XF 1.5 Hacker prevention question

#1
I know ******* has been hacking me, I've put up measures to stop them but it keeps happening. I have tried to look for someone to help and came across this website, http://www.forumcube.com/services/forum-malware-virus-removal/

The page looks very familiar to *******s service, and they are the ones hacking me, are these owned by the same person? forumcube trustworthy? It would cost me $1,000 to have my site fixed by them, I don't want to pay that much just to have them hack me again.

Anyone ever use forumcube before?
 
#3
*******'s resources were removed from here over a year ago.
I know, I have been getting hacked by them for over a year. I keep writing scripts to remove any changes they make to the site but they keep getting smarter. My server refuses to help me anymore because it's too much for them. That's why I want a professional to do it but I don't want to pay $1,000 if it's going to be hacked again by them. So is forumcube reliable?
 

JustinHawk

Well-known member
#14
i've done this in the past, doesn't stop them
set you main folder directory (httpdocs or public_html) permission to like this >> http://prntscr.com/dlm24z , it will prevent execution of any uploaded virus/infected file on your server, after that download backup of your website and compare files with original files and find bad stuff present on server and remove them :)

Close FTP ports also if not required.

BTW what type of hosting you have ?

EDIT : Changing permission will not affect you website working :)
 
#17
set you main folder directory (httpdocs or public_html) permission to like this >> http://prntscr.com/dlm24z , it will prevent execution of any uploaded virus/infected file on your server, after that download backup of your website and compare files with original files and find bad stuff present on server and remove them :)

Close FTP ports also if not required.

BTW what type of hosting you have ?

EDIT : Changing permission will not affect you website working :)
I am using Dynaboot for hosting, it's just $10 a month and seems to work fine, bought it from a friend a year ago and he had the site for 4 years. He never had any issues but then again I've made the site much more successful than he ever has. I don't understand what you mean by closing FTP ports though but I did set the main directory to only be executed. I also have a script running on a vps that replaces all main files on xenforo ever 15 minutes from a backup that wasn't infected. This was stopping it for awhile.

Edit: Setting the main directory to only execute was a mistake, it lead to a 403 error so I had to revert it and I made it all just read/execute
 
Last edited:

Tracy Perry

Well-known member
#18
i've done this in the past, doesn't stop them
Have you thought about setting it up new and then importing your old DB (users/posts/etc) as an import from an existing XF install. You'd have to restyle everything - and then you'd need to delete the old files (which if you are on cPanel you would need to do anyway to upload back to your existing domain). That way the only DB data that gets imported is XF specific and no add-0ns. Then reinstall your add-ons with the exception of Mr. HackTastic's crap.
 

JustinHawk

Well-known member
#19
Edit: Setting the main directory to only execute was a mistake, it lead to a 403 error so I had to revert it and I made it all just read/execute
execute was there for world ? it should not cause any issue i have this for my own website and revert it only while installing some new addons or upgrade. anyhow leave it if it dont work.

but you should download your website files and start comparing files if dont want to loose data otherwise perform xf to xf import.
From closing FTP port i meant block traffic on Your port 21 of server and also change SSH port if there.

any panel you are using to manage your VPS ?
 
Last edited:
Top