Blackhat SEO Exploits

[theinkjetmarket]

Today I have had report from customers that their antivirus software is detecting threats on my OSC site.

 

It looks like AVG is giving the following warning:

 

Exploit Blackhat SEO (Type 1703)

 

There is no information on AVG website as to what this is.

 

I have tested in IE and it comes up with the threat warning as soon as the home page is opened.

 

With Firefox it only appears when I hover on a pop out menu.

 

Any one got any ideas what this could be and how to resolve it?

 

Thanks

[Jack_mcs]

It most likely means your site has been hacked.

[theinkjetmarket]

Hi Jack

I have checked my site monitor and there was no activity on that.

 

Just downloaded whole site to PC and run a AVG scan and that did not pick up anything.

 

How else can I check?

[Jack_mcs]

Hi Jack

I have checked my site monitor and there was no activity on that.

 

Just downloaded whole site to PC and run a AVG scan and that did not pick up anything.

 

How else can I check?

It may not be hacker code that was added. They may have just defaced the site or added code to redirect it somewhere else. Since the obvious problem is when you load it in IE, I would view the source in that browser and see if there is anything obvious. It will most likely be in the top part of the code but it could be anywhere. But it will probably be something not belonging to your site so it should be fairly easy to spot. If you can't find it that way, try going to another page, like privacy.php. If it doesn't fail there, then the problem is in the index.php file. If it does fail, then the problem is in one of the include files (header, footer and columns).