3 replies to this topic

[Footybits]

Hi, Ive read a load of these topics to try and figure out how to help myself and read the "secure site" thread as well but unfortunately Im not really very clued up about coding and the like so Im after some help.

In fact Im really sorry to have to start another topic about this but Im afraid Im at my wits end and dont really know where to go from here as Ive been dropped in it a bit by the person who usually looks after my sites.

The situation I find myself in is that two of my sites have got a warning against them on Google with a report of the sites having a "HTTP Fake AV Redirect Request" on it.

When Ive looked at the coding via the File Manager option all of the pages have the EVAL64 code strings that are mentioned elsewhere on these forums so Im guessing this is where the problem is.

When I flagged this to the guy who built the site for me and looked after it for last 5 years his dissapointing advice was to simply download all the files and delete the strings mentioned above, change the admin file name and hope it didnt happen again!

Now my knowledge of coding is VERY limited and I certainly dont want to mess about doing this sort of stuff as I know it will end in disaster and almost certainly wont solve or stop the problem happening again so what Im hoping for is that someone on this site will hopefully point me in the right direction as to what I should do now.

As mentioned above I am really sorry to have started another thread on this subject as I can tell by the tone of some of the responses to earlier ones that this is a subject that is very annoying to some people, however I am a complete novice at this sort of thing and even though Ive tried to follow the security instructions on various links I still havent a clue so Im really looking for someone to give me some idea what I can do to clean my sites up AND stop them getting infected again.

PLEASE dont have a go at me for my obvious lack of knowledge on the subject but all I really want is for someone to help me out of this situation.

Cheers,
Mick

[spooks]

These are serious hacks the best solution is to ask host to wipe site & restore with your clean backup, then add security b4 going back live, otherwise you spend ages cleaning, get back up, hackers comes back through the back door they left & your back to square one.

All the security add-ons provide simple steps, if its beyond you to follow those then you need to find someone more capable to do it for you, sorry the writers don't have to time or inclination to write very basic 'step by step' instructions that they would never recieve any thanks for anyway!


Have you asked your developer if he still has copies of your sites?


Sorry its not what you likely wanted to hear, but there is no 'easy' solution to your problem. [img]http://forums.oscommerce.com/public/style_emoticons/default/smile.gif[/img]

[Footybits]

Hi Sam, many thanks for your reply, it is appreciated.

I do have a back up of my sites, however I dont know whether they themselves are "clean" or not and dont really know how to check that. I will ask my developer if he has a copy that could be used, however I am of the opinion he probably wont have.

If that is the case is my only option then to actually get the hosts to wipe the sites and then start from scratch?

Mick

[burt]

There are a number of people who can easily take your existing site and database, sanitise it, add security and then support you in the future. However, it costs good money and can take a day or more to get it right.