A google search for our club, the Potomac Appalachian Trail Club comes up with our correct url and site info, but also includes this text, "low price [* spam *] - Add to Favorites. Online store selling [* spam *]." I'm wondering how to fix that problem. I've looked at the metadata that's available through the Joomla panel, and that's ok. I'm thinking that some file on our server must've been hacked, but I can't find the right one to repair.
Any help is great appreciated.
metadata hacked
Moderator: General Support Moderators
Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.
-
panosgr
- Joomla! Enthusiast
- Posts: 147
- Joined: Fri Sep 28, 2007 8:40 pm
Re: metadata hacked
It is not the metadata. This text is in your website and google have decided to put as description!
This means that your website is compromised, probably with the famoys Gumblar virus!
Make a serach and you will find tons of information.
Proceed to all the necessary actions to clean you website (and your pc too)
This means that your website is compromised, probably with the famoys Gumblar virus!
Make a serach and you will find tons of information.
Proceed to all the necessary actions to clean you website (and your pc too)
-
mandville
- Joomla! Master
- Posts: 15152
- Joined: Mon Mar 20, 2006 1:56 am
- Location: The Girly Side of Joomla in Sussex
Re: metadata hacked
[ ] Run the forum post assistant and security tool Instructions available here
[ ] Ensure you have the latest version of Joomla. Delete all files in your Joomla installation. Replace the deleted files with fresh copies of a current full version of Joomla, and fresh copies of extensions and templates used. Only by replacing all files in the installation (including extensions and templates) can you be sure to remove the backdoors inserted and hidden in files and directories
[ ] Review Vulnerable Extensions List
[ ] Review and action Security Checklist checklist 7 to make sure you've gone through all of the steps.
[ ] Change all passwords and if possible user names for the website host control panel and your Joomla site.
[ ] Use proper permissions on files and directories. They should never be 777, but ideal is 644 and 755
[ ] For the malicious code topic
[ ] Ensure you have the latest version of Joomla. Delete all files in your Joomla installation. Replace the deleted files with fresh copies of a current full version of Joomla, and fresh copies of extensions and templates used. Only by replacing all files in the installation (including extensions and templates) can you be sure to remove the backdoors inserted and hidden in files and directories
[ ] Review Vulnerable Extensions List
[ ] Review and action Security Checklist checklist 7 to make sure you've gone through all of the steps.
[ ] Change all passwords and if possible user names for the website host control panel and your Joomla site.
[ ] Use proper permissions on files and directories. They should never be 777, but ideal is 644 and 755
[ ] For the malicious code topic
HU2HY- Poor questions = Poor answer
Un requested Help PM's will be reported, added to the foe list and possibly just deleted
{VEL Team Leader}{TM Auditor }{ Showcase & Security forums Moderator}
Un requested Help PM's will be reported, added to the foe list and possibly just deleted
{VEL Team Leader}{TM Auditor }{ Showcase & Security forums Moderator}
-
sucuri
- Joomla! Apprentice
- Posts: 13
- Joined: Tue Mar 30, 2010 5:20 pm
- Contact:
Re: metadata hacked
Those are not the gumblar virus, but part of a SEO spam network that is affecting lots of
sites.
You are also using a very old version of Joomla , which explains how they got in...
Some info here:
http://blog.sucuri.net/2010/05/leanmite ... -spam.html
http://blog.sucuri.net/2010/05/it-is-no ... sites.html
sites.
You are also using a very old version of Joomla , which explains how they got in...
Some info here:
http://blog.sucuri.net/2010/05/leanmite ... -spam.html
http://blog.sucuri.net/2010/05/it-is-no ... sites.html
-
kerrysnow
- Joomla! Apprentice
- Posts: 13
- Joined: Sat Dec 02, 2006 2:02 am
Re: metadata hacked
Thanks to everyone for the quick and informative replies. Our organization is in the process of moving to a commercial database/web alternative (iMIS), so our Joomla site (managed sporadically by volunteers) is not long for the world. I was hoping that there was some file on the server that I could easily repair, as a temporary fix.
-
mandville
- Joomla! Master
- Posts: 15152
- Joined: Mon Mar 20, 2006 1:56 am
- Location: The Girly Side of Joomla in Sussex
Re: metadata hacked
as the OP hasnt used the forum post tool for us to diagnose more, and seems to be using J1.0.x - i am moving this to the correct forum
HU2HY- Poor questions = Poor answer
Un requested Help PM's will be reported, added to the foe list and possibly just deleted
{VEL Team Leader}{TM Auditor }{ Showcase & Security forums Moderator}
Un requested Help PM's will be reported, added to the foe list and possibly just deleted
{VEL Team Leader}{TM Auditor }{ Showcase & Security forums Moderator}
-
mandville
- Joomla! Master
- Posts: 15152
- Joined: Mon Mar 20, 2006 1:56 am
- Location: The Girly Side of Joomla in Sussex
Re: metadata hacked
topic locked due to no response from original poster -see http://forum.joomla.org/viewtopic.php?f=432&t=509319
HU2HY- Poor questions = Poor answer
Un requested Help PM's will be reported, added to the foe list and possibly just deleted
{VEL Team Leader}{TM Auditor }{ Showcase & Security forums Moderator}
Un requested Help PM's will be reported, added to the foe list and possibly just deleted
{VEL Team Leader}{TM Auditor }{ Showcase & Security forums Moderator}
