-
-
Notifications
You must be signed in to change notification settings - Fork 300
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
malware on domain at first visit #28
Comments
Thank you for bringing this to my attention @krystian3w. I took the website down today and took a look at the code. There was indeed malware injecting into the pages. I have now removed this and migrated the website to Netlify. You can view the website here for now until the name servers update: |
Hello @g13nn , I mainly use private browsing, and I often come across this injection on various websites, only with firefox though... No later than today I came across a few sites redirecting me to a freshly new registered domains: http://whois.domaintools.com/evionelang9.live I have been looking on the internet, and haven't found many articles / testimony relating to the issue (google "To the new location please click here"), the most relevant result being this github page. Please, do you still have any information regarding the malware you removed on the site ? any idea how it arrived ? clues on the code ? Thanks! |
Website suppose save visited IP, so to reproduce need unique IP "not visited" on this site.
Bad code possible see with
back (undo) history button
and disable Javascript (to block runmeta refresh tag
orwindow.location
redirect inline script).The text was updated successfully, but these errors were encountered: