: How to remove adware pop up? I get an ad pop up that should not be on the site. It has only appeared once. The HTML code for the pop up window that appeared: http://pastie.org/5674909 Here

@Sherry384

All this started a week ago. WikiTime Ads infected my system and mainly the browser. I observed that it made several unwanted modifications in my computer especially in my web browser. While Internet surfing it always redirected me to the commercial sites. It also changed some of the browser settings like replaced the current homepage and default search engine of the browser. First time I was facing this type of problem. My antivirus tool was not that much strong to delete this virus infection. Then, I used Automatic Removal Tool through that helped me to remove all the virus infections from the system effectively.

Vote Up Vote Down

@Mendez628

I doubt that @Joe 's answer will work, as the injection script is likely encrypted or at least obfuscated.

It appears that SiteCake is written in PHP, so do a search for base64_decode, str_rot13 and gzdeflate as these are often used to disguise exploit code.

It is by no means certain that components using these commands are definitely malware, but the strong implication is that they probably are. If there is any of this unpleasantness present, try to disable any plugins that include them, but be aware that they might have injected bad stuff into otherwise innocent files.

Vote Up Vote Down

@Holmes151

Search through the code of the component of the person who made it and look specifically for the URL of that pastie thing.

It could either be that it really is a vulnerability or that the admin has purposely added it.

Vote Up Vote Down