletin you were using?

ok.. i'll chk that.... i was using vb 4.0.4 and thinking to switch the latest VB...but.......

Lmao typical retards saying you trust them and u give them something like that lol

Well contact your host get it back. But before you do that do a clean reboot of the PC. Also tell your host to look for some backdoored c99 shells or anything like that.

bro i am not much familer with this kinda of things like backdoored or shells etc..... please explain it... i know they are belong to hacking stuff but please share your expereince

Holy shit people on the internet are so smart these days.
PM me your cpanel, msn, email, ftp, and social insurance number and I can fix it.

no its all right man.... i have talked to my hosting provider..... they will fix that.

Man I want to clarify some points:
-This so called hacker used a vuln in your script OR on your server.
-If you are runing some old vBulletin or you have installed a vulnerable plugins or products (and they are a lot) he must have used it.
-This guy IS NOT A HACKER :: he is simply a script kidie or w/e it's called.
what he have simply done is:

Code: 

-went to milw0rm (or any other sited that publish 0day exploits)
-have found a 0day exploit.
-he used the dork supplied WITH the exploit to search IN Google for infected sites.
-he just used the Exploit.

so guys don't worry just keep your scripts up to date and you'll be fine.
And yeah don't give you passwords to any one(on the Internet) u don't know who is watching you.

what that "vulnerable plugins or products" i had installed lots of plugin....
and scripts? which kinda of script? etc please tell me brother

[bxflow]

wow you have a lot to learn just by asking that last question

[brainst0rm]

LOL @ professional hacker. A fuckin script kiddie who runs around defacing pages with some exisiting vulnerability?

[dermechove]

You should use a non nulled vBulletin (or at least nulled by trusted teams [vBteam.info]).
Use only official products release(vBteam.info,vbulletin.com).
try to keep your scripts updated and don't install any Release Candidate or Pre-releases(these are for testing purposes).