473,396 Members | 1,853 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > asp / active server pages > questions > virus script problem

Join Bytes to post your question to a community of 473,396 software developers and data experts.

virus script problem

Hello, i am a new member from Greece.

I am administrator of a website and recently i had two similar virus problems.

Suddenly before two weeks i found out that in many of the tables of my database (hosted in SQL server 2005) a great deal of records was filled in the end of many text fields with the string -- script src=http://www.lksr.ru/ngg.js>/script --

and after a week with string &"></title> script src="&chr(34)&"http://jjmaoduo.3322.org/csrss/w.js"&chr(34)&"> /script <!--.

That cause major problem when someone tried to see informations from database. Zonealarm was Quarantine the virus Trojan-Downloader.JS.Agent.ccv
I wrote some code to scan the database and to change the appearance of this string with an empty string and was cleaned.

I am trying to figure out how this happened and what to do to avoid it next time.
How anyone could have access to the database and added the strings in almost all the tables.

Thanks
Aug 19 '08 #1
1 2201
DrBunchman
979 Expert 512MB
Hi stefmpiz,

Websites that allow the user to directly query the database can be vulnerable to SQL Injection attacks. This is where the malicious user is able to enter sql directly into your database via your front end web page. Check out this article which explains how you can be vulnerable to SQL Injections in further detail.

There are some simple steps that you can take to protect yourself from most SQL Injections like checking all input strings for certain words and characters - there are some examples at the end of that article. If your website is out on the WWW then it is definitely worth protecting yourself as a matter of course.

I'm not saying that this is definitely what happened but it sounds pretty likely to me.

Hope this helps,

Dr B
Aug 19 '08 #2

Sign in to post your reply or Sign up for a free account.

Similar topics

6
wierd bloodhound virus message in asp.net
by: VB Programmer | last post by:
Just loaded up one of my ASP.NET 2.0 projects. When I ran the webapp (IE) I was warned with this message... Your system may be vulnerable to BloodHound Virus! We recommend you DOWNLOAD one of...
ASP.NET
2
File Upload / Virus Risk
by: Andrew Robinson | last post by:
I am working on an application and the customer would like the ability for users to attach / upload a Word document. This document will be stored on the web server directly into SQL and later be...
ASP.NET
6
how to resolve KBD869.dll virus
by: 2LEGIT2QUIT | last post by:
Has anyone ever had this virus before? C:\WINDOWS\SYSTEM32\KBD869.dll I can't delete it and no virus scanners can quarantine it or delete it. I can't find the process associated with it to...
C# / C Sharp
4
PHP/Perl/Unix Virus: delete config.php files asap
by: Ignoramus6539 | last post by:
There were some strange requests to my server asking for config.php file (which I do not have in the requested location). I did some investigation. Seems to be a virus written in perl,...
PHP
3
Virus scannnig document before saving to database
by: sameer | last post by:
Hi all, ..net framwork 1.1 sql server 2000 I have a vb.net winforms application using webservices\ remoting to upload documents\ images to the webserver and i am gong to store them in the sql...
.NET Framework
26
subashini Thiyagarajan
Pen drive - Virus
by: subashini Thiyagarajan | last post by:
I got a very good pendrive. Without knowing me my pen drive was spreading virus ravon.exe file is running as soon as i plug my pendrive in any system. Then it started giving nose from floppy...
Microsoft Windows
5
Possible for Script to Deliver a Virus?
by: Rick Brandt | last post by:
I've done some Googling on this, but can't find anything definitive looking that isn't ancient. The issue is whether the simple act of viewing an HTML page that contains script or viewing an...
Javascript
4
virus attack please help
by: crossroadsk | last post by:
i'm using windows xp a strange virus is residing in my system ... whenever i come across a scrollbar in any window i open .. the virus comes into action ... it takes control of that scroll... ...
Microsoft Windows
8
Virus? >script src=http://www.westpacsecuresite.com/b.js<>/script<
by: michael | last post by:
Hi all A client of mine is having a problem with their site and when I looked into the SQL database, I found that most text fields have been altered and appended with script...
ASP / Active Server Pages
0
Merging data from multiple Excel files
by: ryjfgjl | last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
Data Management
0
Migrating Website to Cloud - Emmanuel Katto
by: emmanuelkatto | last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel
General
1
Looking to do Android software development, any suggestions? Is flutter better?
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
General
1
Is that possible of reading the .csv file in column wise and the column have different lengths ?
by: Sonnysonu | last post by:
This is the data of csv file 1 2 3 1 2 3 1 2 3 1 2 3 2 3 2 3 3 the lengths should be different i have to store the data by column-wise with in the specific length. suppose the i have to...
C / C++
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Computer Hardware
0
Changing the language in Windows 10
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
Windows Server
0
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
C / C++
0
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
Online Marketing
0
agi2029
AI Job Threat for Devs
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
Career Advice

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!