1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

My website has been reported as an attack page!

Discussion in 'White Hat SEO' started by joxnard562, Nov 11, 2010.

  1. joxnard562

    joxnard562 Regular Member

    Joined:
    Aug 21, 2010
    Messages:
    212
    Likes Received:
    26
    Occupation:
    Sales
    Location:
    CA
    Hello,

    yesterday when i went into my website, i noticed that a pop came up requiring a pluging, so i downloaded turned out it was a trojan. i called the guy working on my site and he was unaware of it. i went into my email and i had an email from a customer complaining about the trojan download and the email was sent to me about 2 weeks ago. i also had an email from the host saying that i was sending spam......well today i go to my website and its being blocked due to being an "attack page", the guy building my site is in the same boat as me, i had hire him for the experience but turns out he is just like me lol.
    Please help to solve this problem.

    thanx
     
  2. extremephp

    extremephp BANNED BANNED

    Joined:
    Oct 19, 2010
    Messages:
    1,293
    Likes Received:
    1,272
    Your Site is Infected with a Malware Which Selfspreads among your php,txt js and other files!

    And The Injection will be propably base64 Eval code which most malwares use :D :)

    Just replied your PM :)

    ~ExP~
     
    • Thanks Thanks x 1
  3. joxnard562

    joxnard562 Regular Member

    Joined:
    Aug 21, 2010
    Messages:
    212
    Likes Received:
    26
    Occupation:
    Sales
    Location:
    CA
    btw , i paid for the sitelock and it doesnt even detect the malware. if you check my site it says it was scanned today and its in good standing.
     
  4. extremephp

    extremephp BANNED BANNED

    Joined:
    Oct 19, 2010
    Messages:
    1,293
    Likes Received:
    1,272
    Base64 Eval Injections are IF Statements, They Run Like, if The Users Browser is x, it works, and If google bot is visiting, it doesnt and A Lot more similar :D So they Often Go Undetected!

    ~ExP~
     
    • Thanks Thanks x 1
  5. TippiE

    TippiE Junior Member

    Joined:
    May 4, 2009
    Messages:
    123
    Likes Received:
    72
    Home Page:
    After you have removed the malware add it in the google webmasters area and submit a new malware test to google,they will "unblock" your site.
     
    • Thanks Thanks x 1
    Last edited: Nov 11, 2010
  6. CraigsAutopilot

    CraigsAutopilot BANNED BANNED

    Joined:
    Feb 24, 2010
    Messages:
    35
    Likes Received:
    3
    I've seen server wide compromises that are exactly like this. I'd be worried that your webhosts server might have been hacked.
     
  7. extremephp

    extremephp BANNED BANNED

    Joined:
    Oct 19, 2010
    Messages:
    1,293
    Likes Received:
    1,272
    Havent You seen Such Kind of Injections??

    I have seen one, in my clients site, Which Redirect all people towards the injectors site with adsense on it!

    And whenever Google Bot visit, The code is Not exceuted!

    Easy Done in Base64 Eval :D

    ~ExP~
     
  8. extremephp

    extremephp BANNED BANNED

    Joined:
    Oct 19, 2010
    Messages:
    1,293
    Likes Received:
    1,272
    So, What You say I right, I agree, And What I say is right as well! :D

    You just spitted up the Path into subs, I just said it All together hanging on the Base64 :beer:


    ~ExP~