[Owasp-Malaysia] Malware Detected!

Rasta Boy rastaboyz at gmail.com
Tue Feb 8 03:13:13 EST 2011


Hi Mohd Symsuri,

Good. In this page they have mention about
"asfiuweof.co.cc<http://safebrowsing.clients.google.com/safebrowsing/diagnostic?client=Firefox&hl=en-US&site=asfiuweof.co.cc/>
".

Probably you may want to check further in your database if you have this
value stored in any of your table.

Someone might have injected a code which includes
"asfiuweof.co.cc<http://safebrowsing.clients.google.com/safebrowsing/diagnostic?client=Firefox&hl=en-US&site=asfiuweof.co.cc/>"
in your webpage. So when google access to your page it might capture it as
harmful site.

More to like an XSS attack.

Regards,
Kishur

On Tue, Feb 8, 2011 at 4:00 PM, Mohd Syamsuri <msyamsuri at gmail.com> wrote:

> I have check it.
>
> On Tue, Feb 8, 2011 at 3:49 PM, Rasta Boy <rastaboyz at gmail.com> wrote:
>
>> Hi Mohd Symsuri,
>>
>> Why dont you check on the reason why its being blocked, it might help.
>>
>>
>> http://safebrowsing.clients.google.com/safebrowsing/diagnostic?client=Firefox&hl=en-US&site=http://www.pkink.gov.my/
>>
>>
>> http://safebrowsing.clients.google.com/safebrowsing/diagnostic?client=Firefox&hl=en-US&site=AS:4788
>>
>> Regards,
>> Kishur
>>
>>
>>
>> On Tue, Feb 8, 2011 at 3:19 PM, Mohd Syamsuri <msyamsuri at gmail.com>wrote:
>>
>>> Assalamualikum and Good day for my fellow friends.
>>>
>>> I need some advise.
>>>
>>> Web site Perbadanan kemajuan Iktisad Negeri Kelantan (
>>> http://www.pkink.gov.my) have been blocked by Google for almost 4 days.
>>> It said that we host malware on our server Malware Detected! ( Google
>>> said that!!)
>>>
>>> What i did is..
>>> 1. Scan all the data and upload a new data
>>> 2. Check the index.html or index.php
>>> 3. Scan using web scanner using
>>> http://www.avgthreatlabs.com/
>>> http://www.virustotal.com
>>>
>>> but still get block..
>>>
>>> Googel said Suspected injected code
>>> <FRAME SRC="http://www2.pkink.gov.my/indexsedc.php" NAME="confcontent"
>>> scrolling=yes >
>>>
>>> I have using this code for almost 2 years
>>>
>>> What should i do now?
>>>
>>>
>>> --
>>> best regard
>>> syamsuri
>>>
>>>
>>>
>>> _______________________________________________
>>> Owasp-Malaysia mailing list
>>> Owasp-Malaysia at lists.owasp.org
>>> https://lists.owasp.org/mailman/listinfo/owasp-malaysia
>>>
>>> OWASP Malaysia Wiki
>>> http://www.owasp.org/index.php/Malaysia
>>>
>>> OWASP Malaysia Wiki Facebook
>>> http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420
>>>
>>
>>
>> _______________________________________________
>> Owasp-Malaysia mailing list
>> Owasp-Malaysia at lists.owasp.org
>> https://lists.owasp.org/mailman/listinfo/owasp-malaysia
>>
>> OWASP Malaysia Wiki
>> http://www.owasp.org/index.php/Malaysia
>>
>> OWASP Malaysia Wiki Facebook
>> http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420
>>
>
>
>
> --
> best regard
> syamsuri
>
>
>
> _______________________________________________
> Owasp-Malaysia mailing list
> Owasp-Malaysia at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-malaysia
>
> OWASP Malaysia Wiki
> http://www.owasp.org/index.php/Malaysia
>
> OWASP Malaysia Wiki Facebook
> http://www.facebook.com/pages/OWASP-Malaysia-Local-Chapter/295989208420
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-malaysia/attachments/20110208/fff22408/attachment.html 


More information about the Owasp-Malaysia mailing list