Googlebot showing different content of index page

arfharwinder · Post by **arfharwinder** » Sat Oct 27, 2012 9:08 pm

Problem Description :: Forum Post Assistant (v1.2.3) : 27th October 2012 wrote:Google showing different http header

Log/Error Message :: Forum Post Assistant (v1.2.3) : 27th October 2012 wrote:Google search error

Log/Error Message :: Forum Post Assistant (v1.2.3) : 27th October 2012 wrote:Googlebot showing different http header

Actions Taken To Resolve by Forum Post Assistant (v1.2.3) 27th October 2012 wrote:Removed all other backdoors, just this fix need.

Forum Post Assistant (v1.2.3) : 27th October 2012 wrote:
Basic Environment :: wrote:Joomla! Instance :: Joomla! 1.0.14 RC1-Stable (Daybreak) 13 January 2008
Joomla! Configured :: Yes | Read-Only (644) | Owner: md (uid: 1/gid: 1) | Group: md (gid: 1) | Valid For: 1.0
Configuration Options :: Offline: 0 | SEF: 1 | SEF Suffix: N/A | SEF ReWrite: N/A | .htaccess/web.config: Yes | GZip: 0 | Cache: 1 | FTP Layer: N/A | SSL: N/A | Error Reporting: -1 | Site Debug: 0 | Database Credentials Present: Yes

Host Configuration :: OS: Linux | OS Version: 2.6.32-279.9.1.el6.x86_64 | Technology: x86_64 | Web Server: Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.0-fips mod_bwlimited/1.4 PHP/5.3.17 mod_perl/2.0.6 Perl/v5.10.1 | Encoding: gzip,deflate,sdch | Doc Root: /media/disk1/home/md/public_html | System TMP Writable: Yes

PHP Configuration :: Version: 5.3.17 | PHP API: apache2handler | Session Path Writable: Unknown | Display Errors: 1 | Error Reporting: 22519 | Log Errors To: error_log | Last Known Error: | Register Globals: 0 | Magic Quotes: 1 | Safe Mode: 0 | Open Base: | Uploads: 1 | Max. Upload Size: 4M | Max. POST Size: 4M | Max. Input Time: 60 | Max. Execution Time: 1200 | Memory Limit: 64M

MySQL Configuration :: Version: 5.1.65-cll (Client:5.1.65) | Host: --protected-- (--protected--) | Collation: latin1_swedish_ci (Character Set: latin1) | Database Size: 3940.78 MiB | #of Tables: 186
Detailed Environment :: wrote:PHP Extensions :: Core (5.3.17) | date (5.3.17) | ereg () | libxml () | openssl () | pcre () | zlib (1.1) | bcmath () | calendar () | ctype () | curl () | dom (20031129) | filter (0.11.0) | ftp () | gd () | gettext () | hash (1.0) | iconv () | SPL (0.2) | json (1.2.1) | mbstring () | mcrypt () | mysql (1.0) | pgsql () | posix () | Reflection ($Id: 593a0506b01337cfaf9f63ebc12cd60523fc2c41 $) | session () | standard (5.3.17) | SimpleXML (0.1) | sockets () | SQLite (2.0-dev) | imap () | tokenizer (0.1) | xml () | xmlreader (0.1) | xmlrpc (0.51) | xmlwriter (0.1) | zip (1.11.0) | apache2handler () | Zend Engine (2.3.0) |
Potential Missing Extensions :: mysqli | suhosin |

Switch User Environment (Experimental) :: PHP CGI: No | Server SU: No | PHP SU: No | Custom SU (LiteSpeed/Cloud/Grid): Yes
Potential Ownership Issues: No

Apache Modules :: core | mod_authn_file | mod_authn_default | mod_authz_host | mod_authz_groupfile | mod_authz_user | mod_authz_default | mod_auth_basic | mod_cache | mod_mem_cache | mod_include | mod_filter | mod_log_config | mod_logio | mod_env | mod_mime_magic | mod_expires | mod_headers | mod_setenvif | mod_version | mod_proxy | mod_proxy_connect | mod_proxy_ftp | mod_proxy_http | mod_proxy_scgi | mod_proxy_ajp | mod_proxy_balancer | mod_ssl | prefork | http_core | mod_mime | mod_status | mod_autoindex | mod_asis | mod_info | mod_suexec | mod_cgi | mod_negotiation | mod_dir | mod_actions | mod_userdir | mod_alias | mod_rewrite | mod_so | mod_perl | mod_fastinclude | mod_bwlimited | mod_php5 | Apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/1.0.0-fips mod_bwlimited/1.4 PHP/5.3.17 mod_perl/2.0.6 Perl/v5.10.1 |
Potential Missing Modules :: mod_deflate | mod_security | mod_evasive | mod_dosevasive | mod_qos | mod_userdir |

Folder Permissions :: wrote:Core Folders :: images/ (755) | components/ (755) | modules/ (755) | mambots/ (755) | language/ (755) | templates/ (755) | cache/ (755) | administrator/components/ (755) | administrator/modules/ (755) | administrator/templates/ (755) |

Elevated Permissions (First 10) :: fb/php/ (777) | fb/php/.svn/ (777) | fb/php/.svn/prop-base/ (777) | fb/php/.svn/props/ (777) | fb/php/.svn/text-base/ (777) | fb/php/.svn/tmp/ (777) | fb/php/.svn/tmp/prop-base/ (777) | fb/php/.svn/tmp/props/ (777) | fb/php/.svn/tmp/text-base/ (777) | fb/php/jsonwrapper/ (777) |
Extensions Discovered :: wrote:Components :: SITE :: News (1.0) |
Components :: ADMIN :: News (1.0) | Search (1.0.0) | News (1.0) | News (1.0) | News (1.0) | Users (1.0.0) | News (1.0) | News (1.0) | News (1.0) | Typed Content Page (1.0.0) | Login (1.0.0) | News (1.0) | News (1.0) | Banners (1.0.0) | Link - Contact Item (1.0.0) | Link - Url (1.0.0) | Table - Content Category (1.0.0) | Blog - Content Section (1.0.0) | Table - Contact Category (1.0.0) | Component (1.0.0) | Separator / Placeholder (1.0.0) | List - Content Section (1.0.0) | Table - Newsfeed Category (1.0.0) | Link - Newsfeed (1.0.0) | Table - Weblink Category (1.0.0) | Link - Content Item (1.0.0) | Blog - Content Category (1.0.0) | Link - Static Content (1.0.0) | Link - Component Item (1.0.0) | Wrapper (1.0.0) | Submit - Content (1.0.0) | Blog - Content Category Archiv (1.0.0) | Blog - Content Section Archive (1.0.0) | Content Page (1.0.0) | Weblinks (1.0.0) | Weblinks (1.0.0) | News (1.0) | JoomlaPack (1.2.3) | wmtpic1 (V1.0) | Mass Mail (4.5.1) | News (1.0) | News (1.0) | Contact Items (1.0.0) | News (1.0) | News (1.0) | Trash (1.0.0) | pressrelease (1.0.0) | News (1.0) | Newsfeeds (1.0.0) | News (1.0) | Editors Management (1.0) | News (1.0) | News (1.0) | News (1.0) | News (1.0) | News (1.0) | News (1.0) | News (1.0) | News (1.0) | News (1.0) | Poll (1.0.0) | Media Manager (1.0.0) | News (1.0) | Frontpage (1.0.0) | News (1.0) | News (1.0) | News (1.0) | Menu Manager (1.0.0) | News (1.0) | News (1.0) | News (1.0) | Syndicate (1.0.0) |

Modules :: SITE :: machintoshDirectory (1.0.0) | Who's Online (1.0.0) | Most Read Content (1.0.0) | Wrapper Module (1.0.0) | Login Form (1.0.0) | Random Image (1.0.0) | Template Chooser (1.0.0) | Latest News (1.0.0) | machintoshDirectory (1.0.0) | Press Release (1.0.0) | Press Release (1.0.0) | Custom Module (1.0.0) | Newsflash (1.0.0) | Main Menu (1.0.0) | Sections (1.0.0) | Syndicate (1.0.0) | Banner (1.0.0) | Archived Content (1.0.0) | Search Module (1.0.0) | Statistics (1.0.0) | Poll (1.0.0) | Related Items (1.0.0) |
Modules :: ADMIN :: Component List (1.0.0) | Popular Items (1.0.0) | Latest News (1.0.0) | Quick Icons (1.0.0) | Custom Module (1.0.0) | Popular Items (1.0.0) | Logged in Users (1.0.0) |

Plugins :: SITE :: mospage.btn (1.0.0) | mosimage.btn (1.0.0) | mosloadposition (1.0.0) | legacybots (1.0.0) | mosvote (1.0.0) | mospaging (1.0.0) | mosemailcloak (1.0.0) | mosimage (1.0.0) | moscode (1.0.0) | GeSHi (1.0.4) | mossef (1.0.0) | weblinks searchbot (1.0.0) | contacts searchbot (1.0.0) | sections searchbot (1.0.0) | contacts searchbot (1.0.0) | content searchbot (1.0.0) | categories searchbot (1.0.0) | TinyMCE (2.0. |
Templates Discovered :: wrote:Templates :: SITE :: madeyourweb (1.3) | MacDirectory (2.2) | rhuk_solarflare_ii (2.2) |
Templates :: ADMIN :: Joomla Admin (1.0) | Joomla Admin (1.0) |

Post by **mandville** » Sun Oct 28, 2012 7:36 am

summary -
old out dated version of joomla - last version of 1.0.x chain 1.0.15
open folder permissions -777 - b/php/ (777) | fb/php/.svn/ (777) | fb/php/.svn/prop-base/ (777) |
unsuitable apache module -PHP API: apache2handler - cgi is better

removing the backdoor does not resolve how you were hacked.
refer to security checklist 7 safe route to recovey

The Joomla! Forum™

Googlebot showing different content of index page

Googlebot showing different content of index page

Re: Googlebot showing different content of index page