Register Members List Search Today's Posts Mark Forums Read

Reply
 
Mod Options
  #31  
Old 27 Feb 2008, 16:41
fordsho fordsho is offline
 
Join Date: Jan 2008
Yea he is getting in touch with me via a email from hotmail, and yea he is really screwing with my mind. i never really had to deal with hacking or guys like this because i generally do honest work. but i had this guy work with me and he had picked a couple of mods and these mods are the ones that want the site. They decided that they should have the forums and not me so thats the reason they are barking up my tree. i changed my forum pass like 2-3 this month and im going to be changing everything else as well.
Reply With Quote
  #32  
Old 27 Feb 2008, 16:46
lasto lasto is offline
 
Join Date: Jan 2002
serious why get worked up over it - kk it more than annoying and is taking up time u dont have but besides that look on it as more of a hindrance than anything else.
Like everyone else said - why would they need cpanel etc if they hacked your site - so you are fairly safe.ALso get in touch with your host and let them know what is happening and see if they can offer any help.Log all chats etc and keep any emails you recieve.
Reply With Quote
  #33  
Old 27 Feb 2008, 16:47
G0F0RBR0KE's Avatar
G0F0RBR0KE G0F0RBR0KE is offline
 
Join Date: Mar 2005
Real name: James
I suggest you ask your host provider to ask hotmail for some help. Attacking a website is against the law and your host provider can press charges.
__________________
http://vb-spanish.com is releasing soon (help will be appericated).
Reply With Quote
  #34  
Old 27 Feb 2008, 17:24
Boofo's Avatar
Boofo Boofo is offline
 
Join Date: Mar 2002
Real name: Rob
You've got a rogue staff member from the past is what it looks like to me. Someone who knows a few things but not enough to convince me he's dangerous at all. You have to be more careful in who you give the power to. It's not as easy to take away as it is to give it.

Ignore the emails and report them. The more you answer him the more he knows he's got you. That is a big part of it, knowing he has your mind.

Last edited by Boofo : 27 Feb 2008 at 19:13.
Reply With Quote
  #35  
Old 27 Feb 2008, 17:27
Jafo232 Jafo232 is offline
 
Join Date: May 2004
If he was staring at your FTP, he could grab the database. It is BS..
__________________
Become a Lampwright today at www.lampwrights.com!
Reply With Quote
  #36  
Old 27 Feb 2008, 17:45
lasto lasto is offline
 
Join Date: Jan 2002
Originally Posted by Jafo232 View Post
If he was staring at your FTP, he could grab the database. It is BS..
Correct me if im wrong but database is not stored on the ftp - so how can he grab the database from the ftp unless it was stored there for back up purposes.
Reply With Quote
  #37  
Old 27 Feb 2008, 18:07
DivisionByZero's Avatar
DivisionByZero DivisionByZero is offline
 
Join Date: Dec 2002
Originally Posted by Neutral Singh View Post
If you can get into your admin cp then check the recent the admin log and note down all the IPs that have logged in as admin... check out who have registered with those ips and if you find any suspicious username with admin powers... BAN it right now... !! best of luck...
better yet, put the entire block in iptables if you're on your own box.

if you're on shared hosting, change your database username and password as well. there's the possibility that he has an account on the same shared box and can easily manipulate your db with the proper credentials, regardless of which user root he's running a kiddie script from.

and the guy doesn't sound too smart either... if he can access your database to switch the on/off flag, then he can certainly dump the database into your webroot and simply download it.
__________________
Professional vB development since 2002.
References & Praise: 1|2|3|4|5|6|7|8

Last edited by DivisionByZero : 27 Feb 2008 at 18:13.
Reply With Quote
  #38  
Old 27 Feb 2008, 18:23
Reynaldovb Reynaldovb is offline
 
Join Date: Dec 2004
Just like someone said at the beginning of the thread, you should contact your host about this. They do this for a living and if they are half decent they will have a standard procedure to deal with these kinds of actions to fill the holes, to track him down and report his information to the proper authorities.

In other words, you got friends, use them!
Reply With Quote
  #39  
Old 27 Feb 2008, 18:35
Jafo232 Jafo232 is offline
 
Join Date: May 2004
Originally Posted by lasto View Post
Correct me if im wrong but database is not stored on the ftp - so how can he grab the database from the ftp unless it was stored there for back up purposes.
Well, first of all, he could see your includes/config.php file and download that, get your db info, upload a script to access it, and dump/download the db..

--------------- Added 27 Feb 2008 at 18:39 ---------------

It should also be noted that it would be to his benefit for you to NOT know he took the database. He is just trying to con you into giving it to him because he has no other way to get the data..
__________________
Become a Lampwright today at www.lampwrights.com!

Last edited by Jafo232 : 27 Feb 2008 at 18:39. Reason: Auto-Merged DoublePost
Reply With Quote
  #40  
Old 27 Feb 2008, 19:12
fordsho fordsho is offline
 
Join Date: Jan 2008
Thank you guys for all the help my Host has been notified since sunday and i believe they took the necessary precautions. I'm just glad my site is safe but stuff like this can really get you shook up.
Reply With Quote
  #41  
Old 27 Feb 2008, 19:18
Boofo's Avatar
Boofo Boofo is offline
 
Join Date: Mar 2002
Real name: Rob
Originally Posted by fordsho View Post
Thank you guys for all the help my Host has been notified since sunday and i believe they took the necessary precautions. I'm just glad my site is safe but stuff like this can really get you shook up.
Only if you let it shake you up. Getting upset or shaken up doesn't fix the problem. Calm heads ALWAYS prevail.
Reply With Quote
  #42  
Old 27 Feb 2008, 23:32
iogames's Avatar
iogames iogames is offline
 
Join Date: Jan 2007
Real name: Josh Arcadia
One thing we learned... We need a 'Board Security' Section...

and P.S. This thread has more profanity that a day with my GrandMa
__________________
. █│║▌│█│║▌║│█║▌│║║█║
Reply With Quote
  #43  
Old 27 Feb 2008, 23:33
Boofo's Avatar
Boofo Boofo is offline
 
Join Date: Mar 2002
Real name: Rob
LOL at Grandma. Been there, heard that.
Reply With Quote
  #44  
Old 27 Feb 2008, 23:53
iogames's Avatar
iogames iogames is offline
 
Join Date: Jan 2007
Real name: Josh Arcadia
Do you ever stop to think that maybe Fordsho was the real 'hacker' that was trying to learn from us?!?!?!

Just kidding!

p.s. but I never saw the site :P
__________________
. █│║▌│█│║▌║│█║▌│║║█║
Reply With Quote
  #45  
Old 28 Feb 2008, 00:40
Boofo's Avatar
Boofo Boofo is offline
 
Join Date: Mar 2002
Real name: Rob
Well, I know it wasn't me or iogames. That would be giving us both way too much credit for being smart enough to pull anything off even remotely similar.
Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
Mod Options

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
Forum Jump


New To Site? Need Help?

All times are GMT. The time now is 10:47.

Layout Options | Width: Wide Color: