What's new

Hi, We're new here!

Hi guys,

We're new here and thought we better start by saying hello. We're an IT support and solutions company here in the ACT and we're all about the right providing great support and service.

We've actually already started a new series of threads which is about giving other small businesses some help with regards to their computer systems. We got our first post here:
http://www.dntrade.com.au/all-tip-1-removing-malare-t4724.html?p=33017

I hope you all find them useful and can benefit from them. Also feel free to see what we do on Facebook and follow us on Twitter.

Speak to you all soon!

allitsolutions.com.au
 
Last edited by a moderator:

Joel

Top Contributor
Welcome to DNT :)

You may want to check out the security of your website - it's currently infected with the JS/Iframe.BQ trojan.
 
Thanks everyone.

And thank you LEAP. Can you please tell me which program or site advisor gave you that trojan notifcation because we've run a host of different antimalware/site advisors over the site. Thanks
 

Joel

Top Contributor
I'm trying to visit your site again but I'm getting page not found. The IP 203.88.116.225 isn't resolving for me - I'll try it again later on to see if I can find out more information for you. isup.me reports your site is down for everyone.

edit: looks to be back up now. The site is now clean - looks like WordPress has been upgraded :) Glad you got it fixed.
 
Last edited:

joe

Top Contributor
sitecheck.sucuri.net didn't find anything but avast tells me it blocked a trojan when i visited your site.
 
ok...I've removed the infected file and it should be alright now. I suspect that it was an orphan file to a wordpress vulnerability which was thought to have been patched and removed a couple of weeks ago. Thank you very much.

I suppose that it reinforces my comments made in the tips on antivirus that you do need to run a suite of programs to weed out all the little critters.
 

Joel

Top Contributor
NOD is now giving the trojan alert again! Looks like the backdoor still exists.

I couldn't PM an attachment, so just posted it here. NOD won't let me visit the site so I don't have a screenshot of the site for you. I'll see if I can get to it another way and grab the source where the hack looks to be in place.
 

Attachments

  • 3.jpg
    3.jpg
    76.7 KB · Views: 8

Joel

Top Contributor
As requested, image attached showing this afternoon in the log.
 

Attachments

  • 4.jpg
    4.jpg
    92.1 KB · Views: 7

Community sponsors

Domain Parking Manager

AddMe Reputation Management

Digital Marketing Experts

Catch Expired Domains

Web Hosting

Members online

No members online now.

Forum statistics

Threads
11,098
Messages
92,044
Members
2,394
Latest member
Spacemo
Top