http://weblogtoolscollection.com/news/ Weblogtoolscollection News Topic: Ninoplas Base64 Virus hitting WordPress and more en Sat, 25 May 2013 18:06:06 +0000 http://weblogtoolscollection.com/news/topic/ninoplas-base64-virus-hitting-wordpress-and-more#post-6939 Mon, 19 Apr 2010 17:49:40 +0000 WPSecurityLock 6939@http://weblogtoolscollection.com/news/ <p>Don't make the same mistake that so many webmasters do, thinking that your Website won't get attacked by a malicious hacker. On April 15, 210 over 200 WordPress websites were infected with the Ninoplas Base64 and it's spreading.</p> <p>It has been seen on WordPress, Pligg, Joomla, and several different hosting companies. Please check to make sure your website isn't infected.</p> <p>Some symptoms include...</p> <p>1. Your site gets redirected to:</p> <p><a href="http://www.bing.com/search?q=freevirusscan&#38;go=&#38;form=QBRE&#38;filt=all" rel="nofollow">http://www.bing.com/search?q=freevirusscan&#38;go=&#38;form=QBRE&#38;filt=all</a></p> <p>or</p> <p><a href="http://scaner24.org/?affid=318&#38;subid=landing" rel="nofollow">http://scaner24.org/?affid=318&#38;subid=landing</a></p> <p>2. You see this type of code in your .php files.</p> <p>base64_decode("aWYoZnVuY3Rpb25fZXhpc3RzKCdvYl9zdGFydCcpJiYhaXNzZXQoJEd</p> <p>You can find out more and how to remove it here...</p> <p><a href="http://www.wpsecuritylock.com/wordpress-site-hacked-ninoplas-base64-virus/" rel="nofollow">http://www.wpsecuritylock.com/wordpress-site-hacked-ninoplas-base64-virus/</a></p> <p>Securely yours,</p> <p>Regina Smola<br /> <a href="http://www.wpsecuritylock.com" rel="nofollow">www.wpsecuritylock.com</a> </p>