The 3 infected servers (that I know of) seem to have been recovered at the moment, so I can’t check it. But I think, the malicious code was only injected into html files (files with HTML markup). I guess visitors to Server B were not affected
I made a test yesterday, uploaded a blank file, say test.html. When I opened it via browser all I can see is the code above (it supposed to be blank). This is just too weird for me. Can you please let me know how to solve this issue exactly? I have already contacted my hosting provider including a link to this blog two days ago but but the code is still there. Thanks a lot in advance!
About this blog
Occasional posts from the developer of Unmask Parasites about things that hackers already know and site owners should know (if they don't want to be victims).
Exploit reviews, security tips, and all that jazz.