system
13
Thanks DavidR, those file locations are what I was looking for. I always have hidden files and extensions turned on. I don’t like OS’s hiding anything on me.
I’ll take a look there.
Actually, if you Google the file name with quotes, I found only three site results, two of which the webmasters clearly don’t understand what the infection is or that it isn’t coming from their own sites, as they have searched their own sites for it, haven’t found it (of course! What did they really expect to find it? It’s coming through an iFrame, so it’s obviously a cross-site attack), yet they are sadly telling their users not to worry about it. :
Anywho, as I stated above, if I am given the task, I’ve already planned to nuke the entire site contents and databases, starting from scratch.
I do plan to use some iFrames in the new setup, but not before checking into whether a separate script I will be installing to keep spammers and hackers out, will also help with XSS injections. I’ll have to speak with the developer of the script about that. I would not be surprised if the script doesn’t help at all with it, in which case I will insist on the iFrames not being used at all.
Thanks again.