tag:blogger.com,1999:blog-804714437673009003.post1068695889460270903..comments2024-02-23T09:06:13.967+00:00Comments on Dynamoo's Blog: "Important - New account invoice" spam leads to malwareUnknownnoreply@blogger.comBlogger3125tag:blogger.com,1999:blog-804714437673009003.post-24114072758137148752014-09-19T09:16:00.825+01:002014-09-19T09:16:00.825+01:00@Andy, thanks for the update. I will note that the...@Andy, thanks for the update. I will note that the site is clean. 188.165.204.210 is a hub for this sort of infection, that's a critical thing to look for if you monitor web traffic.Conrad Longmorehttps://www.blogger.com/profile/11751822299235747323noreply@blogger.comtag:blogger.com,1999:blog-804714437673009003.post-78233734297432973502014-09-18T22:51:23.690+01:002014-09-18T22:51:23.690+01:00It got on bnsoutlaws.co.uk via an mchat plugin whi...It got on bnsoutlaws.co.uk via an mchat plugin which has since been removed. The offending code got very little opportunity to propagate as it was contained and removed within 12 hours of infection. <br />The IP 188.165.204.210 listed in the blog has nothing to do with bnsoutlaws.co.uk and the site should not be blacklisted. At present the site is blacklisted on ESET but we intend to have that Anonymoushttps://www.blogger.com/profile/14125055275941121102noreply@blogger.comtag:blogger.com,1999:blog-804714437673009003.post-51957486577945831852014-09-18T16:10:40.377+01:002014-09-18T16:10:40.377+01:00I had the same junk dumped in my site bulletin boa...I had the same junk dumped in my site bulletin board last week. They seem to have found a vulnerability in phpBB that allows a random folder and page dump. I also had a huge .tgz file in there which is of course gone now.<br />I suspect a bit of obscure buggy code recently found and not yet patched. Definitely a new one on me!Anonymoushttps://www.blogger.com/profile/15354158569163281640noreply@blogger.com