Google is Search showing "Warning - visiting this web site may harm your computer"

[davidanand]

Hi,

One of my customers website is showing "Warning - visiting this web site may harm your computer" while searching on Google. I don't know why it is happening please assist me.

[rpmws]

Strange Virus On cPanel server ??

[davidanand]

Hi.

I am not able to figure out why? I checked all the files in the domain any suggestions please.

[sarhosting]

You are probably another victim of the Javascript inject problem

Look for something like this in your files

<iframe>qjirfohqwerf</iframe>

or

<script=Javascript>
domain.com/hack.js
<script>

Something like

Check every single file and I mean all of them!

[davidanand]

Hi SAR,

Thank you for your help...

I was confused for three to four days now it is cleared..Please explain how the injection happens
because I have not given 777 permission to the index.html.

[AndyReed]

Quote:

Originally Posted by davidanand

I was confused for three to four days now it is cleared..Please explain how the injection happens
because I have not given 777 permission to the index.html.

This article explains the problem you could be having: http://servertune.com/kbase/?View=entry&EntryID=258

[davidanand]

Hi Andy,

The link which you gave was very helpful to me ...thanks a lot !!!. but still the entry point where the js root kit gets in to the server is unknown ...

[sarhosting]

Hi There,

Entry point can be from a few points.

Unsecure script.
Bad Code
Local Machine infected, thus FTP access is gained.
Plus the root kit.