Comments on: This Website is Safe!! http://bigislandfun.com/this-website-is-safe.html Hawai`i Island List of Fun Things to Do and See Fri, 24 Jul 2009 04:04:39 -0500 http://wordpress.org/?v=abc hourly 1 By: Brent Norris http://bigislandfun.com/this-website-is-safe.html/comment-page-1#comment-11 Brent Norris Wed, 30 Jan 2008 22:40:24 +0000 http://bigislandfun.com/?p=34#comment-11 <p>If anyone has been affected by this, please leave a comment. To check your site for a vulnerability, please read below...</p> <p>--<br /> Quickly checking through the basic source of your home page, I found this code (Note: I didn't use all of the code. So ust search for iframe and traffic statistics):</p> <code><p><!-- Traffic Statistics --><br /> iframe src= <!-- End Traffic Statistics --></p></code> <p>(I have intentionally added spaces to remove the hyperlink).</p> <p>I am quite certain that you didn't put in that. The IP address if of an ISP somewhere in China. (Check out any of the IP lookup website and you will<br /> know). Also I found this entry that has a similar problem.</p> <p>http://wordpress.org/support/topic/149745.</p> <p>It seems that wordpress is quite known to have an iframe injection vulnerability.</p> <p>Please remove the code above and I am certain you case for removing from the malware sites list will move quicker. Once done, I suggest you take this up<br /> with your hosting provider to find out why this was compromised and efforts to prevent future occurences.</p> <p>Best regards,<br /> Mukul Dharwadkar</p> If anyone has been affected by this, please leave a comment. To check your site for a vulnerability, please read below…


Quickly checking through the basic source of your home page, I found this code (Note: I didn’t use all of the code. So ust search for iframe and traffic statistics):


iframe src=

(I have intentionally added spaces to remove the hyperlink).

I am quite certain that you didn’t put in that. The IP address if of an ISP somewhere in China. (Check out any of the IP lookup website and you will
know). Also I found this entry that has a similar problem.

http://wordpress.org/support/topic/149745.

It seems that wordpress is quite known to have an iframe injection vulnerability.

Please remove the code above and I am certain you case for removing from the malware sites list will move quicker. Once done, I suggest you take this up
with your hosting provider to find out why this was compromised and efforts to prevent future occurences.

Best regards,
Mukul Dharwadkar

]]> By: Brent Norris http://bigislandfun.com/this-website-is-safe.html/comment-page-1#comment-10 Brent Norris Wed, 30 Jan 2008 22:38:49 +0000 http://bigislandfun.com/?p=34#comment-10 The "The site may harm your computer" warning has been removed. It took me asking for a review three times, ranting in a forum at stopbadware.org and eventually getting an angry Google / stopbadware supporter. Apparently, the practice of demonizing website owners isn't limited to forums. Follow all the online fun in the <a href="http://groups.google.com/group/stopbadware/browse_thread/thread/3976f094d2834480" rel="nofollow">stopbadware.org google discussion group.</a> The “The site may harm your computer” warning has been removed. It took me asking for a review three times, ranting in a forum at stopbadware.org and eventually getting an angry Google / stopbadware supporter.

Apparently, the practice of demonizing website owners isn’t limited to forums. Follow all the online fun in the stopbadware.org google discussion group.

]]>