Website hacked!!!

Hello,
A few weeks ago my client's website was hacked. I submitted a ticked a I thought the issue was resolved my I guess it was not! The client was complaining lately about strange amounts of visits and calls from his clients that they cannot access the website. Well, I just scanned it with Trend Micro and it gave me this notice: The latest tests indicate that this URL contains malicious software or could defraud visitors.
The ULR is frecksautoart.com
Please advice!
Magdalena

Hi Magdalena,
This doesn't necessarily means a site has been hacked.  It could be when uploading or editing a page through a particular machine. 
There's a few similar topics about this and how to help resolve. 
http://forums.adobe.com/message/4513891
http://forums.adobe.com/message/4873286
I would also suggest changing out password just to make sure no one is messing around with your site.  You can always monitor who is accessing your site's admin via reports -> admin report. 
Otherwise reach out to our direct support so we can help investigate this further. 
Kind regards,
-Sidney

Similar Messages

  • My shop website hacked and the hackers use my clients credit cards on itunes

    my shop website hacked and the hackers use my clients credit cards on itunes
    as they publish the credit cards to public
    i dont know what to do ?
    <Link Edited by Host>

    Maureen_Anderson wrote:
    my shop website hacked and the hackers use my clients credit cards on itunes
    as they publish the credit cards to public]
    Pretty cool that you also publish this stuff online and post a link to it!

  • Can a hacked website hack my iMac?

    Hi,
    Yesterday I visited a website I've visited a number of times that appears to be run from India. However, when I went on yesterday instead of the usual homepage the page was black and had the words "HACKED BY PREDATOR" and then two boxes came up which you had to click Ok on before you could leave. It did say who it was hacked by and when I googled it it was a CYBERTEAM in indonesia that has a facebook group.
    I just wondered if it was possible that as I went on there for something to invade my computer?
    The site today is just a website hosting page.
    Thanks
    Ryan

    If you're running Windows, maybe; if you're not, then I'd say not - something can only "invade" your computer if it can recognize the OS or code and most hacking attempts are written to recognize Windows. As an extra precaution: when you're facing a website that will not allow you to do anything unless you click on something, simply close the entire window or, better yet, quit the browser and then open it again. You may lose your open tabs, but at least you haven't clicked anything you really didn't want to. Additionally, the Mac OS requires you to authorize any install of anything, so unless you input your password and let something install, it didn't happen. Also see this excellent article:
    http://www.reedcorner.net/thomas/guides/macvirus/

  • Fake apple website (hack credit card no.)

    <Edited by Host>
    more people lost money

    Report ALL of the details here: http://www.apple.com/legal/contact/.

  • Hacker attacking my FTP

    I've had my website hacked 4 times recently and can't work out how they are gaining access. The host provider simply says I'm not keeping my password secret. I have moved to another provider today but not convinced it won't happen again. It is just a small holiday cottage website but has been attacked by anti zionist rantings from Egypt. Clearly a random attack but I'm worried they could attack again just for the fun of it.
    I've no idea how FTP sites are hacked anyway but is there any software for OSX that I can run to eliminate the possibility of any virus on my computer that could be providing a leak?
    I also use DropBox and LogMeIn on a daily basis to link between machines. Do any of them have security weaknesses?
    Thanks for any help. This has been stressful and I'm not getting any helpful answers from the old host provider on this!

    Coming here is to an OSX forum was to find out if there are any known risks using OSX in general. Everyone always says 'Macs never get viruses' etc but wanted other people's views on this.
    As far as that goes:
    No viruses that can attack OS X have so far been detected 'in the wild', i.e. in anything other than laboratory conditions.
    It is possible, however, to pass on a Windows virus to another Windows user, for example through an email attachment. To prevent this all you need is the free anti-virus utility ClamXav, which you can download for Tiger and Leopard from (on no account install Norton Anti-Virus on a Mac running OS X):
    http://www.clamxav.com/
    The new version for Snow Leopard is available here:
    http://www.clamxav.com/index.php?page=v2beta
    (Note: ClamAV adds a new user group to your Mac. That makes it a little more difficult to remove than some apps. You’ll find an uninstaller link in ClamXav’s FAQ page online.)
    However, the appearance of Trojans and other malware that can possibly infect a Mac seems to be growing, but is a completely different issue to viruses.
    If you allow a Trojan to be installed, the user's DNS records can be modified, redirecting incoming internet traffic through the attacker's servers, where it can be hijacked and injected with malicious websites and pornographic advertisements. The trojan also installs a watchdog process that ensures the victim's (that's you!) DNS records stay modified on a minute-by-minute basis.
    You can read more about how, for example, the OSX/DNSChanger Trojan works here:
    http://www.f-secure.com/v-descs/trojanosxdnschanger.shtml
    SecureMac has introduced a free Trojan Detection Tool for Mac OS X. It's available here:
    http://macscan.securemac.com/
    The DNSChanger Removal Tool detects and removes spyware targeting Mac OS X and allows users to check to see if the trojan has been installed on their computer; if it has, the software helps to identify and remove the offending file. After a system reboot, the users' DNS records will be repaired.
    (Note that a 30 day trial version of MacScan can be downloaded free of charge from:
    http://macscan.securemac.com/buy/
    and this can perform a complete scan of your entire hard disk. After 30 days free trial the cost is $29.99. The full version permits you to scan selected files and folders only, as well as the entire hard disk. It will detect (and delete if you ask it to) all 'tracker cookies' that switch you to web sites you did not want to go to.)
    A white paper has recently been published on the subject of Trojans by SubRosaSoft, available here:
    http://www.macforensicslab.com/ProductsAndServices/index.php?mainpage=document_general_info&cPath=11&productsid=174
    Also, beware of MacSweeper:
    MacSweeper is malware that misleads users by exaggerating reports about spyware, adware or viruses on their computer. It is the first known "rogue" application for the Mac OS X operating system. The software was discovered by F-Secure, a Finland based computer security software company on January 17, 2008
    http://en.wikipedia.org/wiki/MacSweeper
    On June 23, 2008 this news reached Mac users:
    http://www.theregister.co.uk/2008/06/23/mac_trojan/
    More on Trojans on the Mac here:
    http://www.technewsworld.com/story/63574.html?welcome=1214487119
    This was published on July 25, 2008:
    Attack code that exploits flaws in the net's addressing system are starting to circulate online, say security experts.
    The code could be a boon to phishing gangs who redirect web users to fake bank sites and steal login details.
    In light of the news net firms are being urged to apply a fix for the loop-hole before attacks by hi-tech criminals become widespread.
    Net security groups say there is anecdotal evidence that small scale attacks are already happening.
    Further details here: http://news.bbc.co.uk/2/hi/technology/7525206.stm
    A further development was the Koobface malware that can be picked up from Facebook (already a notorious site for malware, like many other 'social networking' sites like Twitter etc), as reported here on December 9, 2008:
    http://news.bbc.co.uk/newsbeat/hi/technology/newsid_7773000/7773340.stm
    You can keep up to date, particularly about malware present in some downloadable pirated software, at the Securemac site:
    http://www.securemac.com/
    There may be other ways of guarding against Trojans, viruses and general malware affecting the Mac, and alternatives will probably appear in the future. In the meantime the advice is: be careful where you go on the web and what you download!
    If you think you may have acquired a Trojan, and you know its name, you can also locate it via the Terminal:
    http://theappleblog.com/2009/04/24/mac-botnet-how-to-ensure-you-are-not-part-of- the-problem/
    As to the recent 'Conficker furore' affecting Intel-powered computers, MacWorld recently had this to say:
    http://www.macworld.co.uk/news/index.cfm?email&NewsID=25613
    Although any content that you download has the possibility of containing malicious software, practising a bit of care will generally keep you free from the consequences of anything like the DNSChanger trojan.
    1. Avoid going to suspect and untrusted Web sites, especially p'orn'ography sites.
    2. Check out what you are downloading. Mac OS X asks you for you administrator password to install applications for a reason! Only download media and applications from well-known and trusted Web sites. If you think you may have downloaded suspicious files, read the installer packages and make sure they are legit. If you cannot determine if the program you downloaded is infected, do a quick Internet search and see if any other users reported issues after installing a particular program. A recent example is of malware distributed through innocent looking free screensavers: http://www.zdnet.com/blog/security/malware-watch-free-mac-os-x-screensavers-bund led-with-spyware/6560?tag=nl.e589
    3. Use an antivirus program like ClamXav. If you are in the habit of downloading a lot of media and other files, it may be well worth your while to run those files through an AV application.
    4. Use Mac OS X's built-in Firewalls and other security features.
    5. Stop using LimeWire. LimeWire (and other peer-to-peer sharing applications) are hotbeds of potential software issues waiting to happen to your Mac. Everything from changing permissions to downloading trojans and other malicious software can be acquired from using these applications. Similar risks apply to using Facebook, Twitter, YouTube and similar sites which are prone to malicious hacking: http://news.bbc.co.uk/1/hi/technology/8420233.stm
    6. Resist the temptation to download pirated software. After the release of iWork '09 earlier this year, a Trojan was discovered circulating in pirated copies of Apple's productivity suite of applications (as well as pirated copies of Adobe's Photoshop CS4). Security professionals now believe that the botnet (from iServices) has become active. Although the potential damage range is projected to be minimal, an estimated 20,000 copies of the Trojan have been downloaded. SecureMac offer a simple and free tool for the removal of the iBotNet Trojan available here:
    http://macscan.securemac.com/files/iServicesTrojanRemovalTool.dmg
    Last but not least, there is the potential for having your entire email contact list stolen for use for spamming:
    http://www.nytimes.com/2009/06/20/technology/internet/20shortcuts.html?_r=1
    NOTE: Snow Leopard, OS 10.6.x, offers additional security to that of previous versions of OS X, but not to the extent that you should ignore the foregoing:
    http://www.apple.com/macosx/security/

  • A Case of a woman scorned...?

    Hopefully people use this as a sign to be more cautious of their online activities. Many people are under the assumption that their secret or personal information is safe because it is behind a password.

    http://www.bbc.co.uk/news/technology-33592594
    Another dating website hacked......perhaps by an elite team of Hackers who have banded together to take revenge on partners who cheat on them
    I feel a screenplay coming on!
    This topic first appeared in the Spiceworks Community

  • Safari Hijacking??!!

    Hi, First point, let's get this out of the way: I know there are neither virus nor malware in the wild for macs.
    Now, to the matter: Today, my Safari, Firefox and Mail app were hijacked several times, and were always redirected to this page: www.register.4less.com
    Always that I typed an ordinary http address (let's say: www.elnorte.com) in the address bar, I ended up in a site that purportedly belonged to the address I typed (in the address bar said the address I typed), but on the body, there was an image with the logo of register.4less.com, and the text: "Welcome to the future hosting of "www.[whateverityped].com" It was the same on FF and Safari.
    It all started when the Mail app warned me that a computer with a certificate issued to "register.4less.com" was pretending to be pop.gmail.com. I obviously cancelled the process, thinking the gmail server was compromised. I then experienced problems connecting with ANY app in my computer, even the RSS reader widget crashed (and when it crashed it couldn't connect to apple for sending the report).
    I made several transactions trough an https server (my bank) without any problems, only somewhat slower than the average. After this, any other website which were not https would give me the message I've explained before. I know I shouldn't have logged in to my bank, but at that moment I didn't suspected anything.
    Now, some more important information. I live in Mexico City, but right now I'm on vacation on my parent's house in my place of Birth: Monterrey, México. I have a cousin living also in Monterrey, which has refered to me he had encountered this problem with safari before and only in http sites. He told me also that https sites didn't have any problem (ebay and amazon sign in pages, e.g.). He uses the same ISP my parents use. In México city I have another ISP, and have never before had this problem. Right now my brothers are out of home, so I can not ask them if they have had this problem before, altough none of them uses a Mac.
    Of course I always have my Mac's firewall on. I also don't have any sharing enabled (neither windows nor personal file sharing).
    When I empty the cache this problem goes away for a few minutes before returning (that's how I'm writing this).
    I have the pop-up blocker on, and while typing this I changed the cookies to "Only to sites you navigate to", and deleted all of the cookies already installed. This didn't prevented the problem from happening again.
    Now guys, help me out here with these Questions:
    1. What should I do??
    2. What happened?? Could it be that the ISP have been compromised?, or is it my computer? I don't think it is my computer, I've searched the entire HD searching for anything remotely likely to register.4less.com and I didn't found anything. But right now I'm a little scared.

    I just saw this on the DHS web site.
    Servers are frequently hacked; Even on Mitnick's ISP server (HostedHere).
    -==============================================
    August 21, CNET News — Kevin Mitnick Website hacked.
    Instead of the usual description of Kevin Mitnick, his consulting services and books, the famed hacker's Website on Sunday, August 20, displayed a vulgar message. Online vandals, apparently operating from Pakistan, broke into the computer hosting Mitnick's Website on Sunday and replaced his front page with one of their own. As a result, four Web addresses belonging to Mitnick, including KevinMitnick.com and MitnickSecurity.com, displayed an explicit message on Mitnick and hacking. The attackers gained complete control over the server that hosts his site as well as others at hosting provider Hostedhere, Mitnick said. Website defacements still occur often, but they have become less high profile in recent years as other, financially motivated threats take the spotlight.
    Screen shot: http://www.zone-h.org/content/view/14073/31
    Source: http://news.com.com/KevinMitnick+Web+sitehacked/2100-7349_3-6108032.html?tag=nefd.top

  • Has firefox abandoned system 10.3.9? there seems to be noplace to download the installer for that OS version.

    I think the last version I had for 10.3.9 was version 2.00.20.
    I have been getting symptoms that seem to suggest a possible website hack is occurring in Firefox and want to remove Firefox completely, then reinstall.

    Firefox 2.0.0.20 is the last version that works on OS X 10.3.9
    Firefox 3.* require OS X 10.4, and Firefox 4 will require OS X 10.5
    You can get Firefox 2.0.0.20 from ftp://ftp.mozilla.org/pub/mozilla.org/firefox/releases/2.0.0.20/mac/en-US/
    Note that uninstalling/re-installing Firefox will not normally solve any problems. If you give more details of the problem you are having somebody may be able to assist.

  • Macsweeper

    i checked my history today after someone used my computer and MacSweeper was found in the history pane. it supposedly scans macs for viruses and it looks quite suspicious.
    anyone know what this is?

    This sounds like a Mac version of the infamous MalwareAlarm rogue software which uses clever web pages to trick you into downloading it. Though the rogue software is real, the online scan is not.
    http://discussions.apple.com/thread.jspa?messageID=6212617
    http://forums.macrumors.com/showthread.php?t=406930
    The MalwareAlarm scam works by browser redirection, starting with a legitimate site that has been hacked - as happened to 123greetings.com over Christmas and New Year. In that instance the web page runs a flash animation that only looks like a virus scan in operation - and claims to find malicious .exe files and Windows Trojans. If you don't run Windows XP you are unlikely to be fooled for long, though the browser alert that demands a response from the user is a bit alarming.
    http://forums.macrumors.com//showthread.php?p=4714181#post4714181 (scroll down for picture)
    Reports that even Windows users see the MacSweeper scan finding Mac files on their system pretty much confirm that this web page only appears to be running a scan. Personally, I don't believe the reports of drive-by downloads with no user intervention. The main thing is to click CANCEL when the alert window pops up and not hit RETURN which actually OKs the download.
    However, even when you click CANCEL, the *fake scanner webpage* may run an animation that looks like it is scanning you or downloading software or something. Don't be fooled by this - just close the page or quit your browser and make a cup of tea.
    Chances are, this is merely a combination of website hacking and social engineering. Once again: though the rogue software may be real, the online scan is not. If you never downloaded the software but keep getting redirected to the scanner page when visiting certain web page it almost certainly means those pages have been compromised, *not your Mac*...
    This is no biggie for alert Mac users; just pay attention to what you are doing online and warn webmasters when their page has been hacked to redirect you to the fake scanner page.
    Unless some dunderhead OK's the download I would say Mac users still have very little to worry about - Chillax!
    Message was edited by: gaberdine mac

  • Website changed on local and server possibly hacked?

    Hi all,
    I have a very disturbing problem..our website is wwwDOTselfdefenseproshopDOTcom. I had help here with my Spry Menu that I was building on the left column of my site.
    Just as of yesterday sometime later in the day our website displayed properly as far as the spry menu on the left side.
    As of today (we just looked now) the spry menu is all wrongly displayed and changed and showing old links as well.
    I checked our local files on our machine where I store the files for the site. This is where I first discovered that the spry menu work that I had done was destroyed. I then checked online and found the same.
    Neither my wife nor I have touched the local files nor uploaded any changes to the server for at least a month now.
    Any ideas? was our site and our connection on DW hacked somehow?
    We are at a loss and more than that the work I had done is now gone....
    * NOTE TO GRAMPS if you happen to see this post...you and I had worked on my spry menu bar and I am wondering if you might still have a copy of the files from DW that I had sent you?...
    Thanks to anyone for any help...

    On your home page, I see 2 external links that are definitely messing you up.
    <script src="http://labs.adobe.com/technologies/spry/widgets/menubar/SpryMenuBar.js" type="text/javascript"></script>
    <link href="http://labs.adobe.com/technologies/spry/widgets/menubar/SpryMenuBarVertical.css" rel="stylesheet" type="text/css"/>
    If you put those links into your browser, you'll see why.. Spry is no longer being supported by Adobe.  You'll need to physically download those files from GitHub and save them to your site. 
    Nancy O.

  • My website was hacked, I made a new one and placed it on a new server. How about the red warning page on firefox for returning visitors?

    Hi I have a problem. My businesswebsite www.steunkousgemak.nl was hacked and the hacker placed mallware on it. My link on google had a warning and when you wanted to visit my site on firefox there was a red warning page. I made a new website so it's deffinately clean, moved it to a different server and have a new hostingpackage. Now I am wondering if firefox automaticly saved the warning for all visitors that where on my website when it was infected, and so that they still see the warning when they want to visit my site now? if yes, how can I solve this?thank you a lot for your answer!regards Steven

    Try clearing your browser cache.
    Tools > Clear Recent History... - hit Details and make sure only Cache is selected, then select Everything and hit the Clear Now button.

  • The Web of Trust has reported my website as an attack website. Someone hacked into that site and I have since cleaned it up. How can I get a good WOT rating again?

    How do I contact Firefox and other browsers to give my website clearance after it has been hacked and determined not safe?
    Currently, my website www.balancingchanges.com comes up with a WOT warning. I have not made any changes to my site for nearly 2 years, but when I looked in my folders, someone had added some files in April 2010. I have since deleted those files and changed my FTP password.

    See '''''Next steps''''' at the bottom of this page. <br />
    http://safebrowsing.clients.google.com/safebrowsing/diagnostic?client=Firefox&hl=en-US&site=http://www.balancingchanges.com/
    For WOT see this: <br />
    http://www.mywot.com/en/support/faq#site-reputation

  • I clicked on the "menu" link on a restaurant's website and **** came up. When I hit the back button, it just went to more ****. Could my phone be hacked via this link?

    I clicked on the "menu" tab of a restaurant website but **** came up. I clicked the back arrow but instead of taking me back to the restaurant site, it was more ****. Is my iPhone at risk of being hacked or infected by this incident?

    Your iPhone is not hacked, unless it has been jailbroken by you or someone else using your device.
    The website you visited may have been hacked, however, so that the link you clicked redirects you to that adult site instead.  Contact the restaurant and let them know what's happening.

  • If i visited a website that has been hacked by Turkis Hackers is there a security risk for my computer and online accounts?

    If i visited a websited that has been hacked by Turkis Hackers is there a security risk for my computer and online accounts?

    Try to rename the cert8.db file in the Firefox profile folder to cert8.db.old or delete the cert8.db file to remove intermediate certificates that Firefox has stored.
    If that helped to solve the problem then you can remove the renamed cert8.db.old file.
    Otherwise you can rename (or copy) the cert8.db.old file to cert8.db to restore the previous intermediate certificates.
    Firefox will automatically store intermediate certificates when you visit websites that send such a certificate.
    If that didn't help then remove or rename secmod.db (secmod.db.old) as well.

  • I keep getting popups telling me to update firefox to 6.1 - the firefox website tells me I have all updates. Is this a hacker trying to enter my computer?

    Question
    I keep getting popups telling me to update firefox to 6.1 - the firefox website tells me I have all updates. Is this a hacker trying to enter my computer?

    Do you mean this?
    *Firefox > Options/Preferences > Advanced > General : Accessibility : [ ] "Warn me when web sites try to redirect or reload the page"
    The setting in "Tools > Options > Advanced > General" is meant as an accessibility feature, as you can see by the label of that section, so that people with disabilities or people who use screen readers do not get confused and is not meant as a safety protection to stop redirecting.
    See also:
    *https://support.mozilla.org/kb/settings-network-updates-and-encryption#w_general-tab
    *http://kb.mozillazine.org/accessibility.blockautorefresh
    *http://kb.mozillazine.org/Accessibility_features_of_Firefox
    Can you attach a screenshot if this isn't your problem?
    *http://en.wikipedia.org/wiki/Screenshot
    *https://support.mozilla.org/kb/how-do-i-create-screenshot-my-problem
    Use a compressed image type like PNG or JPG to save the screenshot.
    Start Firefox in <u>[[Safe Mode|Safe Mode]]</u> to check if one of the extensions (Firefox/Tools > Add-ons > Extensions) or if hardware acceleration is causing the problem (switch to the DEFAULT theme: Firefox/Tools > Add-ons > Appearance).
    *Do NOT click the Reset button on the Safe Mode start window or otherwise make changes.
    *https://support.mozilla.org/kb/Safe+Mode
    *https://support.mozilla.org/kb/Troubleshooting+extensions+and+themes

Maybe you are looking for

  • Error while running the program of deferred Tax ( New)Program Name RFUMSV50

    Hi I am getting the error while running the program of deferred Tax ( New) Following is the detailed error : Enter rate / INR rate type M for 00.00.0000 in the system settings Message no. SG105 Diagnosis For the conversion of an amount into another c

  • Problems with Adobe Acrobat Professional 7.0

    I had a computer crash and had to re-install the Adobe 7.0 software which was an upgrade.   It took a call to tech support to get a code to install the upgrade again.  Whenever I open the software I get the following windows: FileOpen              Th

  • O got "activateFailure" when I tried to activate zoneset after I added new zonings. it says "fabricChange".

    I got "activateFailure" when I tried to activate zoneset after I added new zonings. it says "fabricChange".

  • Graph Annotations - Major Bug !!!!!

    I am using annotations on a NiGraph control(2D, single plot chart). I update the X and Y coordinates of specific annotations using m_Graph.Annotations.Item(item).Caption.SetCoordinates(... , ...) this is done around 3 times per second. Each call to S

  • Generate an event

    Hi all, I have a class that has a function that takes time to perform. This function reads data from a text file into an array. I need to notify the caller when the data is actually read so he may use another class member function to get them. Please