I've recently finished a website for a client which is using some ajax-calls. At some point a local virus scanner Kaspersky is saying the url www.domain.com/ajax/ajax.php?Request=request-to-perform is a phishing URL. Obviously it's not.
Any of you guys ran in to this before? Can I set some headers to tell Kaspersky to relax? There doesn't seem to be much helpful information around.
Thanks in advance for your reply.
Please, try to report about the false-positive alarm via http://newvirus.kaspersky.com otherwise you can report about the problem via https://my.kaspersky.com.
Related
I am very confused, so please bear with me on this one.
I have a CakePHP web application (v3.8) and for some reason, it does not have a /http/ folder...I didn't develop the base part of the app, and for reasons I can't go into, I can't contact the developer.
This usually does not matter since the site works great! My issue is that we run IP logging so users can see IPs that have logged into their accounts. We started using Cloudflare, and now we are logging Cloudflare's IPs instead of actual user IPs. My research brought me to this page, but the file referenced that I need to change does not exist. The file that needs to be changed is /http/serverrequest.php, and the file does not exist.
Any help would be appreciated, I am a bit over my head with this one, but it seems like if I can find (or create) that file, and set the proxy setting to true, the IP logs will work. My main concern is if I am missing something and that isn't a good solution for whatever reason, which is why I am asking for help! Thanks again in advance!
Thanks to ndm's comment, I found the file in /vendor/cakephp/cakephp/src/Http and was able to make the changes there.
I am using the native app's latest version and it was working good but suddenly this problem appeared still loading the request without any reply.
I tried to reinstall it but nothing changed a tried the environment variables for the postman and still the problem. What can I do? Please help. Thanks.
For anyone reading this: problem was that I was not connected to my database. I needed to whitelist my IP address in MongoDB Atlas.
Just so I'm not spamming SO, you can check out my full answer here: https://stackoverflow.com/a/58263695/11993942
I received email from Google search console saying my website contains social engineering contents. Sample URL is,
http://www.sanenthusiast.com/~stechies/Blessin/ba/index.php
Safety tip For your own safety do not type anything in the page.
Somebody hosted a mockup site of Google drive login page on these links. How to get rid of this? I have thoroughly checked my webserver an I dont see any of these folders or files. Looks likes ~stechies/ could be some other webserver and I guess using Apache they have pointed ~stechies/Blessin/ba/index.php and ~stechies/Blessin/ba/ to my webserver sanenthusiast.com/?
Is this correct? It will be of great help if someone could help to stop this redirection.
I checked who owns stechies and found https://www.stechies.com/ Are they behind this phishing scam? Or possibly someone else has hacked them?
Edit:
Another user in stackoverflow posted similar issue on his site - Someone put malicious code with "~" on my website
Tried all possible ways to mitigate the issue. But it was very hard to get rid of the URL redirect. My site runs on WordPress. I can confirm that WordPress was intact and not compromised. The possible issue is with the hosting account or the hosting provider itself.
Checked hidden file in the hosting account root directory, no where ~stechies/Blessin/ba/ to be seen. Finally I ended up migrating to a new hosting provider. Copied only mail and WordPress backup. Once done, the URL redirect is not working now. Submitted my site again for review and Google cleared the error and no more warning comes up.
This still not a effective solution but Google reporting Social engineering content on the site caused panic and I had very less time to respond.
i am working in android. i have uploaded my database and APIs on my server. when i call a get API. then it works fine. But when i call POST API like as Registration then it creates problem and does not respond.
this is the problem in my LogCat
Some possible problems are:
Missing or unknown request method.
Missing URL.
Missing HTTP Identifier (HTTP/1.0).
Request is too large.
Content-Length missing for POST or PUT requests.
Illegal character in hostname; underscores are not allowed.
HTTP/1.1 Expect: feature is being asked from an HTTP/1.0 software.
when use API and database which is stored on my localhost then everything works fine.. please help me to find out the reason of error... is this related to proxy or something else. yes i activated proxy on my server.
if you want to ask anything related to my question then i am 24 hours available here..
this is the error page. please visit this link...
http://www.2shared.com/document/zTO7-x/error.html
please see my problem.
Thank you in advance...
I have done this by my self experience... this problem is created just because of my server proxy setting.
I allow that application from my server proxy then it working fine...
Thank you all who tried to help me...
I am running a site on php with a mysql backend. Things have been fine but suddenly one users account started getting a 500 error. Each user has his own profile when they log into the any box so his internet explorer settings are the same no matter what box he logs on to. Does anyone know if this could be an internet explorer setting causing this? I have tried to debug everything on the client side and no matter what I do he is getting rejected. No other account is having this issue. I am not really an SA but the only thing I think it can be at this point is some setting within his profile which is causing this. This is also happening on firefox but instead of a 500 error I am getting a blank white screen. (I assume friendly error messages are turned on)
The issue had to do with a permission not properly set in one of the log folders. The system was trying to write to the log folder and for some reason that particular user was not set to have write access. The problem was impossible to track down but thanks for the help.
If this is programming related, it might help turning error displaying on in php, using error reporting:
<? error_reporting(E_ALL); ?>
Could be the browser acting up, sending weird headers or mangling requests because of addons or malware.