I'm Chia Wald and this is my blog. Here is where I share my thoughts and my art. Sometimes it is good, sometimes it isn't. That's life... and that's me. 
My blog was hacked on Monday night and a nasty little virus was planted here. It’s a new virus named HTML/Framer Z and honestly, I have no idea what it does. I only know that it was on my site because when I tried to load the page my virus checker popped up a window and warned me.
Thank goodness I keep my computer security systems up to date. It was AVG that alerted me to the problem. If you don’t have up to date protection on your computer, you can download a free copy of AVG here.
Thank goodness for AVG and thank goodness for my super fantastic son-in-law, Sci-Fi Man. The dear man tracked down all he could about the virus then went to work repairing my site. While he was at it, he did some upgrades to my blog program to help ensure that we don’t have any more hacker attacks. I’d be lost without him and by now it is safe to say this blog would cease to exist without his help in times of emergencies. I’ve decided to thank him with an Amazon gift certificate and if anyone else wants to join me feel free to use the little donation button on the left side of the page. He’s worked really hard to make sure we can still meet here.
We took the site down when we discovered what had happened but if you visited the site between Monday evening and Tuesday afternoon I strongly recommend that you make sure you have a virus checker and that it is up to date. If it isn’t you should install one and run a scan of your computer. As I said in the beginning we weren’t able to find out what this virus does but AVG seemed ready to deal with it.
Stumble it!
5 responses so far ↓
1 AVG User // Apr 11, 2008 at 12:52 pm
Loads of AVG users get this one, have done research and have had my ISP cleanse the domain folder on their servers they detect nothing This is an AVG thing only none of the others detect it I just hit ignore now. Its also an infrequent pest first appearing on April 1st (bit of a clue)
Just my 2 c worth
2 chia // Apr 11, 2008 at 2:05 pm
Thank you for your input. We couldn’t find much information on it.
3 Michelle // Apr 12, 2008 at 7:43 pm
You still have it on some of your sites. I was just in your gallery and some of your sites have it. If you bring up your html for the sites, you’ll notice a with a lot of “$%%577^^%&” that type of stuff and
Just delete that source code and re-load it and that will get rid of it.
I had it on any html file that was an “index.htm” file, once I removed it, it was fine.
Good luck!
4 Michelle // Apr 12, 2008 at 7:45 pm
Michelle here again, in the above message it took out my html code , you delete the > html code. Please delete my email addy from my post, it wouldnt let me post w/o it, and I dont like it showing because of spammers. Thanks!
5 chia // Apr 13, 2008 at 1:10 am
Thanks Michelle. I’ll spend tomorrow going through the site checking for it. Anytime you don’t want to leave your e-mail just make one up
I’ve deleted yours from these messages.
Leave a Comment