I`m using the webstatistic bbclone on my server. In the last month my virus scanner sometimes blocks the details page.
it displays the detection of
JS:ScriptIP-INF (TRJ)
on my bblone. But I compared all files bitwise with the original install files from the main page, they are identical.
I figured out, the the virus message disappaers if some more visits are listed in the statistic.
So I think somebody visits my website and sends a user-agent String with something virus like (e.g. javascript code).
I would to modify my bbclone to filter out these virus user-agent.
but I need to know how I can detect a visitor with this
JS:ScriptIP-INF (TRJ) - user-agent.
I was searching in google and several forums for a answer, but I find no usefull information how to avoid this virus.
e.g. this: My website is infected with JS:ScriptIP-inf [Trj]