Haven't checked my NTSysAdmin folder in a while, but this explains the Avast 'Threat Has Been Detected' Trojan alerts from Outlook I've received this afternoon.
Erik Goldoff IT Consultant Systems, Networks, & Security ' Security is an ongoing process, not a one time event ! ' -----Original Message----- From: Ben Scott [mailto:[email protected]] Sent: Wednesday, August 25, 2010 1:56 PM To: NT System Admin Issues Subject: Re: Javascript found on our website On Wed, Aug 25, 2010 at 1:40 PM, techconnect <[email protected]> wrote: > We found this script on our website and we want to know what it > does anyone know? It's an obfuscated code injector. The resulting HTML code looks like this: The page at "httpxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx" doesn't appear to do anything interesting (right now). But the name looks like the kind of random string attackers often use to host their malware. If I had to guess, I'd guess your website was compromised and malicious code placed on it, so that anyone visiting your site would get nailed by the attacker from an unsuspected source. Happens all the time. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
