Essentially a 'bot', is source code/programming set up, that when it's executed, is to perform artificial intelligence tasks. In our case, the bot scours the net for certain vulnerabilities. Once it comes across one it can penetrate, it simply injects code which calls up trojans, spyware, or whatever it's programmed to do.
I have all the patches in place for the forums as called for by Invision Power Services (the developers of the HQ"s forum software). I also have the directories the files were in that got compromised last week set up with stronger permissions/restrictions than Invision requires. However, the bot found another file to edit. I quickly reverted the file back to the clean version and set the restrictions on it as I did above with the others. I would like to be able to set that for the whole forum directory, but unfortunately, there are areas that need to have somewhat open/limited restrictions.
I know it's a royal pain in the ass, but myself as well as others are on it. Just like the other bugs/issues we've resolved in the past.
-L