how do you fix a hacked phpBB2?

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • Mr Pheer
    So Fucking Banned
    • Dec 2002
    • 22083

    #1

    how do you fix a hacked phpBB2?

    some prick hacked my biker site, how do i fix it?
  • KMR Stitch
    I am cool
    • Jul 2003
    • 14494

    #2
    Did you have a bunch of mod's loaded? Or is it just regular phpBB?

    Comment

    • FrankWhite
      Confirmed User
      • Nov 2002
      • 3540

      #3
      first patch it to the latest version, then look around and see if he left any backdoors.

      Comment

      • Mr Pheer
        So Fucking Banned
        • Dec 2002
        • 22083

        #4
        i didnt have any mods, was just the regular phpbb2

        but it looks like my whole database is gone... all the forums say 0 messages and i cant even log in

        Comment

        • $5 submissions
          I help you SUCCEED
          • Nov 2003
          • 32195

          #5
          Originally posted by MrPheer
          i didnt have any mods, was just the regular phpbb2

          but it looks like my whole database is gone... all the forums say 0 messages and i cant even log in
          BTW, did everything we talked about go okay?

          Comment

          • KMR Stitch
            I am cool
            • Jul 2003
            • 14494

            #6
            I would say post a link... It's not spamming your fourm.

            Comment

            • Mr Pheer
              So Fucking Banned
              • Dec 2002
              • 22083

              #7
              Originally posted by $5 submissions
              BTW, did everything we talked about go okay?
              yep, thanks man

              Comment

              • Mr Pheer
                So Fucking Banned
                • Dec 2002
                • 22083

                #8
                Originally posted by KMR Stitch
                I would say post a link... It's not spamming your fourm.
                i dont really want to do that, its a forum for 84 guys in Las Vegas, most of them are real nice people and I dont want any pricks from GFY signing up and ruining my board like they've done to this one.

                Comment

                • QuaWee
                  Confirmed User
                  • Jul 2004
                  • 5791

                  #9
                  Originally posted by Doomed
                  first patch it to the latest version, then look around and see if he left any backdoors.
                  fuck I love your sig
                  i luv mainstream

                  Comment

                  • woj
                    <&(©¿©)&>
                    • Jul 2002
                    • 47882

                    #10
                    Originally posted by MrPheer
                    i didnt have any mods, was just the regular phpbb2

                    but it looks like my whole database is gone... all the forums say 0 messages and i cant even log in
                    looks like you are fucked, better hope you or your host has a backup...
                    Custom Software Development, email: woj#at#wojfun#.#com to discuss details or skype: wojl2000 or gchat: wojfun or telegram: wojl2000
                    Affiliate program tools: Hosted Galleries Manager Banner Manager Video Manager
                    Wordpress Affiliate Plugin Pic/Movie of the Day Fansign Generator Zip Manager

                    Comment

                    • bigmack
                      Confirmed User
                      • Feb 2005
                      • 329

                      #11
                      Originally posted by MrPheer
                      some prick hacked my biker site, how do i fix it?

                      Best idea in my line of thinking, say if your board was hacked so bad that you would have to start over from scratch (including loosing all accounts and posts) dump PHPBB and install Invision Powerboard. They have a free version and its the best board software I have ever run. I've used both scripts, I would take IvPB any day of the week.
                      Party Flings Blog
                      Smokin Hot Hunnies

                      I host with Lessel Web
                      Hosting

                      TrafficHolder.com - Buy and Sell Traffic

                      Comment

                      • KMR Stitch
                        I am cool
                        • Jul 2003
                        • 14494

                        #12
                        Originally posted by bigmack
                        Best idea in my line of thinking, say if your board was hacked so bad that you would have to start over from scratch (including loosing all accounts and posts) dump PHPBB and install Invision Powerboard. They have a free version and its the best board software I have ever run. I've used both scripts, I would take IvPB any day of the week.
                        Yeah, I have heard good things about IPB. Why not just buy a lic. It's like 100ish I think

                        Comment

                        • chaze
                          Confirmed User
                          • Aug 2002
                          • 9774

                          #13
                          PHPBB hacks give access to the whole site, you needa ftop or ssh program that can check for the date of changed files.

                          Then find any files changed from the day you where hacked.

                          Then remove them and replace with new ones, then update that shit The update should correct the file permissions and get things back in action.
                          Like the desert needs the rain
                          We do fully manged WordPress, VPS, and Servers. Adult Host Pro https://adulthostpro.com/ Since 2001

                          Comment

                          • bigmack
                            Confirmed User
                            • Feb 2005
                            • 329

                            #14
                            Originally posted by KMR Stitch
                            Yeah, I have heard good things about IPB. Why not just buy a lic. It's like 100ish I think

                            You could, but with the free version you get everything, it all works and never have to worry about a trial expiring. I think you might get patches between versions or tech support maybe with a lic, I dont know for sure. Anytime they come out with a newer version its available for download too. So, you can keep upgrading for free too.
                            Party Flings Blog
                            Smokin Hot Hunnies

                            I host with Lessel Web
                            Hosting

                            TrafficHolder.com - Buy and Sell Traffic

                            Comment

                            • Mr Pheer
                              So Fucking Banned
                              • Dec 2002
                              • 22083

                              #15
                              Originally posted by chaze
                              PHPBB hacks give access to the whole site, you needa ftop or ssh program that can check for the date of changed files.

                              Then find any files changed from the day you where hacked.

                              Then remove them and replace with new ones, then update that shit The update should correct the file permissions and get things back in action.

                              thats a great idea man... thanks

                              Comment

                              • HairToStay
                                Confirmed User
                                • Oct 2002
                                • 1521

                                #16
                                What version were you using?

                                Do you know which of the exploits they used to "hack" your site?
                                Make bank by giving your surfers free pics every day and it costs you NOTHING! Use POTD Sponsors to find adult sponsors in more than 75 niches who offer a POTD feature!

                                Comment

                                • camouflaged123
                                  Confirmed User
                                  • Feb 2005
                                  • 1590

                                  #17
                                  You can check with your host...they might be able to help you as they usuallly have a backup
                                  HIGHEST PAYING PHARMACY AFFILIATE PROGRAM IS HERE!
                                  1 order a day=$1710/month

                                  Comment

                                  • Mr Pheer
                                    So Fucking Banned
                                    • Dec 2002
                                    • 22083

                                    #18
                                    Powered by phpBB 2.0.10

                                    i dont know what exploit they used, but they put a bunch of turkish proaganda all over the site

                                    Comment

                                    • Marshal
                                      Biz Dev and SEO
                                      • Jun 2005
                                      • 15219

                                      #19
                                      just a patch... or upgrade to a newer version...
                                      ---
                                      Busy ranking websites on Google...

                                      Comment

                                      • Argoz
                                        Confirmed User
                                        • Aug 2002
                                        • 3006

                                        #20
                                        how do you fix a hacked phpBB2?
                                        With Vbulletin.com
                                        rssEVOLUTION : Produce a FULL website with ANY RSS feed(s) in seconds.

                                        contentSOLUTION : Allowing you to automatically grab articles from article directories,
                                        import as many text files as you want at once, grab ANY content from ANY RSS feed, and scrape search engines, instantly.

                                        Comment

                                        • Mr Pheer
                                          So Fucking Banned
                                          • Dec 2002
                                          • 22083

                                          #21
                                          I was able to get the board working again and remove all the turkish propaganda he put all over the place, users are still there but looks like the message database with over 5000 posts is gone

                                          updated it to the newest version released sept 17th

                                          Comment

                                          • Machete_
                                            WINNING!
                                            • Oct 2002
                                            • 14579

                                            #22
                                            get myphpadmin and check the database if it there. they might have changed the dbconnection and query, so it looks for the data somewhere else

                                            Comment

                                            • Mr Pheer
                                              So Fucking Banned
                                              • Dec 2002
                                              • 22083

                                              #23
                                              Originally posted by ebus_dk
                                              get myphpadmin and check the database if it there. they might have changed the dbconnection and query, so it looks for the data somewhere else
                                              the database is there, and it says its 594k but the board says no messages??

                                              Comment

                                              • Machete_
                                                WINNING!
                                                • Oct 2002
                                                • 14579

                                                #24
                                                Originally posted by MrPheer
                                                the database is there, and it says its 594k but the board says no messages??
                                                Then Im PRETTY sure its looking the wrongplace
                                                I reccomend you visit http://www.phpbb.com/phpBB/
                                                its the best place for support... and take a COMPLETE mysql backup before changing anything

                                                Comment

                                                • HairToStay
                                                  Confirmed User
                                                  • Oct 2002
                                                  • 1521

                                                  #25
                                                  Originally posted by MrPheer
                                                  Powered by phpBB 2.0.10

                                                  i dont know what exploit they used, but they put a bunch of turkish proaganda all over the site
                                                  Oh, that's why -- they're up to 2.0.17 and the exploits for your version are very well known -- that's when those php exploits began popping up.

                                                  Read the phpBB forum for information and how to restore because as someone said, the mysql db is most likel intact unless they managed to get into phpmyadmin.

                                                  If I remember right, more than 70,000 phpBB forums were hacked the first week of that exploit on 2.0.10
                                                  Make bank by giving your surfers free pics every day and it costs you NOTHING! Use POTD Sponsors to find adult sponsors in more than 75 niches who offer a POTD feature!

                                                  Comment

                                                  • grumpy
                                                    Too lazy to set a custom title
                                                    • Jan 2002
                                                    • 9870

                                                    #26
                                                    Originally posted by Doomed
                                                    first patch it to the latest version, then look around and see if he left any backdoors.

                                                    thats one fucking wild gif in your sig.
                                                    Don't let greediness blur your vision | You gotta let some shit slide
                                                    icq - 441-456-888

                                                    Comment

                                                    • MetroPornTour
                                                      Confirmed User
                                                      • Apr 2005
                                                      • 1043

                                                      #27
                                                      Originally posted by Doomed
                                                      first patch it to the latest version, then look around and see if he left any backdoors.
                                                      I love your sig photo!!!
                                                      Where is it from?
                                                      ICQ: 335-670-081 | L.A.: 213 985 2352
                                                      Metroporntour is operated by people that didn't do the Job they were contracted for!
                                                      Click my image for my official website

                                                      Comment

                                                      • Manowar
                                                        jellyfish  
                                                        • Dec 2003
                                                        • 71528

                                                        #28
                                                        Originally posted by Pixhell
                                                        With Vbulletin.com

                                                        Comment

                                                        Working...