2012-03-18, 06:00 PM
I'm Josh from pixelcarworld.com and we recently encountered a spam attack through our shoutbox. We found out it was a php injection by this site http://www.taalpalet.nl/
We're not able to get rid of it and it keeps filling up our shoutbox and banning our members. It started out as a person (I assume) banning everyone from the sb it could. It was using profile after profile that wasnt even in the system and even using the names of current members. It also had the sb rights that no regular member should be able to have.
The admin (Andy) restored the site to the way it was before the 1st attack but the injection is still there. And our forum is broken now.
If anyone knows how to combat this please reply cause were more or less at the mercy of this thing atm. Thanks.
edit: It seems to have died down for now but our forum is still broken, Andy requested a backup just a min ago so that might help.
edit 2 : Forum is back up but the php injection is still there. Not spamming again yet though.
We're not able to get rid of it and it keeps filling up our shoutbox and banning our members. It started out as a person (I assume) banning everyone from the sb it could. It was using profile after profile that wasnt even in the system and even using the names of current members. It also had the sb rights that no regular member should be able to have.
The admin (Andy) restored the site to the way it was before the 1st attack but the injection is still there. And our forum is broken now.
If anyone knows how to combat this please reply cause were more or less at the mercy of this thing atm. Thanks.
edit: It seems to have died down for now but our forum is still broken, Andy requested a backup just a min ago so that might help.
edit 2 : Forum is back up but the php injection is still there. Not spamming again yet though.