Topic: punBB 1.4 - Attack/hack/virus/blocking of forum

Hello,
my forum was attacked by some robot.

There is no permission to anybody. Impossible to login or register.

http://health.ic.cz/punbb/

For this forum you have been suspended.
Any questions should be directed to the administrators e-mail

It was for the 2nd time.

1st time, I solved it by deleting of "cache" folder on FTP server. Now it doesn't work.

_bans table seems to be ok.


in _groups it seems to be OK. no ban of " g_read_board"

But the strangest thing was that after fixing of 1st attack, there was found some spam user.

After deleting of him, two new ones were created immediately. (no matter if i deleted user in administration or MySQL)

http://imageshack.us/a/img834/3824/punbbvirus.gif

Re: punBB 1.4 - Attack/hack/virus/blocking of forum

All your users have the same IP = 10.10.30.20
You are banned from this IP.
All users are banned wink

P.S. Do not block users by IP or make certain the correct IP.

Parserus, UserAgentAnalyzer.
I speak only Russian  :P

Re: punBB 1.4 - Attack/hack/virus/blocking of forum

I banned nothing!!! As I already wrote.

These are "fake users" made by the virus.

Re: punBB 1.4 - Attack/hack/virus/blocking of forum

Verify your computer for viruses.
Install a firewall.
Change the password to access the server.
Change the password on the forum.
Update the software on a server.
Verify that the server / forum does not contain extraneous files.
Verify that the files may not have been harmful code.

Parserus, UserAgentAnalyzer.
I speak only Russian  :P