hello,
I upgrade 2 site to V 2.2.3
after 2 week the mcafee protection alert than this site has a trojan scripts.
xoops.js and image.js

I download my site to local site and scane with mcafee viroos scan. all java file and html files have a trojan.

I use news,myalbum,multimenu,content,tinyeditor modules.

Are XOOPS 2.3 or there modules have a problem?
how can I solve it?


screen shot:
http://tinypic.com/r/vo0cav/5

Did you compare these files with the originals from The XOOPS archive? What was altered?
Mosttimes when a lot of files are altered this means that someone has got access to your site by compromising the server software (in this case probably several other sites which are also located on this shared server are also affected) or through your ftp access (in this case, the probable cause is a virus, keylogger or other malware on your PC).
After correcting the cause and blocking the access path, reupload the original files from an earlier backup and alter all passwords (FTP, server, MySQL, XOOPS admin).