Victime d'un hack - On line canadian pharmacy

Informations concernant la sécurité, Support et assistance pour améliorer les performances de son site Joomla! 1.5.x

Moderators: Aidan38, sarki

Forum rules
Règles du forum
Locked
fschembri
Joomla! Fledgling
Joomla! Fledgling
Posts: 1
Joined: Fri Feb 21, 2014 4:09 pm

Victime d'un hack - On line canadian pharmacy

Post by fschembri » Fri Feb 21, 2014 4:16 pm

Bonjour à tous,

Je suis victime d'un hack et je n'arrive pas à m'en dépêtrer, il s'agit de la "On line canadian pharmacy" ...

J'ai tout essayé je suis à bout, voici le fpa-en.php, si vous avez des idées je suis preneur
Forum Post Assistant (v1.2.4) : 21st February 2014 wrote:
Basic Environment :: wrote:Joomla! Instance :: Joomla! 1.5.26-Stable (senu takaa ama busani) 27-March-2012
Joomla! Configured :: Yes | Read-Only (444) | Owner: educa_feg_v1 (uid: 1/gid: 1) | Group: psacln (gid: 1) | Valid For: 1.5
Configuration Options :: Offline: 0 | SEF: 1 | SEF Suffix: 0 | SEF ReWrite: 1 | .htaccess/web.config: Yes | GZip: 0 | Cache: 0 | FTP Layer: 0 | SSL: 0 | Error Reporting: -1 | Site Debug: 0 | Language Debug: 0 | Database Credentials Present: Yes

Host Configuration :: OS: Linux | OS Version: 3.10.23-xxxx-std-ipv6-64 | Technology: x86_64 | Web Server: Apache | Encoding: gzip, deflate | Doc Root: /var/www/vhosts/educationsolidarite.org/httpdocs | System TMP Writable: Yes

PHP Configuration :: Version: 5.3.10-1ubuntu3.9 | PHP API: apache2handler | Session Path Writable: No | Display Errors: | Error Reporting: 22527 | Log Errors To: | Last Known Error: | Register Globals: | Magic Quotes: | Safe Mode: 0 | Open Base: /var/www/vhosts/educationsolidarite.org/:/tmp/ | Uploads: 1 | Max. Upload Size: 128M | Max. POST Size: 8M | Max. Input Time: 60 | Max. Execution Time: 60 | Memory Limit: 128M

MySQL Configuration :: Version: 5.5.35-0ubuntu0.12.04.1 (Client:5.5.35) | Host: --protected-- (--protected--) | Collation: utf8_general_ci (Character Set: utf8) | Database Size: 1.37 MiB | #of Tables: 114
Detailed Environment :: wrote:PHP Extensions :: Core (5.3.10-1ubuntu3.9) | date (5.3.10-1ubuntu3.9) | ereg () | libxml () | openssl () | pcre () | zlib (1.1) | bcmath () | bz2 () | calendar () | ctype () | dba () | dom (20031129) | hash (1.0) | fileinfo (1.0.5-dev) | filter (0.11.0) | ftp () | gettext () | SPL (0.2) | iconv () | json (1.2.1) | mbstring () | session () | posix () | Reflection ($Revision: 321634 $) | standard (5.3.10-1ubuntu3.9) | shmop () | SimpleXML (0.1) | soap () | sockets () | Phar (2.0.1) | exif (1.4 $Id: exif.c 321634 2012-01-01 13:15:04Z felipe $) | sysvmsg () | sysvsem () | sysvshm () | tokenizer (0.1) | wddx () | xml () | xmlreader (0.1) | xmlwriter (0.1) | zip (1.9.1) | apache2handler () | curl () | gd () | imap () | mysql (1.0) | mysqli (0.1) | PDO (1.0.4dev) | pdo_mysql (1.0.2) | pdo_sqlite (1.0.1) | sqlite3 (0.7-dev) | xsl (0.1) | mhash () | ionCube Loader () | Zend Engine (2.3.0) |
Potential Missing Extensions :: mcrypt | suhosin |

Switch User Environment (Experimental) :: PHP CGI: No | Server SU: No | PHP SU: No | Custom SU (LiteSpeed/Cloud/Grid): Yes
Potential Ownership Issues: No

Apache Modules :: core | mod_log_config | mod_logio | prefork | http_core | mod_so | mod_actions | mod_alias | mod_auth_basic | mod_auth_digest | mod_authn_file | mod_authz_default | mod_authz_groupfile | mod_authz_host | mod_authz_user | mod_autoindex | mod_bw | mod_cgi | mod_dav | mod_dav_fs | mod_dav_lock | mod_deflate | mod_dir | mod_env | mod_fcgid | mod_headers | mod_include | mod_mime | mod_negotiation | mod_perl | mod_php5 | mod_python | mod_reqtimeout | mod_rewrite | mod_rpaf-2 | mod_setenvif | mod_ssl | mod_status | mod_suexec | mod_userdir | Apache |
Potential Missing Modules :: mod_expires | mod_security | mod_evasive | mod_dosevasive | mod_qos | mod_userdir |
Folder Permissions :: wrote:Core Folders :: images/ (755) | components/ (755) | modules/ (755) | plugins/ (755) | language/ (755) | templates/ (755) | cache/ (755) | logs/ (755) | tmp/ (755) | administrator/components/ (755) | administrator/modules/ (755) | administrator/language/ (755) | administrator/templates/ (755) |

Elevated Permissions (First 10) ::
Database Information :: wrote:Database _FPA_STATS :: Uptime: 2442604 | Threads: 3 | Questions: 2155285 | Slow queries: 0 | Opens: 72539 | Flush tables: 1 | Open tables: 400 | Queries per second avg: 0.882 |
Extensions Discovered :: wrote:Components :: SITE :: User (1.5.0) | comprofiler (1.2.1) | CB Eventlist Show Events (1.0.2) | Yanc Integration (1.2) | CB Mamblog Tab (1.2) | CB Mambo Author Tab (1.2) | MailTo (1.5.0) | Wrapper (1.5.0) | Default (1.4.0) |
Components :: ADMIN :: Media Manager (1.5.0) | Configuration Manager (1.5.0) | Language Manager (1.5.0) | Newsfeeds (1.5.0) | Menus Manager (1.5.0) | Banners (1.5.0) | Content Page (1.5.0) | JUpdateMan (1.5.17) | JoomlaPack Backup Notification (1.0) | JoomlaPack (2.4.1) | Frontpage (1.5.0) | Cache Manager (1.5.0) | User Manager (1.5.0) | Search (1.5.0) | Messaging (1.5.0) | AvReloaded (1.2.6) | Contact Items (1.0.0) | Unknown (-) | plg_system_kunena (-) | mod_cblogin (-) | AllEvents (-) | mod_sobipro_entries (-) | jUpgrade (2.5.2) | Module Manager (1.5.0) | eXtplorer (2.0.1) | GMAccess (5.15) | comprofiler (1.2.1) | RSFirewall! (1.4.0 R44) | Mass Mail (1.5.0) | Control Panel (1.5.0) | CK Forms (1.3.2) | Polls (1.5.0) | JCE (1.5.6 FR) | Installation Manager (1.5.0) | Trash (1.0.0) | Weblinks (1.5.0) | Plugin Manager (1.5.0) | EventList (1.0.1) | AcyMailing Tag : Joomla User I (1.2.0) | AcyMailing : Statistics Plugin (1.2.0) | AcyMailing Tag : content inser (1.2.0) | AcyMailing onPrepareContent tr (1.2.0) | AcyMailing Tag : Date / Time (1.2.0) | AcyMailing Template Class Repl (1.2.0) | AcyMailing Tag : Subscriber in (1.2.0) | AcyMailing Tag : Manage the Su (1.2.0) | User - AcyMailing (1.2.0) | AcyMailing Tag : online links (1.2.0) | AcyMailing (1.2.0) | AcyMailing Module (1.2.0) | Template Manager (1.5.0) | docman (1.4.0.stable) | DOCman Standard Buttons (1.4.0.stable) | Latest added documents - admin (1.4.0) | Most downloaded documents - ad (1.4.0) | Latest news from http://www.joomlatoo (1.4.0) | Unapproved Documents - admin m (1.4.0) | Latest logged downlods - admin (1.4.0) | Spanish (International) (2.0) | Joom!Fish (2.0.4) |

Modules :: SITE :: CB Workflows (1.2.1) | Wrapper (1.0.0) | Archived Content (1.5.0) | MiniFrontPage Module for J! 15 (1.2.2) | Newsflash (1.5.0) | Search (1.0.0) | Login (1.5.0) | Most Read Content (1.5.0) | Footer (1.5.0) | AcyMailing Module (1.2.0) | Who\'s Online (1.0.0) | Feed Display (1.5.0) | Menu (1.5.0) | Custom HTML (1.5.0) | Breadcrumbs (1.5.0) | News Pro GK1 (1.2.3) | Latest Events (1.0.1) | Syndicate (1.5.0) | Banner (1.5.0) | Related Items (1.0.0) | Latest News (1.5.0) | Random Image (1.5.0) | Qivva EventList Calendar modul (0.93) | Statistics (1.5.0) | Poll (1.5.0) | CKforms Form Display (1.3.1) | Sections (1.5.0) | CB Login (1.2.1) | JoomFish-Language Selection (2.0.4) | AllVideos Reloaded (1.2.6) | Maxi Menu CK for Joomla!1.5 (4.33) |
Modules :: ADMIN :: Latest logged downlods - admin (1.4.0) | Online Users (1.0.0) | JoomlaPack Backup Notification (1.0) | Latest added documents - admin (1.4.0) | Login Form (1.0.0) | Footer (1.0.0) | Most downloaded documents - ad (1.4.0) | Feed Display (1.5.0) | Latest News (1.0.0) | Toolbar (1.0.0) | Custom HTML (1.5.0) | Popular Items (1.0.0) | User Status (1.5.0) | RSFirewall! Cpanel Module (1.0.0) | Logged in Users (1.0.0) | Admin Menu (1.0.0) | Quick Icons (1.0.0) | Title (1.0.0) | Latest news from http://www.joomlatoo (1.4.0) | Unread Items (1.0.0) | Direct Translation (2.0.4) | Items Stats (1.0.0) | Admin Submenu (1.0.0) | Unapproved Documents - admin m (1.4.0) |

Plugins :: SITE :: User - AcyMailing (1.2.0) | User - Joomla! (1.5) | User - Example (1.0) | XML-RPC - Blogger API (1.0) | XML-RPC - Joomla API (1.0) | Joomfish - Missing Translation (2.0.4) | Editor - TinyMCE 3 (3.2.6) | Advanced Code Editor (1.5.3) | Joomla! Links for Advanced Lin (1.2.0) | Advanced Link (1.5.1) | Object Support (1.5.1) | Paste (1.5.2) | Image Manager (1.5.2) | SpellChecker (2.0.0) | File Browser (1.5.0 Stable) | Paste (1.5.0) | Editor - XStandard Lite for Jo (1.0) | Editeur JCE 1.5.3 (1.5.3 FR) | DOCman Standard Buttons (1.4.0.stable) | AcyMailing Tag : Manage the Su (1.2.0) | AcyMailing Tag : Date / Time (1.2.0) | AcyMailing : Statistics Plugin (1.2.0) | AcyMailing Tag : content inser (1.2.0) | AcyMailing Tag : Joomla User I (1.2.0) | AcyMailing onPrepareContent tr (1.2.0) | AcyMailing Tag : online links (1.2.0) | AcyMailing Tag : Subscriber in (1.2.0) | AcyMailing Template Class Repl (1.2.0) | Authentication - LDAP (1.5) | Authentication - OpenID (1.5) | Authentication - GMail (1.5) | Authentication - Joomla (1.5) | Authentication - Example (1.5) | Joomfish - Basic Router (2.0.4) | System - Cache (1.5) | System - Mootools Upgrade (1.5) | Joomfish - Abstraction Layer (2.0.4) | System - RSFirewall! Active Sc (1.0.0) | System - Legacy (1.5) | System - Backlinks (1.5) | System - Debug (1.5) | System - Vérification de vers (1.2) | System - Remember Me (1.5) | System - SEF (1.5) | Media Object (1.5.0) | System - AllVideos Reloaded (1.2.6) | System - Log (1.5) | Plugin - GMAccess (1.0.1) | Content - Load Modules (1.5) | Joomfish Alternative Language (2.0.4) | Content - Page Navigation (1.5) | Plugin CK Forms (1.3.2) | Content - Pagebreak (1.5) | Content - Email Cloaking (1.5) | Content - Login to Read Full T (1.7) | Content - AllVideos Reloaded (1.2.6) | Content - Code Highlighter (Ge (1.5) | Content - Vote (1.5) | Content - Example (1.0) | DOCLink (1.5.0.stable) | Button - Pagebreak (1.5) | Button - AllVideos Reloaded (1.2.6) | Button - Readmore (1.5) | Button - Image (1.0.0) | Search - Joomfish Contacts (2.0.4) | Search - Sections (1.5) | Search - Contacts (1.5) | Search - Categories (1.5) | Search - Joomfish Newsfeeds (2.0.4) | Search - Joomfish Weblinks (2.0.4) | Search - Newsfeeds (1.5) | Search - Joomfish Sections (2.0.4) | Search - Joomfish Content (2.0.4) | Search - Content (1.5) | Search - Joomfish Categories (2.0.4) | Search - Weblinks (1.5) |
Templates Discovered :: wrote:Templates :: SITE :: News Pro GK1 (1.2.3) | Maxi Menu CK for Joomla!1.5 (4.33) | mgen_v2 (-) |
Templates :: ADMIN :: Khepri (1.0) |

Locked

Return to “1.5 - Sécurité et performances”