My website was compromised today and now every time I load a page from the database, the website download a Trojan horse to the user's computers. At first I was not sure if it was the code on the site or the database but I did a restore on a back-up copy of my database and the problem was fixed. Unfortunately, I have a week worth of data that I CANNOT lose on those tables otherwise I would just do a restore and be done with it. Where should I look to try and find this malicious code? For example, if I do a Select * query on a table, regardless of the table, the virus starts to download. By the way, the virus file is not on my server, it downloads it from
http://firestnamestea.cn/q.js after it executes that js file, it proceeds to download a ton of malware on the users computer. The removal of the virus in the users computer is easy enough but where do can I look to find the malicious code in my SQL Server? Thanks.
Start Free Trial
