Hi,

I have built a website or 2..but Ive never heard of this happening before.
Everytime I send someone to my site, they discover a virus!
Does this mean one of the files on the server are infected?....its hosted on geocities, wouldnt they have anti virus installed on their servers?
And solutions....
Can I locate the virus? ..or do I have to get rid of the lot and start again?
any help would be great.

http://www.basscoderecords.com the domain
http://www.geocities.com/basscoderecords2002 where its hosted

what the heck do you mean a virus. A web language cannot have a virus in it so I do not know how your uses would find one. If your server had a worm you would be dropping files most likely. The only way your users will see a virus is if they download something with a virus in it and it would have to be corrupted by you most likely depending on how the worm or virus got into the server.

OK, so.
Eveytime anyone loads up a webpage...the files (pics/java/flash etc) are downloaded to their PC yea?
so....I must deduce that their must be an infected file(of mine) on their server...

sorry explain "dropping files"

And, I most certainly did not plant nothing on the server.....Ive just been happily bulding my site, and now ppl are saying they wont visit cos of the virus!

Now...Ive maled the ppl who said they got virus, to give me the name of the virus/file...and exactly when the virus checker alerted.

This is all pears to me.....

If its a worm files of yours might get deleted, thats what I mean by dropping. Also a virus cannot be programmed through any server side or client side languages, web languages do not have the capability, it is possible to do something like that with java but not through the internet by means of like an applet or something. A virus on your site is not going to affect users through images either, geocities does have real time intivirus on their servers so I would highly doubt even a hexed image would get on there. Look unless you put the virus there yourself as a download your viewers cant get it, and you already said you didn't so what are you worried about?

Unless people download an excutable file from your site, they can not get a virus from you. You can not get a virus just by visting a webpage. (well you can, but I doubt it very much on geocities).

SImple.

I was worried because, two ppl I had sent the link clicked on it...and i must have been coincidence...and got a virus at the same time.
One of the ppl I mailed said thire virus checker had just finished ..and alerted him to a virus at the same time he clicked the link....and the others havnt got back to me yet.

For a moment I thought I did have a virus on my site...but after speaking to you guys Im no longer worried.

Thanks for your help, now I know.
Much appreciated.

It's not often I can say PeOfEo is wrong, however take a look at this...


A search of virus's that use HTML (http://www.trendmicro.com/vinfo/virusencyclo/default2.asp?m=a&virus=html&alt=html)

Hmmm, I'd still go with what I said earlier though, it is very hard to get a virus from a HTML website. the only way you could get it to work is by finding a security hole in IE. I know of only one that could be used, even then it would be very hard to cause a virus to spread from teh suers computer. You may be able to do some damage, but as soon as they leave the webpage, thhey'll leave all virus information behind them.

Most of the files in that link either open outlook, which is full of security bugs, or are just stored in a html file.


For example


This HTML malware opens several instances of the default mail client, the default Web browser, and different folder windows. These opened windows may exhaust system resources and cause systems to slow down.


basically just opening lots of browser windows until it crashes. Hardly a virus in my books as the problem will be gone as soon as you turn teh computer back on.

I would give nearly all html viruses a very small rating meaning:


no system changes
deletion of less significant files in the system
damage can be recovered by users without using any tools
damage can be reversed just by rebooting the system

I was only stating that a person could make it happen... it should/couldn't happen by accident.

I know, just saying the type of virus he was talking about couldn't have happened.

but still.....argument settled, you can still get a virus thru browsing the web...no matter how small...that a virus checker would pick it up....especially a good one.

Or hoew about some mutant virus....a fragment of a previous virus left in a file...could also alert the software...or am I just talking boll***s now...

Pete what do you mean? How can you hide a virus in an html extention? I looked at the link and they had the extention but I dont get it. Are they like put into the file via a hex editor or something? Also if a virus can be sent through means of html whats to stop someone from putting a link on their site I open and cache it and boom virus? Explain this a little because I dont want to reaserch it :)