Denis is on the money! As far as removing the code is concerned you can follow some of the previous threads were more group members have commented with useful nuggets of info.
You could try to analyze the log files/.htaccess etc.. by yourself or depending on who hosts for you, could try to get assistance from them. Hope this was of help, -A -- Anirban Banerjee Co-Founder Jaalcheck.com PhD Candidate [EMAIL PROTECTED] Riverside On Wed, Oct 29, 2008 at 1:04 PM, Tudor Marian <[EMAIL PROTECTED]> wrote: > > Thank you Denis. Your (extremely rapid) answer is most helpful. I > don't know either how it got there or if I will be safe is I remove it > now but at least I have where to start from. > > Thank you again. have a nice day. > > Tudor > > On Oct 29, 9:26 pm, UseShots <[EMAIL PROTECTED]> wrote: > > Hi Tudor, > > > > Check the HTML source of your site. You find a script that starts > > with "var source = '>khtcog"ute?$jvvr<11uvcv". It is right after the > > <head> section and before the <body> section. When it is executed it > > inserts a hidden iframe loading something from statistinfo .info / > > google /go .php?sid=4 > > > > You should remove this script and make sure it will not appear there > > anymore. I don't know how this free hosting works so no assumptions on > > how it got there and what you need to do. > > > > Denishttp://UnmaskParasites.com > > > > -- Anirban Banerjee Co-Founder Jaalcheck.com PhD Candidate [EMAIL PROTECTED] Riverside --~--~---------~--~----~------------~-------~--~----~ You received this message through the Google Groups "stopbadware" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/stopbadware?hl=en -~----------~----~----~----~------~----~------~--~---
