Nope. Just like it. And it has a rooster on it. Perfect avvy.

Someone was asking what was going on but, by the time I typed a reply, Mods had deleted the thread (Go, Mods, Go!).

My guess is that it's someone with a script and some zombie bots. Since Admin is having problems blocking all this crap, I'm assuming that the zombies are widely distributed (ie, not the same IP or range of IPs). I hoping that whoever it is runs out of unblocked zombies soon but it may take a while. Until then: Happy Hunting, guys! :tiphat:

I'll be on Spam Patrol so KEEP reporting.

You'll have to ban me to keep me from reporting. I HATE SPAM!

Actually, a simple request would work. But you get the point. heehee

Edit: BTW, this one is still hanging around.

The members of this site have done well when tracking down bad sellers/buyers. Maybe they could apply their skills locating the SPAMmer(s). Post some IPs and other info you might have on them, Admin.

Wow... Today is worse than before

Looks like the Mods are sleeping late today. Lots of flagged posts haven't been deleted yet. :)

On a more serious note, if Admin will send me a list with Username, Location, and Drives of users who have signed up in the last few months, I'll see if I can find someone to write a short script to GREP loc and drvs for the "aaaaNNNN" string (or do it manually). Should be able to spot most, if not all, of the SPAMmer accts.

Can't blame them, I think they were partying hard last night

holy crap it's nothing BUT spam today lol. I got all happy when I saw there was a whole bunch of new stuff for sale but then got sad again. It's all just gibberish. I wonder why this is happening in the first place?

Thank goodness, for the gibberish part - makes 'em easy to spot. I'm even getting to where I can spot a bogus username two out of three times (still getting some false positives but I'm getting better at it).

My guess is that it's someone with a grudge against the site or one of the users. Most SPAMmers would have given up by now.

Its over!! They are in balls deep!!!

Sent from my SPH-L710 using Tapatalk 2

a simple exploit injection in database can cause this, admin really needs to save and backup database weekly and revert back to before the spam break outs.

this can be easily done by changing a file name to inject.xss to inject.xss.jpg and upload them into the forum image uploader.

since we dont know what the "cracker/hacker" used the file to contaminate the database but that is how they usually get into database. or at least one of the way.

yep

We are doing are best But WE do have to sleep among other things and are on top things once in here.

Most of these are like someone put it "Zombie" accounts that will eventually be eradicated with simply IP Banning.

Like AK has mentioned the registration has been ramped up so we're not getting these types of accounts anymore.

I can only ask for everyones cooperation and patience as this will take some time to resolve.

Once again a BIG THANKS to everyone.

Y'all are doing a great job. Too bad some jerk is causing so many problems for you.

BTW, notice the smiley after my "sleeping late" comment. Meant to be a good-natured ribbing for being human and having family/jobs/sleep/&c to take care of. Sorry if you were offended.

I wasn't offended, I was sleeping late.
(after staying up late deleting spam) :icon17:

No offense taken sorry If it came off that way. It's all good :tup:

And Thank You for Reporting :tiphat:

I was removing some of my "Above comment reported" posts and noticed that this SPAM comment is still hanging around: http://www.the370z.com/wheels-tires/...ml#post2498527

Got it

I've been out of town all weekend. It looks like things have gotten worse. It might be time for whatever nuclear option the mods have in their bag of tricks.

They've gone from Chinese/Engrish to Spanish!

BTW, several years back the worst form of SPAM that popped up were random pr0n posts with explicit pictures in various innocent threads. Made this site too unsafe at work at some point >.<

As annoying as it sounds, maybe reset everyone's login status by requiring everyone to log back in with a captcha.

Dude, I thought I was the only one catching this sh1t, these guys are getting ridiculous.

Holy ****. They just keep getting worse and worse. This is unreal.

I'm beginning to believe that the system has been hacked. Someone mentioned (SQL?) injection earlier.

Or maybe they're just persistent little bastards. :shakes head:

Almost the entire New Posts page is spam. This is overwhelming. Fellow veterans of the Spam Wars, I think we're losing ground despite all of our efforts.

Yeah, this is annoying. Must be an automated process doing this ****.

OK. I'm getting tired of marking all this guy's posts. Can Admin/Mod just mass delete all his comments?

From what I was told, they only need one post reported from each spammer. They ban/delete posts at the account level, so all of the posts disappear when you get rid of the account. I've only been reporting one from each username so we don't completely overload the mods.

Oh no. I've been marking multiple posts for MANY accounts. Guess I'll cut back a little. Thanks for the tip. :tiphat:

Yeah, I was doing the same until AK told me they only need one to drop the banhammer on the account. There's something wierd going on, though, because it just keeps getting worse and worse.

Something like this:
Captcha On Login - vBulletin.org Forum

IP banning isn't entirely reliable. There needs to be a way to knock everyone offline and log in again with the captcha. Set a limit on number of attempts.

BTW, some other sites that use vbulletin are still vulnerable to the Google hijack.

My only regret is that I have but one Life to give for my forum. heehee

I certainly don't know what the answer is but somebody has to. If necessary, I'd be willing to chip in a few bucks to hire a security expert. Staff is doing a great job reacting but maybe it's time to be proactive. Just a thought.

Many (all?) of the SPAM accounts are "zombies" that were created earlier. Eg, amstrongzol's acct was created on 06-21-2013. Ofc, if the system has been hacked, that date may not be correct.

I think it's time to shutdown the site for awhile, pull up all the recent posts, disable registration, etc. Time to take a break... :(

duuude, I know bro, its getting crazy.

I almost PM'd one of these bastards to tell him/her off..

Me too, every one that i come across I report, I just dont want someone to click on one of those links, heaven knows what could happen.

Poor Zbrah can't have time to be reading any important posts; he's been reporting like a mad man. Kudos to Zbrah. :tup:

On my morning break so it's all I can do! :icon17:

I am just wondering what if we require each member to answer a security question every time you log on, like when you sign onto your online bank account, do you guys think this would help to prevent the spam bots from automatically accessing the site?