gumblar.cn Trojan

Posted on Wednesday, May 6, 2009 by Krish Tags: ,
Category: Javascript, Security

On Google chrome i got one of my site blocked, which uses PHP. Here is the screen shot

gumblar

and my Kaspersky blocked one

kaspersky

This Trojan is coming normally from the files uploaded from the  affected machines. And this will work only if the file is having write permission. So the best method to avoid this is to remove write permission to all PHP, JavaScript and html files.

if you are already affected with this, have a search for the iframe which is inserted in the files, index.php and index.html are the common files it is affecting, but there is a chance that it may affected other files too. You will have to edit all these affected files.

i haven’t heard this Trojan affected any websites working on Microsoft technologies.




Post Calendar

<<  May 2012  >>
MoTuWeThFrSaSu
30123456
78910111213
14151617181920
21222324252627
28293031123
45678910

Me & My Friends