Kunena 7.0.4 Released

The Kunena team has announce the arrival of Kunena 7.0.4 [K 7.0.4] in stable which is now available for download as a native Joomla extension for J! 5.4.x/6.0.x. This version addresses most of the issues that were discovered in K 6.2 / K 6.3 / K 6.4 and issues discovered during the last development stages of K 7.0

Topics must relate to a currently supported version of Kunena. If you are unsure what is the current supported version of Kunena, please go to the download page.

If you are having problems then, for your own benefit, it would save us all a lot of time if you would kindly post your configuration report when you ask for help from this forum. If you do not post your configuration report we will not ask you for it but you will probably not get your problem solved, either.

Question Hacked via com_kunena/template/cripsys/assets

More
8 years 1 month ago #198729 by uzbaby
Hacked via com_kunena/template/cripsys/assets was created by uzbaby
Hello. This morning I got malware problems. I got lots of cache files and my site was desactivated. In my hosting they said that trouble comes from com_kunena/template/cripsys/assets folder.

How can I find there malicious files?

Please Log in or Create an account to join the conversation.

More
8 years 1 month ago #198737 by 810
Replied by 810 on topic Hacked via com_kunena/template/cripsys/assets
What kind of malware problems do you have? Which hosting provider do you having.

Also please add kunena report.

Please Log in or Create an account to join the conversation.

More
8 years 1 month ago #198748 by uzbaby
Replied by uzbaby on topic Hacked via com_kunena/template/cripsys/assets
Thnak you.
In the attachment my malware file.
My hosting is bluehost.

Rigth now I can't make kunena report due to my site is down. Can I do it via hosting? Can you please explain how?

Please Log in or Create an account to join the conversation.

More
8 years 1 month ago #198749 by uzbaby
Replied by uzbaby on topic Hacked via com_kunena/template/cripsys/assets
malware file in the attachment

File Attachment:

File Name: malware.txt
File Size:86.25 KB

Please Log in or Create an account to join the conversation.

More
8 years 1 month ago #198750 by 810
Replied by 810 on topic Hacked via com_kunena/template/cripsys/assets
You need access to the backend.
Else download your site, and use a localhost.

blog.sucuri.net/2017/02/joomla-security-...ign-in-the-wild.html

You need to look into your files to: base64_decode, we use this codes.
Code:
$return = base64_decode($input->post->get('return', '', 'BASE64')); … $return = base64_decode($this->app->input->getBase64('return'));

if you see any code like:
Code:
base64_decode("VHJhY3RvciBNb3VudGVkIExhbmRzY2..Z1ZWwgQ2hpcHBlcnM8YSBocmVmPSJodHRwOi8vam F2cmlwLm5ldCIgc3R5bGU9InBvc2l0aW9uOmFic29sdXRlOyBsZWZ0Oi0xMjc1cHg7IHRvcDowIj5qYXZyaXAubmV0PC9hPg"),
Then you are infected.

Please Log in or Create an account to join the conversation.

More
8 years 1 month ago #198757 by uzbaby
Replied by uzbaby on topic Hacked via com_kunena/template/cripsys/assets
I have access to backend. But which file should I check?
All files from com_kunena/template/cripsys/assets folder?
But there lots of files are just image files.
Should I search in some another files?

Please Log in or Create an account to join the conversation.

Time to create page: 0.278 seconds