Posted on
Dec 14, 2008 in
News |
View Comments
| If this article doesn't have images and download links please read this to see WHY and HOW you can help me resolve the issue. Thank you for your support! |
This is the second time when someone asks me “Hey do you have a virus on your site?” and I always answer with NO, and NO, there was nothing here on Garcya.us/blog everything happened on the main domain Garcya.us in the main index.html file.
The index.html was injected with a script that was recognized by Antiviruses as a Threat JS/TrojanDownloader.Small.NBF trojan! See screenshot here.
When I downloaded index.html and edited locally there was nothing suspicious, but when I arrived at the end of the code, where the website code closes, I’ve saw an enormous blank space there. Ok so I’ve started scrolling, and scrolled like over 3000 pixels and guess what! At the end of the page, the code was present. See the screenshot of the code here.
How did this happen? NO CLUE but I’m sure glad that I’ve erased all the code and re-uploaded the cleaned index file.
Be sure to check yours, who knows, maybe you’re also infected…
Don't miss any free vector graphics!
Subscribe to the newsletter for free
Enter your email below to receive a newsletter everytime free vector graphics are added.
Join over 19.000+ subscribers that are enjoying free vector graphics.
|
[[T_F]]Data Leak Prevention - Data Security Solutions - Information Theft Protection, Detection and Prevention Software Productstracefusion_signature=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[[T_F]]
Related Posts
- 25 Free Vector Mobile Phones
- Premium content
- Free And Stock Vector Graphic Designs
- Vacancy
- 33 Colorful Vector Mix
- Vector Mix Volume 16
- 93 Vector Mix Collection
- Happy Happy shiny New Year
- 30 Vector Flowers
- Free Vector Golden Labels – Frames
Hi there Garcya – I found your website today, and it’s amazing! I’ve already downloaded the osCommerce templates, the 306 ones, and the 42 premium hosting ones – absolutely amazing mate!
Will definitely be recommending in the future!
Sorry to hear about the trojan as well – who’d want to hack a website like this one?
James
@James thanks for the feedback.
There are a lot of people who only enjoy when they do “damage” to others so I’m a “lucky case” for now..
Been following via RSS for a long time and for the last 2-3 months I couldn’t actually visit unless I used a proxy. Tried again today when I saw this post and am happy to see than I can get here without a proxy again.
I love the resources you post to this blog, keep up the good work.
There are 2 possible causes for this infection. Either someone gained access to your host account and manually injected that code, or your host got infected with that trojan and copied itself through your files. Here’s what I recommend:
1) Reset all site related passwords. That’s your ssh, control panel and even WP admin password.
2) Check all other files for that script.
3) Make sure that file access is set correctly (no write permission where you need them.
4) Email your host.
@Sean sounds weird and I don’t think that this issues what the real problem at your end.
@Ali B. the wordpress blog wasn’t infected, only one single .html file from Garcya.us where I have my design firm website that has nothing to do with this blog.
Thanks again for your tips, will email the hosting provider and ask them to see what they have to say about this.
Is that Antiviruses trojan was pawerful for kill all the virus??
Yes, it was POWERFUL enough ! :)