Thanks everyone for the continual help. I continue to have the warning on my site... I have done a 'grep' on google-analytize, google-, and even previous malware names. I did this grep even on the root of the server. I didn't find one file with anything.
I have also done multiple searches on the forum DB for google-, analytize, etc... and still, nothing there. The only entries that show up are actual posts from members complaining about the warning. I know it is long shot, but one of my forum admins found something with google adsense: http://www.thefinalfantasy.com/forums/how-do-i-questions/60620-tff-listed-attack-site-yet-again-firefox.html#post1163709 Again, this is the only code that is shared from both the forums and main website. I have no idea on what to do at this point. I am even willing to pay someone to scan my server or do whatever it takes to resolve this problem and ensure it doesn't happen again. I feel like I am pretty experienced in server management (I have 5 boxes), but this is beyond me at this point. It is just so irritating. thank you, steve [EMAIL PROTECTED] 2008/10/1 Cometcom1 <[EMAIL PROTECTED]> > > Hi Steve, > > This looks a little like a database injection. Have you checked you > entries in the forum database. That might prove to be the place to > look. > > Kent > > On Oct 1, 6:03 pm, wei zhao <[EMAIL PROTECTED]> wrote: > > Hi steve > > > > from this pagehttp:// > www.google.com/safebrowsing/diagnostic?site=http://www.thefina... > > > > I think you can try to grep "google-analytize.com" on your pages. > > > > wei > > 在 2008-10-1,上午11:45, Steve 写道: > > > > > > > > > > > > > Hello guys - > > > > > I am very familiar with the StopBadware/Google malware detection > > > relationship. One of my websites continues to get flagged randomly > > > through the last year or so. There were a few times that there was in > > > fact an URL injection in some javascript or mysql, and I would fix and > > > repair the vulnerability... however, this time around, I am having a > > > MUCH harder time finding exactly what the issue is? > > > > >http://www.google.com/safebrowsing/diagnostic?site=http://www.thefina. > .. > > > > > I have searched all files directly in SSH using grep (searched > > > analytize, b1izzard, etc) and found nothing... even searched for > > > iframe just to make sure. The odd thing is, in my webmaster tools > > > page, it lists page both from my main root site and the /forums/ > > > directory? the only include that is shared through the main site and > > > forums is Google Adsense. Is it possible a malicous 3rd party was > > > detected and my site was flagged? I have no idea what to do at this > > > point. I have feverishly searched my files and databases and I am > > > certain everything is removed. It seems that every time I request for > > > a review, it just gets rejected. It's hard to isolate with out any > > > more detailed feedback. > > > > > Any help would be GREATLY appreciated. Thanks, > > > steve- Hide quoted text - > > > > - Show quoted text - > > > -- :::steve thompson::: http://www.stevejthompson.com --~--~---------~--~----~------------~-------~--~----~ You received this message through the Google Groups "stopbadware" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/stopbadware?hl=en -~----------~----~----~----~------~----~------~--~---
