SitePoint Sponsor

User Tag List

Results 1 to 6 of 6
  1. #1
    SitePoint Enthusiast Briano's Avatar
    Join Date
    Jun 2007
    Location
    Chattanooga, TN
    Posts
    64
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Website virus scan?

    Hello, we have recently had customers call in saying that our site is trying to deliver a virus to them...we checked the code, used several checkers we could find online, including google's tool, and haven't seen anything. Still, we are getting a call a day about it. Any ideas on how to effectively check?
    Michelin Collectibles - Vintage Mr Bib Collectibles
    ...make your friends think you're NOT a nerd!!
    Corky Coker's Blog - Weekly blog by lead vintage car figure

  2. #2
    From space with love silver trophy
    SpacePhoenix's Avatar
    Join Date
    May 2007
    Location
    Poole, UK
    Posts
    5,027
    Mentioned
    103 Post(s)
    Tagged
    0 Thread(s)
    Have you run a full scan on ther server that it's hosted on? Are all apps on the server the latest stable releases?
    Community Team Advisor
    Forum Guidelines: Posting FAQ Signatures FAQ Self Promotion FAQ
    Help the Mods: What's Fluff? Report Fluff/Spam to a Moderator

  3. #3
    King of Paralysis by Analysis bronze trophy
    Join Date
    Jul 2004
    Location
    Ottawa, Canada
    Posts
    5,840
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Ask the callers what they are using that is reporting the virus to them (e.g. Norton).

    Buy a copy (or preferably get a free trial version), install it, and visit the site.

    That's the only way that you are going to know what your clients are seeing.

  4. #4
    SitePoint Member
    Join Date
    Oct 2007
    Location
    Canader
    Posts
    1
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    The most recent that I'm aware of were the attacks on Godaddy.. Most all .php files had a large section at the top of the file and were encoded.. you can plainly see if that is the issue by checking your index.php or see if your .htaccess is missing and file dates are not as they should be.. I posted on the most recent attacks in which I was affected at http://www.craigryder.com/godaddy/go...nfoonline-com/
    There are instructions, links to a scanning service (no affil of mine) and a file to check your php files for infection..

  5. #5
    SitePoint Enthusiast Briano's Avatar
    Join Date
    Jun 2007
    Location
    Chattanooga, TN
    Posts
    64
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Thank you for all of the advice. Still checking things, and not finding anything. SpacePhoenix, I'm talking to my host about it now. Thank you.
    Michelin Collectibles - Vintage Mr Bib Collectibles
    ...make your friends think you're NOT a nerd!!
    Corky Coker's Blog - Weekly blog by lead vintage car figure

  6. #6
    secure webapps for all Aleksejs's Avatar
    Join Date
    Apr 2008
    Location
    Riga, Latvia
    Posts
    755
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    You can give QualysGuard (or other similar tool - this is one that I actually know) a try:
    http://www.qualys.com/products/qg_su...are_detection/


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •