Hacked website or something else?
Posted on 2008-06-11
I have a website that is ASP based.
As of yesturday whe someone goes on to the site and does a query (looks up informaiton) the site starts to do some sort of redirection and trys to load a virus on the client PC.
I took the site offline, formatted the server, reloaded windows 2003.
I restored a copy of the site from a week ago,prior to anything going on.
The server is patched 100% and AV is installed.
I put the site back up and went to the page and bam, same issue. I am stumped.
We have a windows 2003 server behind a cisco firewall and a MS SQL server that the website talks to. Any ideas how I can get ahead of this?