Home General support

zenphoto.org seems to be still infected ...

muelli Member
in General support
During surfing through the forum my antivus-software showed an alert (see screenhot).
http://s1.directupload.net/images/111111/emj9vrky.jpg

Best regards and thank you for your work,
Christoph

Comments

  • acrylian Administrator, Developer
    Hm, "still" is strange as we actually have not been hacked. I cannot see what file that should be. Could be the google ads but that is not our responsibility.

    Sure that the virus scanner isn't overactive?
  • fretzl Administrator, Developer
    That's the same alert I get. I think the scanner is reacting to some of the posted code in topic 9939.
  • acrylian Administrator, Developer
    Just looked. Yeah, that is it probably. The redirect code users posted included links to that site and this forum turns all link into real one so we linked to them accidentally. I have edited those links. Please try again.

    Fretzl, didn't you get moderator rights a while ago? If that editing does not help feel free to further clear out the code examples.
  • muelli Member
    Okay, I thougt zenphoto.org was hacked too. I haven't read everything about the security hole and saw the alert while surfing the related threads. It could be possible that the virus scanner is overactive. I have deleted my whole zenphoto-installation and will upload it again in the next days, but I think that my webspace was not hacked. I am running two wordpress-installations and everything seems well.

    Best regards,
    Christoph
  • muelli Member
    Okay, I thougt that zenphoto.org was hacked too. During reading about the security hole the virus alert popped up and I haven't read everything about it, so I thought your site was also affected.
    I have completely removed my zenphoto installation and will upload everything again. Seems that my webspace was not hacked; I have two wordpress-installations on it where everything seems fine.

    Best regards,
    Christoph
  • fretzl Administrator, Developer
    The alert is still there.
    ...didn't you get moderator rights a while ago?
    That was for Trac, not the forum.
  • acrylian Administrator, Developer
    Hm, does the alert say something specific it complains about? In the log maybe?

    @fretzl: Ah right, that was on Trac. We could always use help on the forum if you have time for that. But I don't want to talk you into that.
  • fretzl Administrator, Developer
    @crylian: Alert is gone now. Thanks.
    There were no specifics logged. AVG only showed this description: `Exploit Blackhole Exploit Kit (type 2073)`
    We could always use help on the forum if you have time for that.

    I'd like to help but you know I'm not proficient enough to do really much.
  • acrylian Administrator, Developer
    Ggood the alert is gone...As noted on that topic the backup of the info is available on the 2nd security alert article.

    Ok, your choice of course. You don't need to help with core dev stuff as we often get quite general usage questions where pointing to the docs/troubleshooting already helps and such. And we are still there...;)
  • fretzl Administrator, Developer
    What I meant was: I really like to help as long as you realize..., etc :-)
    So please go ahead. Count me in :-)
  • acrylian Administrator, Developer
    Great! Thanks, any help is appreciated.

    Update: Rights assigned.
Sign In or Register to comment.