Try my tips if you still could not find the answer:
You need to do everything from your server root hightly recommended, Simply try this: (turn off your forum and temporary change your forum dir to something else before following these steps below)
1. Change your database username and password
2. Change your pw in root access host and vb config.php match with your new database username and pw.
3. Request your host provider to change your ip address, dont worry your mail server still work after they change ip address (they should know what to do to make your server working with the new ip address) Also, you need to go your domain name manager to change point your AHOST to the new ip address of your server.
4. Login cpanel block his ip address + his domain name if found.
5. Download your forum dir to your computer and scan trojan,badscripts,viruses...ect...
6. Reup to your host, using SFTP (port 22) i recommend not to upload FTP or Browser or any unsecured transfer.
7. Before turn your forum, search his ip address or username maybe he regged in your forum (he must before hacking your site), ban/remove/blacklist if found ..ect.
8. Now safety turn your forum backon but dont forget to track/log in your root cpanel.
9. You also can request your provider to tracking badscript or ddos attack may enter your site if his script has linked to your forum template script or whatosever.
Tips: If his script hacking yoursite may be still contains in your templates, whatever you do you will be hacked again whenever your forum is back on.... As i said above, keep tracking your server log activity for any strange actions and/or similar to his ip address... do the trace ... blah blah.... if his script has not yet clean from your templates he should come back and attack your forum again within 24 hours no matter what you did/change (above).
Hope this help! goodluck
You need to do everything from your server root hightly recommended, Simply try this: (turn off your forum and temporary change your forum dir to something else before following these steps below)
1. Change your database username and password
2. Change your pw in root access host and vb config.php match with your new database username and pw.
3. Request your host provider to change your ip address, dont worry your mail server still work after they change ip address (they should know what to do to make your server working with the new ip address) Also, you need to go your domain name manager to change point your AHOST to the new ip address of your server.
4. Login cpanel block his ip address + his domain name if found.
5. Download your forum dir to your computer and scan trojan,badscripts,viruses...ect...
6. Reup to your host, using SFTP (port 22) i recommend not to upload FTP or Browser or any unsecured transfer.
7. Before turn your forum, search his ip address or username maybe he regged in your forum (he must before hacking your site), ban/remove/blacklist if found ..ect.
8. Now safety turn your forum backon but dont forget to track/log in your root cpanel.
9. You also can request your provider to tracking badscript or ddos attack may enter your site if his script has linked to your forum template script or whatosever.
Tips: If his script hacking yoursite may be still contains in your templates, whatever you do you will be hacked again whenever your forum is back on.... As i said above, keep tracking your server log activity for any strange actions and/or similar to his ip address... do the trace ... blah blah.... if his script has not yet clean from your templates he should come back and attack your forum again within 24 hours no matter what you did/change (above).
Hope this help! goodluck
