Previous post about looking for an artist

[BillyM]

My last post with a link was not me trying to infect your machines.

Hostgator (my host) supposedly took care of the malware infection already. They sent me a long email with the details. I know longer get the the message. But no - it's not me trying to infect your machines - the malware resides on website's host, meaning my site is infected. I'll try to upload the game somewhere else and get back to looking for an artist ASAP.

For idiots that still think I'm a loser trying to infect people - here's the mail I recieved.

> "For your security we made the following password changes:
>
> * Cpanel password for billym reset to *********
>
>
>
> We have found the following files to be malicious, which were removed.
>
>
>
> /home/billym/public_html/BillyM148/default.php
>
> /home/billym/public_html/default.php
>
> /home/billym/public_html/wp-admin/state.php
>
> /home/billym/public_html/wp-content/default.php
>
> /home/billym/public_html/wp-content/themes/busybee/styles/grey/bg.php
>
> /home/billym/public_html/wp-content/themes/busybee/styles/sienna/counters.php
>
> /home/billym/public_html/wp-content/themes/sleek/images/_notes/bg.php
>
> /home/billym/public_html/wp-content/themes/sleek/js/back.php
>
>
>
> You are able to see where this was done in the following log entries.
>
>
>
> Jan 3 22:51:34 gator1772 pure-ftpd: ([[email protected]]([email protected])) [NOTICE] /home/billym//public_html/BillyM148/default.php uploaded (2364 bytes, 18.50KB/sec)
>
> Jan 3 22:51:25 gator1772 pure-ftpd: ([[email protected]]([email protected])) [NOTICE] /home/billym//public_html/default.php uploaded (2364 bytes, 18.76KB/sec)
>
> Jan 3 22:52:25 gator1772 pure-ftpd: ([[email protected]]([email protected])) [NOTICE] /home/billym//public_html/wp-content/default.php uploaded (2848 bytes, 22.24KB/sec)
>
> Thu Nov 01 05:33:25 2012 1 91.212.12.70 79462 /home/billym/public_html/wp-admin/state.php a _ i r billym ftp 1 * c
>
> Thu Nov 01 05:33:22 2012 1 91.212.12.70 79462 /home/billym/public_html/wp-content/themes/busybee/styles/grey/bg.php a _ i r billym ftp 1 * c
>
> Thu Nov 01 05:33:22 2012 1 91.212.12.70 79462 /home/billym/public_html/wp-content/themes/busybee/styles/sienna/counters.php a _ i r billym ftp 1 * c
>
> Thu Nov 01 05:33:22 2012 1 91.212.12.70 79462 /home/billym/public_html/wp-content/themes/sleek/images/_notes/bg.php a _ i r billym ftp 1 * c
>
> Tue Oct 30 19:16:00 2012 0 208.167.225.228 79462 /home/billym/public_html/wp-content/themes/sleek/js/back.php a _ i r billym ftp 1 * c
>
>
>
> The following scripts were found to be out of date. We recommend updating these as soon as possible since they contain known security vulnerabilities and are easily exploited.
>
>
>
> Wordpress :: 3.2.1 :: /home/billym/public_html
>
> Wordpress :: 3.4.2 :: /home/billym/public_html/[universejunkies.com](http://universejunkies.com/)
>
>
>
> For instructions on updating your Wordpress instance(s) to the latest version (3.5), please see the link below:
>
> –----------------------------–--------
>
> [http://codex.wordpre…ating_WordPress](http://codex.wordpress.org/Updating_WordPress)
>
>
>
> Alternatively, you can download the full Wordpress package here:
>
> –----------------------------–--------
>
> [http://wordpress.org/download/](http://wordpress.org/download/)
>
>
>
> If you have any questions or concerns, please don't hesitate to contact us via online chat or calling us at **[background=transparent !important][background=transparent !important] [/background][background=transparent !important][background=transparent !important] [/background] [/background][background=transparent !important][background=transparent !important]1-866-96-GATOR[/background][/background][background=transparent !important] [/background][/background]** or **[background=transparent !important] [background=transparent !important][background=transparent !important] [/background][background=transparent !important][background=transparent !important] [/background] [/background][background=transparent !important][background=transparent !important]713-574-5287[/background][/background][background=transparent !important] [/background][/background] [/background]**. We are more than happy to assist you at anytime. Our associates are available 24 hours a day 7 days a week.
>
>
>
> Sincerely,
>
>
>
> Ryland R.
>
> Linux Security Administrator
>
> [background=rgb(255, 255, 204)]HostGator[/background].com LLC
>
> [http://support.[colo…nd].com](http://support.hostgator.com/)"