Bryce F Posted June 8, 2009 Posted June 8, 2009 Hi, we recently set up our work-in-progress OSCommerce application. We are not listed in search engines yet. I recently changed a few of the payment modules for testing purposes, but I kept everything in test-mode. Recently, my client emailed me that this in-progress website has been flagged by Micro Trend as "high-threat." Since the website isn't even live yet and is not listed on search engines, this doesn't make sense. I don't know how or where to verify our flagging. Does anybody know how to test this, what might cause it, and how to get the flagging removed? If anybody would like to have a look at the site itself, please let me know. Thank you
germ Posted June 9, 2009 Posted June 9, 2009 If you PM me the URL I'll take a peek. I know "rogue code" when I see it. If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you. "Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice." - Me - "Headers already sent" - The definitive help "Cannot redeclare ..." - How to find/fix it SSL Implementation Help Like this post? "Like" it again over there >
Bryce F Posted June 9, 2009 Author Posted June 9, 2009 Thanks for having a look, I've PMed you the URL. Oh I just realized that my Paypal module was set to Live even though the Paypal account information said something like "test". Would this have anything to do with it.
germ Posted June 9, 2009 Posted June 9, 2009 Well, I'm not seeing any malicious content anywhere. I see no reason for it to be flagged that way. Except maybe if you access it without the /osc in the URL you get a list of files (some php). You probably should put a redirect in there so that part isn't accessible like that. They may just crawl the web by IP address. If that's the case the site could get crawled even if it's not listed anywhere. If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you. "Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice." - Me - "Headers already sent" - The definitive help "Cannot redeclare ..." - How to find/fix it SSL Implementation Help Like this post? "Like" it again over there >
Bryce F Posted June 9, 2009 Author Posted June 9, 2009 Ok thanks! I'll check for improper directory listing. I think I have CHMOD'ed some of the folders incorrectly too and have thus caused their contents to list as well... I'll go through them. Do you happen to know if the flagging will resolve itself or if I need to do something to clear it up?
germ Posted June 9, 2009 Posted June 9, 2009 I really don't know. Best thing would be to find out exactly WHO flagged it and why. Ask the client where they got their info. They may be mistaken. If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you. "Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice." - Me - "Headers already sent" - The definitive help "Cannot redeclare ..." - How to find/fix it SSL Implementation Help Like this post? "Like" it again over there >
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.