Virus in Q.CMS?

ruzovka

2008-03-07 23:52

Hi, I use your application for our school www.ruzovka.eu. There were no problems until this month. Many people told me about strange notice by their anti-virus program that there is virus on our webside. I have no idea how it is possible.
Our web was Valid XHTML 1.1! few month ago but NOT know. I did not change anything and now there is strange code in source. See: http://validator.w3.org/check?uri=http%3A%2F%2Fwww.ruzovka.eu%2F&charset=%28detect+automatically%29&doctype=Inli ne&group=0

What is it? What do you think about virus? What should I change?

» Quick.Cms v2.x

David

merci

2008-03-10 08:44

ruzovka - as I see it caused some JavaScript which we don't know. It doesn't come from Quick.Cms tool, so maybe you have added it to your site or your hosting provider added it. Make sure if this code isn't generate by any of your scripts.
If you, your hosting provider or your scripts don't add this script for sure, delete it as fast as possible and change passowrd to the server.

nosto

2008-03-11 09:39

I it is not generated by my scripts. I do not know where I have to delete it. container.tpl or general I uploaded from instalation.

David

nosto

2008-03-11 09:43

I tried to see the virus, you can see it throught IE. Named of the virus is Exploit, and it is saved in Temporary Internet Files....

David

cgan

2008-03-11 15:18

nosto - check this: http://support.f-secure.com/enu/corporate/virusproblem/howtoclean/removetrojan.shtml

cgan

nosto

2008-03-11 19:08

Thank you, I did it but I would like to delete virus from my webside and I do not see it or do not know where to find it.

David