boylibre Posted July 20, 2012 Share Posted July 20, 2012 I was about to edit one of my post when I receive a warning from Google about malware acitivity on this site. I have the image but I don't know how to post it here. Anyway the message says something like..."Warning: Something's not right here! www.prestashop.com contains content from hipdiaewew.tk, a site known to distribute malware....". This is the same thing that happened to my shop few days ago, see here. I hope I'm wrong. boy Link to comment Share on other sites More sharing options...
El Patron Posted July 20, 2012 Share Posted July 20, 2012 (edited) You might try this. -Change your ftp and db user and passwords -Download your site files to another folder than your production site. -Your virus protection should then identify which files are infected. -Look in your production (back up) site files (on your local computer) and see if the size is smaller and the date looks the same as your other files. If the file looks good then replace the infected file with your good file. -If the prod backup file does not look good then you will need to file copy(s) of the files from PrestaShop and or your theme supplier. note if you are using a vps or dedicated server then make sure you have any security patches applied to your cpanel or plesk. If you are running shared you should contact your hosting provider to make sure that there Edited July 20, 2012 by elpatron (see edit history) Link to comment Share on other sites More sharing options...
boylibre Posted July 20, 2012 Author Share Posted July 20, 2012 elpatron, I was talking about this forum site. But it seems it is not happening anymore... Link to comment Share on other sites More sharing options...
El Patron Posted July 20, 2012 Share Posted July 20, 2012 elpatron, I was talking about this forum site. But it seems it is not happening anymore... Ooops...sorry...just into my third cup of coffee and now I see what you mean...have a great day. Link to comment Share on other sites More sharing options...
Mike Kranzler Posted July 20, 2012 Share Posted July 20, 2012 Hi boylibre, Thank you for reporting this. I have a developer looking into this as we speak, and will post back here as soon as I have additional information. -Mike Link to comment Share on other sites More sharing options...
Mike Kranzler Posted July 20, 2012 Share Posted July 20, 2012 Hi boylibre, Our dev team just looked into this, but there is no evidence of any malware on our site. This is likely a function of the same intrusion you reported on your own shop a few days ago, in which case you should definitely follow elpatron's suggestions above, as the malware is likely affecting your browser along with your FTP client. I hope this helps, and once again, thank you for reporting this. Regardless of the outcome, we always take these sorts of report seriously and will investigate every one ASAP. -Mike Link to comment Share on other sites More sharing options...
.png.022b5452a8f28f552bc9430097a16da2.png)
Recommended Posts