My site www.KaciAllen.com has been reported as an “attack site” and I don’t know at all what this means, or how it happened, or how to fix it.
I built the site in Dreamweaver and uploaded it, just like www.extremelifechange.com and www.insouthnashville.com – and they’re all “hacked” or something.
I also don’t have the $ to pay a tech person to deliver me… so i’m praying someone on here can help me…
kaciallen@live.com
www.facebook.com/kaciallen
Your sites have been hacked and are redirecting to a known malicious site [ http://sepi.tw/in.cgi?4¶meter=sepi ]
A “302 Found” page is being returned for non-existent pages. Web-sniffer.net shows the redirect to sepi.tw/in.cgi?4¶meter=sepi for a non-existent page. I see this for all three sites.
In addition, when I try to view the home-page code through web-sniffer.net, my Avast Anti-virus blocks my access because of a malicious iframe. Someone else without the limitation I have with my AV active, may be able to tell you exactly what is there.
*Let your hosting provider know that your site has been hacked and see if they can help determine how the site was hacked and how to fix that problem. Share with them what I have identified here and ask them to also check any .htaccess files (scroll to the bottom past any blank lines) and the httpd.conf file.
*Clean your local computer of any virus/trojan capable of capturing FTP credentials and change all of your passwords before accessing the site again
*Upgrade any blog, forum, gallery, CMS or other script to reduce vulnerabilities created by outdated code
*Confirm that the web-host has updated anything they are responsible for
*Restore the last known good backup of your site
*If you don’t have a backup, examine all files (including extra “suspicious” files, hidden files and error documents), and remove code you didn’t place there.
*Ask your host if you can switch from FTP to either SFTP or FTPS to minimize the chance of log-in credentials being “sniffed”
*After cleaning and securing your site, “Request a Review” through your Google Webmaster Tools Account . Sites must be added and ownership verified first.
Whether your host is helpful or not, there are some excellent resources you will want to become familiar with so that you can more actively participate in the process of maintaining your site and keeping it secure. Follow the links within any of the documents and absorb as much as you can.
Tips for Cleaning & Securing your Website
How to remove the ‘This site may harm your computer’
Edit: added additional information about the other two sites
I found new code present on two of the three sites through a quick scan with Dasient WAM. You will need to copy/paste these URLs to view the scan results.
www .insouthnashville .com
http://wam.dasient.com/wam/diagnose?URL=www.insouthnashville.com&scan_id=22910
www .extremelifechange .com
http://wam.dasient.com/wam/diagnose?URL=www.extremelifechange.com&scan_id=22909