Unwanted ad covering header logo (11 posts)

  1. sbgoldberg
    Posted 2 years ago #

    I just went and looked at my website and found a unwanted ad from hugedomains.com that is covering my header. How do I get rid of this.

    thank you

  2. ClaytonJames
    Posted 2 years ago #

    It's located in <div id="topbanner"> in the header.

    Here's the source: rockguitargod.com/wp-content/themes/gazette/images/spacer.png ...the domain is also for sale, and the image source is actually static.hugedomains.com/images/logo_huge_domains.gif

    I can't help but notice that your RSS feed image resembles a guitar pick... rockguitargod.com ring any bells? Does your theme have an option for specifying a banner image?

  3. sbgoldberg
    Posted 2 years ago #

    I am not familiar with this so how do I get rid of this

  4. ClaytonJames
    Posted 2 years ago #

    I guess I really don't know. This is what I can see in the source:

    <div id="header"><!-- START LOGO LEVEL WITH RSS FEED -->
    <div id="topbanner">
    <a href="http://cutsncurves.org/"><img src="http://rockguitargod.com/wp-content/themes/gazette/images/spacer.png" width="960" height="85" border=0"></a>
    </div><!--/header -->

    Did you check to see if there is an option in your theme pages for a top banner image? If so, what does it say for the source address of the image? Second, you could check the header.php file and see if you can find a "topbanner" div and take a look at what might be there.

    I suppose it's also possible that you might have a hack of some sort. Your version of the Gazette theme is quite a bit behind the current version.

    Examining your files for the address that points to the image source would probably be a good first step.

  5. Simply Seath
    Posted 2 years ago #

    Go to your css file:


    and find: #topbanner

    and add: display: none;

    that should do the trick ;)

  6. ClaytonJames
    Posted 2 years ago #

    @Simply Seath

    While that will most certainly hide the banner, it may not be the real issue at the moment. The banner currently being displayed is from a domain that sbgoldberg indicates he doesn't own, doesn't recognize, and didn't add to the site himself. If mysterious content suddenly appears on a site that you own, and you didn't put it there, it may be an indication of larger issues at work. Simply hiding it may not turn out to be the best long term solution to the problem. :-)

  7. Simply Seath
    Posted 2 years ago #

    Sounds like the site was hacked :( and you really should look at:

    I had my site hacked once before. So I just password protected my site and deleted all the files and re-uploded my backup. I lost couple days of my work but that is better then loosing the whole site. After that I did some serious protection for my site.

  8. ClaytonJames
    Posted 2 years ago #

    I hesitated to even mention it really, for concern of causing false alarm, but that version of the gazette theme is from Sept 2009, and is ~40 update releases behind. I think the theme, by default, probably includes the use of "timthumb" for handling some image manipulation. I can only imagine that a theme that old, that has probably never really been updated, may very be well using a version of timthumb that is exploitable. So that's something else to consider. I'm not saying it is - that's just a drop in the bucket of possibilities - I'm just making note that there are a lot of compelling reasons for staying current.

    [edit] WooTheme timthumb patch announcement

  9. Simply Seath
    Posted 2 years ago #

    Sounds like someone needs new theme :|
    If I may suggest, try http://whiteboardframework.com/ this is one of the best theme I used for customization. (hopefully I can put the link in :p )

    But I would never the less check that the site for being hacked. Strange banners don't appear from nowhere for no apparent reason! Better be save then sorry ;)

  10. madhavaji
    Posted 2 years ago #

    For me it was like this..

    When porting data from my local copy to live I mis-named the domain ".com" when it should have been ".co.uk".

    Returning all the domain name mentions in the database to ".co.uk" fixed the issue.

    It turns out that the ".com" of the web address I was referring to was registered with "hugedomains.com" and, foolishly, they are replacing GET requests for missing images with their own logo banner. For me this is no issue since the ".co.uk" is registered with daily.co.uk who would never do such an annoying thing.

    If I had a domain registered with "hugedomains.com" and they replaced missing images on my site with their own logo I would sack them in a heart beat.

    Hope this help.


  11. Krishna
    Volunteer Moderator
    Posted 2 years ago #

    Interestingly, there is an Iframe of instantfwd.com too inserted in the site. Also see this Google search link in which you can see that some listings show that spam links redirect to that site.

    Naturally, as ClaytonJames alluded, if these ads/ links are NOT inserted by sbgoldberg, how did they got into the site? The obvious answer is that the site is compromised. Unfortunately, scanning tools may not show these because they have been inserted as any other link (as adware normally do, and hence not caught by scanning tools).

    I would strongly recommend to work through the resources for hacked sites if anyone of you visiting this page have similar problems. This being an 8-month-old thread, sbgoldberg might have possibly cleaned up the site.

Topic Closed

This topic has been closed to new replies.

About this Topic