We have just now detcted following code on some of our site pages,
which were updated in last couple of days.
<i f r a m e src="http : // ZieF dot pl backslash iraq dot jpg"
width=1 height=1 style="border:0"> </iframe>
I have tried to split the code for safety.
We have uninstalled dreamweaver and reinstalled, as felt that the code
was reloaded every time a page was saved. We are now removing the code
manually by checking each page.
Please advise the dangers of this code for our as well as other's
benefits. And also prevention methods for future.
You didn't specify your site address so I can only guess.
Do you use a database or some scripts to generate web pages on server?
This could be an SQL injection.
So check your database and template files.
Then upgrade to the latest version of whatever third-party website
scripts you use.
And don't forget to check your own computer for viruses and spyware.
> You didn't specify your site address so I can only guess. > Do you use a database or some scripts to generate web pages on server? > This could be an SQL injection. > So check your database and template files.
> Then upgrade to the latest version of whatever third-party website > scripts you use.
> And don't forget to check your own computer for viruses and spyware.
Thanks. Our site is www l t h - h o t e l s dot com. Index page is not
affected, but some inner pages like photogallery have been infected,
and we have started checking and cleaning one by one.
I tried your site tool, and found it useful. Is there any tool, which
will scan full site for this infection, and give list of affected
urls?
We do not use any database, but do use template to create html pages.
We have also formatted 2 PCs which were used to upload html pages, as
further safety measure.
Madhukar Shah
On Oct 16, 8:43 pm, UseShots <goo...@useshots.com> wrote:
> You didn't specify your site address so I can only guess.
> Do you use a database or some scripts to generate web pages on server?
> This could be an SQL injection.
> So check your database and template files.
> Then upgrade to the latest version of whatever third-party website
> scripts you use.
> And don't forget to check your own computer for viruses and spyware.
How do we run 'grep' command on the live site? Are there any tools
available which will check full site, page by page. There are about
1200 pages live on server.
If we run the command on local PC, it may not be helpful. Still, how
do we run the command on local PC?
Sorry, but am a non tech person, hence am asking these questions.
Thanks for your help.
Madhukar Shah
On Oct 18, 1:29 am, UseShots <goo...@useshots.com> wrote:
If you don't have shell (command line) access on your server, you can
probably run grep from a cron job. It will email the results to you.
A web search will find versions of grep for Windows (or MSDOS, since
it's a command line utility). Some should be free. But Dreamweaver
probably has good search capabilities, for searching within your local
site, so you probably don't need grep on your PC.
On Nov 28, 3:02 am, londontownhotels <londontownhot...@gmail.com>
wrote:
> How do we run 'grep' command on the live site? Are there any tools
> available which will check full site, page by page. There are about
> 1200 pages live on server.
> If we run the command on local PC, it may not be helpful. Still, how
> do we run the command on local PC?
> Sorry, but am a non tech person, hence am asking these questions.
> Thanks for your help.
> Madhukar Shah
> On Oct 18, 1:29 am, UseShots <goo...@useshots.com> wrote:
> > Madhukar,
> > Do you have an SSH access to your server? Your site is on Unix/Linux
> > so you can try a "grep" command to scan the whole site for given
> > string.
> If you don't have shell (command line) access on your server, you can
> probably run grep from a cron job. It will email the results to you.
> A web search will find versions of grep for Windows (or MSDOS, since
> it's a command line utility). Some should be free. But Dreamweaver
> probably has good search capabilities, for searching within your local
> site, so you probably don't need grep on your PC.
> On Nov 28, 3:02 am, londontownhotels <londontownhot...@gmail.com>
> wrote:
> > Hello Denis,
> > How do we run 'grep' command on the live site? Are there any tools
> > available which will check full site, page by page. There are about
> > 1200 pages live on server.
> > If we run the command on local PC, it may not be helpful. Still, how
> > do we run the command on local PC?
> > Sorry, but am a non tech person, hence am asking these questions.
> > Thanks for your help.
> > Madhukar Shah
> > On Oct 18, 1:29 am, UseShots <goo...@useshots.com> wrote:
> > > Madhukar,
> > > Do you have an SSH access to your server? Your site is on Unix/Linux
> > > so you can try a "grep" command to scan the whole site for given
> > > string.
> How do we run 'grep' command on the live site? Are there any tools
> available which will check full site, page by page. There are about
> 1200 pages live on server.
> If we run the command on local PC, it may not be helpful. Still, how
> do we run the command on local PC?
> Sorry, but am a non tech person, hence am asking these questions.
> Thanks for your help.
> Madhukar Shah
> On Oct 18, 1:29 am, UseShots <goo...@useshots.com> wrote:
> > Madhukar,
> > Do you have an SSH access to your server? Your site is on Unix/Linux
> > so you can try a "grep" command to scan the whole site for given
> > string.
