Ciao a tutti!
Ho un problema con un sito joomla.
Mi è arrivata una mail da xxxxx.it dicendo che il sito è stato sospeso perché infetto!
Non so ne come sia stato possibile, ne che fare ora..
Qualcuno può aiutarmi??
Grazie mille!
Questi sono i file infetti:/www/components/com_content/views/article/view.html.php: {HEX}base64.inject.unclassed.7 FOUND /www/components/com_media/config.php: {HEX}base64.inject.unclassed.7 FOUND/www/components/com_newsfeeds/page.php: {HEX}base64.inject.unclassed.7 FOUND/www/components/com_users/views/reset/tmpl/error.php: {HEX}base64.inject.unclassed.7 FOUND/www/components/com_weblinks/views/categories/config.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/components/com_mailto/views/lib.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/components/com_newsfeeds/general.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/components/com_users/helpers/dirs.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/images/start.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/libraries/joomla/base/observer.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/libraries/joomla/log/file.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/libraries/simplepie/error.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/media/mod_languages/stats.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/modules/mod_articles_latest/tmpl/default.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/modules/mod_articles_news/tmpl/_item.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/modules/mod_articles_news/tmpl/dir.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/plugins/system/logout/login.php: {HEX}base64.inject.unclassed.7 FOUND/www/vanillaj172/templates/atomic/index.php: {HEX}base64.inject.unclassed.7 FOUND/www/includes/router.php: {HEX}base64.inject.unclassed.7 FOUND/www/includes/version.php: {HEX}base64.inject.unclassed.7 FOUND/www/libraries/joomla/application/component/controllerform.php: {HEX}base64.inject.unclassed.7 FOUND/www/libraries/joomla/cache/cache.php: {HEX}base64.inject.unclassed.7 FOUND/www/libraries/joomla/document/renderer.php: {HEX}base64.inject.unclassed.7 FOUND/www/libraries/joomla/filesystem/archive.php: {HEX}base64.inject.unclassed.7 FOUND/www/libraries/joomla/filesystem/archive/zip.php: {HEX}base64.inject.unclassed.7 FOUND/www/libraries/joomla/html/html/list.php: {HEX}base64.inject.unclassed.7 FOUND/www/libraries/joomla/html/toolbar/button.php: {HEX}base64.inject.unclassed.7 FOUND/www/libraries/joomla/log/logentry.php: {HEX}base64.inject.unclassed.7 FOUND/www/libraries/joomla/updater/adapters/extension.php: {HEX}base64.inject.unclassed.7 FOUND/www/media/system/swf/view.php: {HEX}base64.inject.unclassed.7 FOUND/www/media/sh404sef/sh404_upgrade_conf/mod_sh404sef_cpicon_extension_localhost_test17.php: {HEX}base64.inject.unclassed.7 FOUND/www/media/plugin_googlemap2/site/elabel/page.php: {HEX}base64.inject.unclassed.7 FOUND/www/modules/mod_fxprev/libraries/default.php: {HEX}php.mailer.nested_buoamv.500 FOUND/www/modules/mod_articles_news/mod_articles_news.php: {HEX}base64.inject.unclassed.7 FOUND/www/modules/mod_articles_popular/tmpl/default.php: {HEX}base64.inject.unclassed.7 FOUND/www/modules/mod_random_image/tmpl/default.php: {HEX}base64.inject.unclassed.7 FOUND/www/plugins/content/bot_mb/bot_mb/global.php: {HEX}base64.inject.unclassed.7 FOUND/www/plugins/search/contacts/view.php: {HEX}base64.inject.unclassed.7 FOUND/www/plugins/system/mediabox_ck/proxy.php: {HEX}base64.inject.unclassed.7 FOUND/www/templates/phoca_seine/diff.php: {HEX}base64.inject.unclassed.7 FOUND/www/templates/test/js/page.php: {HEX}base64.inject.unclassed.7 FOUND
-----
edited by mod: rimosso riferimento commerciale
