|
Posted by paris on May 20, 2008, 3:53 am
Please log in for more thread options
Greetings ...
I have a website - I'm trying to attract advertisers.
An avertiser just recently contacted me - and told me he
was not interested because when he clicked on our link -
his avg said it was the virus "exploit"
So, I called my friend - and he said that his avg said the
same. And instructed me to call my provider so they can
remove the virus.
My provider said it was one of my scripts. And only I could
revove it.
However - I visited the link scanner online site - and ran the
link, and this is what they said:
DANGEROUS: LinkScanner Online has found
[Link to known exploit site]
Detail: Exploit: Link To Known Exploit Site
This page contains a link to a known exploit site. This link may
or may not be active. It may or may not require you to click it to
be infected. Some pages with such links automatically download
the malicious code without any action on your part. Because of
this we automatically block access to such pages.
Risk Category: Exploit
How can I find out which link it is?
The link in question is: http://www.allsitecafe.com/safelists.html
Is there any way for me to find out which link or links it is? I need
to have it removed!
Any suggestions?
Thanks in advance!
Paris
|
|
Posted by Andrew Heenan on May 20, 2008, 5:30 am
Please log in for more thread options
"paris" wrote ...
> An avertiser just recently contacted me - and told me he
> was not interested because when he clicked on our link -
> his avg said it was the virus "exploit"
> How can I find out which link it is?
I'm not ging to visit your site - for obvious reasons!
However, start by removing every single link that does not go to a site you
genuinely recommend (as well as being an essential precaution, this will
almost certainly help your site in Google, and maybe other SEs).
Then remove every non-related reciprocal link.
Then repeat the above two steps, removing all the ones you accidently on
purpose did not remove ;o)
Now do the same with any 'third party scripts' - web counters are a waste of
space, often bring pop-up boxes, and may be the guitly party. And you really
don't need them.
Gimmicky javascripts that make your page wobble, flash, dance or spit, are
easily contaminated, and if you got them for free from a cr*p site, they are
probably cr*p. And likely contaminated.
"Get rich quick" affiliate links will NEVER make you rich, but your greed
may have been exploited, especially by sex or gambling scams.
Then go through line by line removing everything else that you are not 100%
sure of.
Now install a quality antivirus that checks web sites in Google searches (eg
AVG 8), and search for a unique string of text from your home page.
And run your page checker again.
That lot may help, but it's probably not comprehensive; others may add to
that list.
Think of your site like a Rolls Royce Limousine; if you maintain it with
quality parts, it'll serve you well for life. If you source essential parts
from *insert country name here*, then expect problems.
Good Luck!
--
Andrew
seo2seo.com
sick-site-syndrome.com
UK Residents:
STOP THE "10p Tax Ripoff"
Sign the petition to stop the government stealing from the
very poorest tell your friends about this petition:
http://petitions.pm.gov.uk/10penceband/
|
|
Posted by Andy Dingley on May 20, 2008, 6:36 am
Please log in for more thread options
> So, I called my friend - and he said that his avg said the
> same. And instructed me to call my provider so they can
> remove the virus.
>
> My provider said it was one of my scripts. And only I could
> revove it.
Start by setting _strong_ ftp passwords. There was a flurry a few
months ago of dictionary attacks on weak ftp passwords, then sites
being hacked to embed a script exploit.
The exploit-installation bot would go through all the directories on a
site and hacking the index.htm files to embed a single very long line
of a <script> element full of obfuscated JavaScript. If you've the
vaguest familiarity with web coding, you'll see this a mile off - it
just _looks_ wrong.
Easiest way to fix this is because you do of course have a local copy
of your site code, don't you? Just delete the whole live copy of the
site and re-deploy it from your local development server (check that's
still clean though!)
If you'd edited files on the live server and don't have a clean copy,
then you face a lot of tedious editing to fix it. Sed (look it up) can
do this.
|
| Similar Threads | Posted | | Beware possible cpanel exploit | March 20, 2006, 7:44 pm |
| Animated cursor exploit? | March 30, 2007, 8:20 am |
| www.vtvf.com-A cheap place for advertise ur personal site or company site | January 6, 2006, 7:09 pm |
| Great new ezine site. Advertise your site today for FREE!! | March 22, 2006, 5:03 pm |
| Free layouts, web site design, web site backgrounds resources | January 2, 2008, 7:37 am |
| New visitors daily to Your web site or affiliate web site at $0 cost to you | February 3, 2006, 6:06 am |
| Moved servers now site script won't launch site | February 22, 2006, 11:29 pm |
| Site owners check your site for robots.txt file! | August 8, 2006, 10:16 am |
| 10 main tools that helps you to promote your site in search engines, analyze your visitors, and easily maintain your web site at optimal quality. | January 12, 2006, 10:38 am |
| New Web Site Monitoring Site *** free service*** | July 12, 2006, 5:45 pm |
|
XML Sitemap