| Niechciane linki w bazie || Dodane dnia 22-09-2009 09:20 |
|
|
Witam, od niedawna mam problem z wirusami.
Nie dość, że mam wiele komentarzy w formie linków bez czcionki, to na dodatek tworzy się jakaś tabela w bazie, która wyświetla na stronie setki niewidocznych linków.
Wie ktoś jak zabezpieczyć cms?
Zmieniłem nazwę tematu - Inscure
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 22-09-2009 11:50 |
|
|
Heh, zainstaluj sobie wszystkie łatki + System Bezpieczeństwa.
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 22-09-2009 17:01 |
|
|
Zrobiłem upgrade do 4.13.
A ten system bezpieczeństwa to co to jest?
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 22-09-2009 19:01 |
|
|
Warto też zadbać o plik htaccess co masz w nim ?
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 23-09-2009 06:35 |
|
|
W pliku .htaccess mam coś odnośnie RewriteEngine, choć dziwne bo nie mam przyjaznych linków na stronie.
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 23-09-2009 14:31 |
|
|
To tu masz listę najczęstszych botów wklej ją jak nie masz.
RewriteEngine on
RewriteCond %{HTTP_USER_AGENT} ^Alexibot [OR]
RewriteCond %{HTTP_USER_AGENT} ^asterias [OR]
RewriteCond %{HTTP_USER_AGENT} ^BackDoorBot [OR]
RewriteCond %{HTTP_USER_AGENT} ^Black.Hole [OR]
RewriteCond %{HTTP_USER_AGENT} ^BlackWidow [OR]
RewriteCond %{HTTP_USER_AGENT} ^BlowFish [OR]
RewriteCond %{HTTP_USER_AGENT} ^BotALot [OR]
RewriteCond %{HTTP_USER_AGENT} ^BuiltBotTough [OR]
RewriteCond %{HTTP_USER_AGENT} ^Bullseye [OR]
RewriteCond %{HTTP_USER_AGENT} ^BunnySlippers [OR]
RewriteCond %{HTTP_USER_AGENT} ^Cegbfeieh [OR]
RewriteCond %{HTTP_USER_AGENT} ^CheeseBot [OR]
RewriteCond %{HTTP_USER_AGENT} ^CherryPicker [OR]
RewriteCond %{HTTP_USER_AGENT} ^ChinaClaw [OR]
RewriteCond %{HTTP_USER_AGENT} ^CopyRightCheck [OR]
RewriteCond %{HTTP_USER_AGENT} ^cosmos [OR]
RewriteCond %{HTTP_USER_AGENT} ^Crescent [OR]
RewriteCond %{HTTP_USER_AGENT} ^Custo [OR]
RewriteCond %{HTTP_USER_AGENT} ^DISCo [OR]
RewriteCond %{HTTP_USER_AGENT} ^DittoSpyder [OR]
RewriteCond %{HTTP_USER_AGENT} ^Download\ Demon [OR]
RewriteCond %{HTTP_USER_AGENT} ^eCatch [OR]
RewriteCond %{HTTP_USER_AGENT} ^EirGrabber [OR]
RewriteCond %{HTTP_USER_AGENT} ^EmailCollector [OR]
RewriteCond %{HTTP_USER_AGENT} ^EmailSiphon [OR]
RewriteCond %{HTTP_USER_AGENT} ^EmailWolf [OR]
RewriteCond %{HTTP_USER_AGENT} ^EroCrawler [OR]
RewriteCond %{HTTP_USER_AGENT} ^Express\ WebPictures [OR]
RewriteCond %{HTTP_USER_AGENT} ^ExtractorPro [OR]
RewriteCond %{HTTP_USER_AGENT} ^EyeNetIE [OR]
RewriteCond %{HTTP_USER_AGENT} ^FlashGet [OR]
RewriteCond %{HTTP_USER_AGENT} ^Foobot [OR]
RewriteCond %{HTTP_USER_AGENT} ^FrontPage [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^GetRight [OR]
RewriteCond %{HTTP_USER_AGENT} ^GetWeb! [OR]
RewriteCond %{HTTP_USER_AGENT} ^Go-Ahead-Got-It [OR]
RewriteCond %{HTTP_USER_AGENT} ^Googlebot-Image [OR]
RewriteCond %{HTTP_USER_AGENT} ^Go!Zilla [OR]
RewriteCond %{HTTP_USER_AGENT} ^GrabNet [OR]
RewriteCond %{HTTP_USER_AGENT} ^Grafula [OR]
RewriteCond %{HTTP_USER_AGENT} ^Harvest [OR]
RewriteCond %{HTTP_USER_AGENT} ^hloader [OR]
RewriteCond %{HTTP_USER_AGENT} ^HMView [OR]
RewriteCond %{HTTP_USER_AGENT} ^httplib [OR]
RewriteCond %{HTTP_USER_AGENT} ^HTTrack [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^humanlinks [OR]
RewriteCond %{HTTP_USER_AGENT} ^ia_archiver [OR]
RewriteCond %{HTTP_USER_AGENT} ^Image\ Stripper [OR]
RewriteCond %{HTTP_USER_AGENT} ^Image\ Sucker [OR]
RewriteCond %{HTTP_USER_AGENT} ^Indy\ Library [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^InfoNaviRobot [OR]
RewriteCond %{HTTP_USER_AGENT} ^InterGET [OR]
RewriteCond %{HTTP_USER_AGENT} ^Internet\ Ninja [OR]
RewriteCond %{HTTP_USER_AGENT} ^JennyBot [OR]
RewriteCond %{HTTP_USER_AGENT} ^JetCar [OR]
RewriteCond %{HTTP_USER_AGENT} ^JOC\ Web\ Spider [OR]
RewriteCond %{HTTP_USER_AGENT} ^Kenjin.Spider [OR]
RewriteCond %{HTTP_USER_AGENT} ^Keyword.Density [OR]
RewriteCond %{HTTP_USER_AGENT} ^larbin [OR]
RewriteCond %{HTTP_USER_AGENT} ^LeechFTP [OR]
RewriteCond %{HTTP_USER_AGENT} ^LexiBot [OR]
RewriteCond %{HTTP_USER_AGENT} ^libWeb/clsHTTP [OR]
RewriteCond %{HTTP_USER_AGENT} ^LinkextractorPro [OR]
RewriteCond %{HTTP_USER_AGENT} ^LinkScan/8.1a.Unix [OR]
RewriteCond %{HTTP_USER_AGENT} ^LinkWalker [OR]
RewriteCond %{HTTP_USER_AGENT} ^lwp-trivial [OR]
RewriteCond %{HTTP_USER_AGENT} ^Mass\ Downloader [OR]
RewriteCond %{HTTP_USER_AGENT} ^Mata.Hari [OR]
RewriteCond %{HTTP_USER_AGENT} ^Microsoft.URL [OR]
RewriteCond %{HTTP_USER_AGENT} ^MIDown\ tool [OR]
RewriteCond %{HTTP_USER_AGENT} ^MIIxpc [OR]
RewriteCond %{HTTP_USER_AGENT} ^Mister.PiX [OR]
RewriteCond %{HTTP_USER_AGENT} ^Mister\ PiX [OR]
RewriteCond %{HTTP_USER_AGENT} ^moget [OR]
RewriteCond %{HTTP_USER_AGENT} ^Mozilla/2 [OR]
RewriteCond %{HTTP_USER_AGENT} ^Mozilla/3.Mozilla/2.01 [OR]
RewriteCond %{HTTP_USER_AGENT} ^Mozilla.*NEWT [OR]
RewriteCond %{HTTP_USER_AGENT} ^Navroad [OR]
RewriteCond %{HTTP_USER_AGENT} ^NearSite [OR]
RewriteCond %{HTTP_USER_AGENT} ^NetAnts [OR]
RewriteCond %{HTTP_USER_AGENT} ^NetMechanic [OR]
RewriteCond %{HTTP_USER_AGENT} ^NetSpider [OR]
RewriteCond %{HTTP_USER_AGENT} ^Net\ Vampire [OR]
RewriteCond %{HTTP_USER_AGENT} ^NetZIP [OR]
RewriteCond %{HTTP_USER_AGENT} ^NICErsPRO [OR]
RewriteCond %{HTTP_USER_AGENT} ^NPBot [OR]
RewriteCond %{HTTP_USER_AGENT} ^Octopus [OR]
RewriteCond %{HTTP_USER_AGENT} ^Offline.Explorer [OR]
RewriteCond %{HTTP_USER_AGENT} ^Offline\ Explorer [OR]
RewriteCond %{HTTP_USER_AGENT} ^Offline\ Navigator [OR]
RewriteCond %{HTTP_USER_AGENT} ^Openfind [OR]
RewriteCond %{HTTP_USER_AGENT} ^PageGrabber [OR]
RewriteCond %{HTTP_USER_AGENT} ^Papa\ Foto [OR]
RewriteCond %{HTTP_USER_AGENT} ^pavuk [OR]
RewriteCond %{HTTP_USER_AGENT} ^pcBrowser [OR]
RewriteCond %{HTTP_USER_AGENT} ^ProPowerBot/2.14 [OR]
RewriteCond %{HTTP_USER_AGENT} ^ProWebWalker [OR]
RewriteCond %{HTTP_USER_AGENT} ^ProWebWalker [OR]
RewriteCond %{HTTP_USER_AGENT} ^QueryN.Metasearch [OR]
RewriteCond %{HTTP_USER_AGENT} ^ReGet [OR]
RewriteCond %{HTTP_USER_AGENT} ^RepoMonkey [OR]
RewriteCond %{HTTP_USER_AGENT} ^RMA [OR]
RewriteCond %{HTTP_USER_AGENT} ^SiteSnagger [OR]
RewriteCond %{HTTP_USER_AGENT} ^SlySearch [OR]
RewriteCond %{HTTP_USER_AGENT} ^SmartDownload [OR]
RewriteCond %{HTTP_USER_AGENT} ^SpankBot [OR]
RewriteCond %{HTTP_USER_AGENT} ^spanner [OR]
RewriteCond %{HTTP_USER_AGENT} ^SuperBot [OR]
RewriteCond %{HTTP_USER_AGENT} ^SuperHTTP [OR]
RewriteCond %{HTTP_USER_AGENT} ^Surfbot [OR]
RewriteCond %{HTTP_USER_AGENT} ^suzuran [OR]
RewriteCond %{HTTP_USER_AGENT} ^Szukacz/1.4 [OR]
RewriteCond %{HTTP_USER_AGENT} ^tAkeOut [OR]
RewriteCond %{HTTP_USER_AGENT} ^Teleport [OR]
RewriteCond %{HTTP_USER_AGENT} ^Teleport\ Pro [OR]
RewriteCond %{HTTP_USER_AGENT} ^Telesoft [OR]
RewriteCond %{HTTP_USER_AGENT} ^The.Intraformant [OR]
RewriteCond %{HTTP_USER_AGENT} ^TheNomad [OR]
RewriteCond %{HTTP_USER_AGENT} ^TightTwatBot [OR]
RewriteCond %{HTTP_USER_AGENT} ^Titan [OR]
RewriteCond %{HTTP_USER_AGENT} ^toCrawl/UrlDispatcher [OR]
RewriteCond %{HTTP_USER_AGENT} ^toCrawl/UrlDispatcher [OR]
RewriteCond %{HTTP_USER_AGENT} ^True_Robot [OR]
RewriteCond %{HTTP_USER_AGENT} ^turingos [OR]
RewriteCond %{HTTP_USER_AGENT} ^TurnitinBot/1.5 [OR]
RewriteCond %{HTTP_USER_AGENT} ^URLy.Warning [OR]
RewriteCond %{HTTP_USER_AGENT} ^VCI [OR]
RewriteCond %{HTTP_USER_AGENT} ^VoidEYE [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebAuto [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebBandit [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebCopier [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebEMailExtrac.* [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebEnhancer [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebFetch [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebGo\ IS [OR]
RewriteCond %{HTTP_USER_AGENT} ^Web.Image.Collector [OR]
RewriteCond %{HTTP_USER_AGENT} ^Web\ Image\ Collector [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebLeacher [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebmasterWorldForumBot [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebReaper [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebSauger [OR]
RewriteCond %{HTTP_USER_AGENT} ^Website\ eXtractor [OR]
RewriteCond %{HTTP_USER_AGENT} ^Website.Quester [OR]
RewriteCond %{HTTP_USER_AGENT} ^Website\ Quester [OR]
RewriteCond %{HTTP_USER_AGENT} ^Webster.Pro [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebStripper [OR]
RewriteCond %{HTTP_USER_AGENT} ^Web\ Sucker [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebWhacker [OR]
RewriteCond %{HTTP_USER_AGENT} ^WebZip [OR]
RewriteCond %{HTTP_USER_AGENT} ^Wget [OR]
RewriteCond %{HTTP_USER_AGENT} ^Widow [OR]
RewriteCond %{HTTP_USER_AGENT} ^[Ww]eb[Bb]andit [OR]
RewriteCond %{HTTP_USER_AGENT} ^WWW-Collector-E [OR]
RewriteCond %{HTTP_USER_AGENT} ^WWWOFFLE [OR]
RewriteCond %{HTTP_USER_AGENT} ^Xaldon\ WebSpider [OR]
RewriteCond %{HTTP_USER_AGENT} ^Xenu's [OR]
RewriteCond %{HTTP_USER_AGENT} ^Zeus
RewriteRule ^(.*)$ http://www.robotstxt.org/
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 29-09-2009 18:30 |
|
|
Niestety nadal nie pomaga. Tworzy się tabela w ep_panels o nazwie weblink a tam 150 spamerskich linków!!!! Jak bym złapał tego flejtucha od viagry to policzył bym mu zęby!
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 29-09-2009 19:03 |
|
|
Sprawdź czy nie masz jakiegoś panelu z kodem dodającym te linki. Możesz poszukać w plikach czy nie ma żadnych iframe'ów w nich dodanych.
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 29-09-2009 20:01 |
|
|
|
Tworzy się tabela w ep_panels o nazwie weblink
Trzeba było tak odrazu przypomniał mni się jeden temat.
Nadpisz plik panel_editor.php tym potem oczyść pliki i zmień hasła.
<?php
/*---------------------------------------------------+
| PHP-Fusion 6 Content Management System
+----------------------------------------------------+
| Copyright © 2002 - 2006 Nick Jones
| http://www.php-fusion.co.uk/
+----------------------------------------------------+
| Released under the terms & conditions of v2 of the
| GNU General Public License. For details refer to
| the included gpl.txt file or visit http://gnu.org
+----------------------------------------------------*/
require_once '../maincore.php';
require_once BASEDIR.'subheader.php';
require_once ADMIN.'navigation.php';
include LOCALE.LOCALESET.'admin/panels.php';
if (!checkrights('P') || !defined('iAUTH') || $_GET['aid'] != iAUTH) fallback('../index.php');
if (isset($_GET['panel_id']) && !isNum($_GET['panel_id'])) fallback($settings['siteurl']);
if (isset($_GET['table'])) $table = stripinput($_GET['table']);
else $table = 'panels';
$temp = opendir(INFUSIONS);
while ($folder = readdir($temp)) {
if (!in_array($folder, array('.','..')) && strstr($folder, '_panel')) {
if (is_dir(INFUSIONS.$folder)) $panel_list[] = $folder;
}
}
closedir($temp); sort($panel_list); array_unshift($panel_list, 'none');
if (isset($_POST['save'])) {
$error = '';
$panel_name = stripinput($_POST['panel_name']);
if ($panel_name == '') $error .= $locale['470']."<br>";
if ($_POST['panel_filename'] == 'none') {
$panel_filename = "";
$panel_content = addslash($_POST['panel_content']);
$panel_type = 'php';
} else {
$panel_filename = stripinput($_POST['panel_filename']);
$panel_type = 'file';
$panel_content = '';
}
$panel_side = isNum($_POST['panel_side']) ? $_POST['panel_side'] : '1';
$panel_access = isNum($_POST['panel_access']) ? $_POST['panel_access'] : '0';
if ($panel_side == '1' || $panel_side == '4') {
$panel_display = '0';
} else {
$panel_display = isset($_POST['panel_display']) ? '1' : '0';
}
if (isset($_GET['panel_id'])) {
if ($panel_name != '') {
$data = dbarray(dbquery("SELECT * FROM ".DB_PREFIX.$table." WHERE panel_id = '".$_GET['panel_id']."'"));
if ($panel_name != $data['panel_name']) {
$result = dbquery("SELECT * FROM ".DB_PREFIX.$table." WHERE panel_name = '".$panel_name."'");
if (dbrows($result) != 0) $error .= $locale['471'].'<br />';
}
}
if ($panel_type == 'php' && $panel_content == '') $error .= $locale['472'].'<br />';
if ($error == '') {
$result = dbquery("UPDATE ".DB_PREFIX.$table."
SET panel_name = '".$panel_name."', panel_filename = '".$panel_filename."', panel_content = '".$panel_content."', panel_access = '".$panel_access."', panel_display = '".$panel_display."'
WHERE panel_id = '".$_GET['panel_id']."'");
}
opentable($locale['480']);
echo '<center><br />';
if ($error != '') {
echo $locale['481'].'<br /><br />'.$error.'<br />';
} else {
echo $locale['482'].'<br /><br />';
}
echo '<a href="panels.php?aid='.iAUTH.'&table='.$table.'">'.$locale['486'].'</a>
<br /><br />
<a href="index.php?aid='.iAUTH.'">'.$locale['487'].'</a>
<br /><br />
</center>';
closetable();
} else {
if ($panel_name != '') {
$result = dbquery("SELECT * FROM ".DB_PREFIX.$table." WHERE panel_name = '".$panel_name."'");
if (dbrows($result) != 0) $error .= $locale['471'].'<br />';
}
if ($panel_type == 'php' && $panel_content == '') $error .= $locale['472'].'<br />';
if ($panel_type == 'file' && $panel_filename == 'none') $error .= $locale['473'].'<br />';
if ($error == '') {
$result = dbquery("SELECT * FROM ".DB_PREFIX.$table." WHERE panel_side = '".$panel_side."' ORDER BY panel_order DESC LIMIT 1");
if (dbrows($result) != 0) {
$data = dbarray($result);
$neworder = $data['panel_order'] + 1;
} else $neworder = 1;
$result = dbquery("INSERT INTO ".DB_PREFIX.$table." (panel_name, panel_filename, panel_content, panel_side, panel_order, panel_type, panel_access, panel_display, panel_status) VALUES ('".$panel_name."', '".$panel_filename."', '".$panel_content."', '".$panel_side."', '".$neworder."', '".$panel_type."', '".$panel_access."', '".$panel_display."', '0')");
}
opentable($locale['483']);
echo '<center><br />';
if ($error != '') {
echo $locale['484'].'<br /><br />'.$error.'<br />';
} else {
echo $locale['485'].'<br /><br />';
}
echo '<a href="panels.php?aid='.iAUTH.'&table='.$table.'">'.$locale['486'].'</a>
<br /><br />
<a href="index.php?aid='.iAUTH.'">'.$locale['487'].'</a>
<br /><br />
</center>';
closetable();
}
} else {
if (isset($_POST['preview'])) {
$panel_name = stripinput($_POST['panel_name']);
$panel_filename = $_POST['panel_filename'];
$panel_content = isset($_POST['panel_content']) ? $_POST['panel_content'] : '';
$panel_access = $_POST['panel_access'];
$panel_side = $_POST['panel_side'];
$panelon = isset($_POST['panel_display']) ? ' checked="checked"' : '';
$panelopts = $_POST['panel_side'] == '1' || $_POST['panel_side'] == '4' ? ' style="display:none"' : ' style="display:block"';
$panel_content = stripslash($panel_content);
opentable($panel_name);
if ($panel_filename != 'none') {
@include INFUSIONS.$panel_filename.'/'.$panel_filename.'.php';
$panel_type = 'file';
} else {
eval($panel_content);
$panel_type = 'php';
}
$panel_content = phpentities($panel_content);
closetable();
tablebreak();
}
if (isset($_GET['step']) && $_GET['step'] == 'edit') {
$result = dbquery("SELECT * FROM ".DB_PREFIX.$table." WHERE panel_id = '".$_GET['panel_id']."'");
if (dbrows($result) != 0) {
$data = dbarray($result);
$panel_name = $data['panel_name'];
$panel_filename = $data['panel_filename'];
$panel_content = phpentities(stripslashes($data['panel_content']));
$panel_type = $data['panel_type'];
$panel_access = $data['panel_access'];
$panel_side = $data['panel_side'];
$panelon = $data['panel_display'] == '1' ? ' checked="checked"' : '';
$panelopts = $panel_side == '1' || $panel_side == '4' ? ' style="display:none"' : ' style="display:block"';
}
}
if (isset($_GET['panel_id'])) {
$action = FUSION_SELF.'?aid='.iAUTH.'&panel_id='.$_GET['panel_id'].'&table='.$table;
opentable($locale['450']);
} else {
if (!isset($_POST['preview'])) {
$panel_name = '';
$panel_filename = '';
$panel_content = 'openside("name");?>KOD HTML / JAVASCRIPT<?php closeside();';
$panel_type = '';
$panel_access = '';
$panel_side = '';
$panelon = '';
$panelopts = ' style="display:none"';
}
$action = FUSION_SELF.'?aid='.iAUTH.'&table='.$table;
opentable($locale['451']);
}
$user_groups = getusergroups(); $access_opts = '';
while(list($key, $user_group) = each($user_groups)){
$sel = ($panel_access == $user_group['0'] ? ' selected="selected"' : '');
$access_opts .= '<option value="'.$user_group['0'].$sel.'>'.$user_group['1'].'</option>';
}
echo '<form name="editform" method="post" action="'.$action.'">
<table align="center" cellpadding="0" cellspacing="0">
<tr>
<td class="tbl">'.$locale['452'].'</td>
<td class="tbl"><input type="text" name="panel_name" value="'.$panel_name.'" class="textbox" style="width:200px;"></td>
</tr>';
if (isset($_GET['panel_id'])) {
if ($panel_type == 'file') {
echo '<tr>
<td class="tbl">'.$locale['453'].'</td>
<td class="tbl"><select name="panel_filename" class="textbox" style="width:200px;">';
for ($i=0;$i < count($panel_list);$i++) {
echo "<option".($panel_filename == $panel_list[$i] ? " selected" : "").">$panel_list[$i]</option>";
}
echo '</select></td></tr>';
}
} else {
echo '<tr>
<td class="tbl">'.$locale['453'].'</td>
<td class="tbl"><select name="panel_filename" class="textbox" style="width:200px;">';
for ($i=0;$i < count($panel_list);$i++) {
echo '<option'.($panel_filename == $panel_list[$i] ? ' selected="selected"' : '').'>'.$panel_list[$i].'</option>';
}
echo '</select> <span class="small2">'.$locale['454'].'</span></td></tr>';
}
if (isset($_GET['panel_id'])) {
if ($panel_type == 'php') {
echo '<tr>
<td valign="top" class="tbl">'.$locale['455'].'</td>
<td class="tbl"><textarea name="panel_content" cols="95" rows="15" class="textbox">'.$panel_content.'</textarea></td>
</tr>';
}
} else {
echo '<tr>
<td valign="top" class="tbl">'.$locale['455'].'</td>
<td class="tbl"><textarea name="panel_content" cols="95" rows="15" class="textbox">'.$panel_content.'</textarea></td>
</tr>';
}
if (!isset($_GET['panel_id'])) {
echo '<tr>
<td class="tbl">'.$locale["456"].'</td>
<td class="tbl"><select name="panel_side" class="textbox" style="width:150px;" '.($table=='panels' ? 'onchange="showopts(this.options[this.selectedIndex].value);"' : '').'>
<option value="1"'.($panel_side == '1' ? ' selected="selected"' : '').'>'.$locale['420'].'</option>
<option value="2"'.($panel_side == '2' ? ' selected="selected"' : '').'>'.$locale['421'].'</option>
<option value="3"'.($panel_side == '3' ? ' selected="selected"' : '').'>'.$locale['425'].'</option>
<option value="4"'.($panel_side == '4' ? ' selected="selected"' : '').'>'.$locale['422'].'</option>
</select></td>
</tr>';
}
echo '<tr>
<td class="tbl">'.$locale['457'].'</td>
<td class="tbl"><select name="panel_access" class="textbox" style="width:150px;">'.$access_opts.'</select></td>
</tr>
<tr>
<td align="center" colspan="2" class="tbl">';
if ($table == 'panels')
echo '<div id="panelopts"'.$panelopts.'"><input type="checkbox" name="panel_display" value="1"'.$panelon.'>'.$locale['460'].'</div>';
echo '<br />';
if (isset($_GET['panel_id'])) {
if ($panel_type == 'php') echo '<input type="hidden" name="panel_filename" value="none">';
echo '<input type="hidden" name="panel_side" value="'.$panel_side.'">';
}
echo '<input type="submit" name="preview" value="'.$locale['458'].'" class="button">
<input type="submit" name="save" value="'.$locale['459'].'" class="button"></td>
</tr>
</table>
</form>';
closetable();
}
?>
<script type="text/javascript">
function showopts(panelside) {
if (panelside == 1 || panelside == 4) {
panelopts.style.display = "none";
} else {
panelopts.style.display = "block";
}
}
</script>
</td>
<?php
require_once BASEDIR.'footer.php';
?>
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 02-10-2009 16:54 |
|
|
Niestety nadal tworzy się tabela ep_weblinks i nadal te linki... dzis chyba rekord bo asz 334
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 13-10-2009 14:03 |
|
|
A do plików typu index.php dopisuje ci iiframe ?
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 16-10-2009 07:59 |
|
|
Nie. Kiedyś to miałem ale już chyba wszystkie usunołem.
Błagam pomocy już zaczynają mi spadać odwiedziny nieraz nawet co godzina nowe linki sie zapisują...
Tworzy sie tabela weblinks a w całym ftp ani sql nie ma nawet tego wyrazu...
może można napisać coś co by wzbraniało by tabela o tej nazwie się tworzyła?
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 16-10-2009 09:18 |
|
|
Pomoże jedynie zmiana wszystkich haseł i aktualizacja TC + dodatkowe hasło do FTP.
|
|
|
| RE: Wirusy zapisują w bazie setki linków || Dodane dnia 18-10-2009 20:08 |
|
|
Tak jak spodziewałem się przyczyna była banalna. Zmieniłem hasło administratora :D i już 36h i żadnego wirusa nie złapałem
|
|
|
| RE: Niechciane linki w bazie || Dodane dnia 26-12-2010 21:05 |
|
|
Gówno prawda, te linki wrócą prędzej lub później, wiem ponieważ zrobiłem mały logsystem od admin panelu, a mianowicie, każdy kto wchodzi do admin panelu jest zapisywany w Tabeli sql, jego IP, ID usera i Data.
Nie było ani jednego wpisu z innym IP niż tego, które miało być więc wina nie leży po stronie hasła a raczej jakiejś wielkiej dziurze w EP.
|
|
|
eXtreme-fusion UK Support
