dansino Posted October 25, 2010 Posted October 25, 2010 Hi Guys, My site: www.flipflap.com.au and I installed FWR Security Pro. Today, I am been to google.com.au, and Input "flip flap" and there are my links in the page. but If I click any of my website link in the google page, a fake page comes out. try to told you the page contains virus, ask to clean, which is real virus I think. So I closed the window. Any one knows what it is? :angry: How to clean these bugs? Thanks in advance! Dansino
♥mdtaylorlrim Posted October 25, 2010 Posted October 25, 2010 Hi Guys, My site: www.flipflap.com.au and I installed FWR Security Pro. Today, I am been to google.com.au, and Input "flip flap" and there are my links in the page. but If I click any of my website link in the google page, a fake page comes out. try to told you the page contains virus, ask to clean, which is real virus I think. So I closed the window. Any one knows what it is? :angry: How to clean these bugs? Thanks in advance! Dansino You were hacked because your admin is vulnerable. See the link 'How to secure my site" in my signature. If you have a clean backup then you can password protect your entire site, wipe your site clean, and restore from your backup. Add all the security updates, test, then remove the password protection from your site. If you do not have a clean backup then you have to decide if it is worth installing the stock files from the current release. If so, then password protect your entire site, wipe your site clean, restore with the stock osC files, apply security patches, remove password protection from entire site. If you really must attempt to clean your site rather than restore it then you will have to look all through your site for the malware and remove it. Then look through all the php files for malicious code, and remove it. There are those here that can point you in the right direction for the various hacks and help you find all the code. Many times it is successful. Sometimes it is not. What method you use depends on your abilities and how much grief you are willing to endure in the process. Community Bootstrap Edition, Edge Avoid the most asked question. See How to Secure My Site and How do I...?
dansino Posted October 25, 2010 Author Posted October 25, 2010 You were hacked because your admin is vulnerable. See the link 'How to secure my site" in my signature. If you have a clean backup then you can password protect your entire site, wipe your site clean, and restore from your backup. Add all the security updates, test, then remove the password protection from your site. If you do not have a clean backup then you have to decide if it is worth installing the stock files from the current release. If so, then password protect your entire site, wipe your site clean, restore with the stock osC files, apply security patches, remove password protection from entire site. If you really must attempt to clean your site rather than restore it then you will have to look all through your site for the malware and remove it. Then look through all the php files for malicious code, and remove it. There are those here that can point you in the right direction for the various hacks and help you find all the code. Many times it is successful. Sometimes it is not. What method you use depends on your abilities and how much grief you are willing to endure in the process. Thanks Mark, I think I will go the first option to restore my site. just wondering if I got the right steps: 1, rename the admin, e.g. change the www.flipflap.com.au/admin to flipflap.com.au/other-name. 2, password protection (cpanel-Password Protect Directories-newly renamed admin directory only?) 3, wipe the site clean (delete all?) 4, restore my backup 5, add all secure updates 6, remove the password protection Am I missing something? Thanks! Dansino
♥mdtaylorlrim Posted October 25, 2010 Posted October 25, 2010 Thanks Mark, I think I will go the first option to restore my site. just wondering if I got the right steps: 1, rename the admin, e.g. change the www.flipflap.com.au/admin to flipflap.com.au/other-name. 2, password protection (cpanel-Password Protect Directories-newly renamed admin directory only?) 3, wipe the site clean (delete all?) 4, restore my backup 5, add all secure updates 6, remove the password protection Am I missing something? Thanks! Dansino Some of these hackers are FAST! Temporarily password protect your ENTIRE site during the restore process, through the time when you have the security updates in place. Only then should you remove the password on the entire site. Community Bootstrap Edition, Edge Avoid the most asked question. See How to Secure My Site and How do I...?
dansino Posted October 26, 2010 Author Posted October 26, 2010 Some of these hackers are FAST! Temporarily password protect your ENTIRE site during the restore process, through the time when you have the security updates in place. Only then should you remove the password on the entire site. Thanks Mark, I'd finished the instruction and test yesterday and working well for the site and admin. but I try to login in admin today, (admin be changed with another name) www.flipflap.com.au/anothername no response for a while and then appear in the screen: "The page isn't redirecting properly " Firefox has detected that the server is redirecting the request for this address in a way that will never complete. * This problem can sometimes be caused by disabling or refusing to accept cookies. what is wrong with my admin? Thanks! Dansino
♥mdtaylorlrim Posted October 26, 2010 Posted October 26, 2010 Thanks Mark, I'd finished the instruction and test yesterday and working well for the site and admin. but I try to login in admin today, (admin be changed with another name) www.flipflap.com.au/anothername no response for a while and then appear in the screen: "The page isn't redirecting properly " Firefox has detected that the server is redirecting the request for this address in a way that will never complete. * This problem can sometimes be caused by disabling or refusing to accept cookies. what is wrong with my admin? Thanks! Dansino Check the contents of the .htaccess files in both your root and renamed admin directories. Is your admin SSL? Community Bootstrap Edition, Edge Avoid the most asked question. See How to Secure My Site and How do I...?
dansino Posted October 26, 2010 Author Posted October 26, 2010 Check the contents of the .htaccess files in both your root and renamed admin directories. Is your admin SSL? yes, My admin is SSL, and I'd been to the .htaccess files in the both root and renamed admin directories, I could not find anything strange. what kind of the contents I should check? by the way, I can access renamed admin yesterday. thanks! Dansino
dansino Posted October 27, 2010 Author Posted October 27, 2010 Check the contents of the .htaccess files in both your root and renamed admin directories. Is your admin SSL? Still could not access the renamed admin page, somebody has a clue? Thanks! Dansino
♥mdtaylorlrim Posted October 27, 2010 Posted October 27, 2010 Still could not access the renamed admin page, somebody has a clue? Thanks! Dansino Show us your admin/includes/configure.php file. Community Bootstrap Edition, Edge Avoid the most asked question. See How to Secure My Site and How do I...?
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.