20 {{ upvoteCount | shortNum }}
20 {{ upvoteCount | shortNum }}

How do you remove the site's malware?

by Go4DBest
16 replies
Greetings!

I am sure you have experienced this kind of problem and my question is how did you address it? How did you fix that malware problem?

Your inputs will be highly appreciated.

Thanks,
G.B.
#malware #remove #site
  • Profile picture of the author John Romaine
    It's kind of hard to help you with such limited information.

    What's the issue?
    Signature

    BS free SEO services, training and advice - SEO Point

    {{ DiscussionBoard.errors[7881783].message }}
    • Profile picture of the author Go4DBest
      Originally Posted by John Romaine View Post

      It's kind of hard to help you with such limited information.

      What's the issue?
      Hey John, thanks for input.

      I even scanned it, Sucuri SiteCheck - Free Website Malware Scanner , I can't seem to proceed what to do next. Our hosting is godaddy which has no chat support.
      Signature
      We setup and design wordpress sites using the Divi theme for roughly 200 USD. Let's talk.
      {{ DiscussionBoard.errors[7881925].message }}
  • Profile picture of the author John Romaine
    Without knowing otherwise, I would say your index (homepage) file may have been compromised. I would download this file and take a look at it. Look for any weird looking javascript (its usually at the bottom of the page - although it may be anywhere)

    Once you've found it, upload the backup you have saved locally and overwrite the crap.

    You have a backup dont you????
    Signature

    BS free SEO services, training and advice - SEO Point

    {{ DiscussionBoard.errors[7881964].message }}
  • Profile picture of the author Go4DBest
    This is the site, http://accidentwellnesscenters dot com

    I tried to inspect the index (homepage) file for it might have been compromised. I downloaded this file and took a look at it. I look for any weird looking javascript, but I can’t find any.

    <?php
    /**
    * Front to the WordPress application. This file doesn't do anything, but loads
    * wp-blog-header.php which does and tells WordPress to load the theme.
    *
    * @package WordPress
    */

    /**
    * Tells WordPress to load the WordPress theme and output it.
    *
    * @var bool
    */
    define('WP_USE_THEMES', true);

    /** Loads the WordPress Environment and Template */
    require('./wp-blog-header.php');
    Signature
    We setup and design wordpress sites using the Divi theme for roughly 200 USD. Let's talk.
    {{ DiscussionBoard.errors[7882078].message }}
    • Profile picture of the author Istvan Horvath
      Originally Posted by Go4DBest View Post


      I tried to inspect the index (homepage) file for it might have been compromised. I downloaded this file and took a look at it. I look for any weird looking javascript, but I can't find any.
      Actually, that is NOT the homepage file! Read it again: it does exactly what it says - "Loads the WordPress Environment and Template". Nothing else.

      Which means your homepage is displayed by the index.php (plus the included files... get_filename, like header, sidebar, footer etc.) of your active theme.

      Malware like the one the browser warned about can be found in the template files AND/OR in the database, depending on the hacker's technique.

      Quite often, if the blog owner has to change the file permissions (chmod) in order to use the online theme file editor... they never change back the permissions, thus leaving the files world writable.

      Sometimes, hackers got access to the server through another user/client of the host - and from there they go around and screw others sites, too.

      What happens if you revert back to the default theme?
      Can you access the wp-admin? - If yes, activate the default 2010 or 2011 or 2012 theme. - If not, FTP > delete the active theme: WP will revert automatically to the default.

      If the site displays with the default theme - your theme files are infected.
      If even with the default theme you get the warning - need to check the database.
      Signature

      {{ DiscussionBoard.errors[7882638].message }}
  • Profile picture of the author John Romaine
    I'm not clicking on that dude, lol.

    F that.
    Signature

    BS free SEO services, training and advice - SEO Point

    {{ DiscussionBoard.errors[7882101].message }}
  • Profile picture of the author John Romaine
    Right click and view the source code of the home page. Look for it there. You're using Wordpress, so it might be inside an include file.

    You might be best asking a WP expert, like ....Istvan?
    Signature

    BS free SEO services, training and advice - SEO Point

    {{ DiscussionBoard.errors[7882153].message }}
    • Profile picture of the author AndrewCavanagh
      Usually you contact your webhost and ask them to
      restore your site to a date before the Malware
      got onto your site.

      This is a very standard request and most hosts are
      happy to do it without charge.

      Kindest regards,
      Andrew Cavanagh
      Signature
      Old School Copy Like This Is BACK & Converting Like Crazy!
      {{ DiscussionBoard.errors[7882326].message }}
      • Profile picture of the author Edk
        I do not mean to be redundant here. This information won't be too late for lots of folks. It's helped save my bacon recently. In a word, Malwarebytes. I have this program on my computer as backup to MicrosoftSecurityEssentials which is free. This combination was recommended to me by a security expert of 20+ years experience.

        If you visit a site with malware, the program disconnects you from there so you can't get infected. Their database seems to be updated more or less daily. I realise it'll be too late in some cases but it's something very excellent to have in your armoury.
        {{ DiscussionBoard.errors[7882389].message }}
        • Profile picture of the author Joe Stewart
          Originally Posted by Edk View Post

          I do not mean to be redundant here. This information won't be too late for lots of folks. It's helped save my bacon recently. In a word, Malwarebytes. I have this program on my computer as backup to MicrosoftSecurityEssentials which is free. This combination was recommended to me by a security expert of 20+ years experience.

          If you visit a site with malware, the program disconnects you from there so you can't get infected. Their database seems to be updated more or less daily. I realise it'll be too late in some cases but it's something very excellent to have in your armoury.
          I use Malwarebytes too. I got a nasty virus a couple months back and ended up having to pay Microsoft support to remove it. This is one of the first things they ran. I'd give it a try.
          Signature

          My New "Share All" Blog Is Coming Soon! Online & Offline Marketing, More!

          http://www.UnCENTSored.com

          {{ DiscussionBoard.errors[7882695].message }}
          • Profile picture of the author so11
            Originally Posted by Joe Stewart View Post

            I use Malwarebytes too. I got a nasty virus a couple months back and ended up having to pay Microsoft support to remove it. This is one of the first things they ran. I'd give it a try.
            Hello,

            it is important not to mix your PC security and Web security, as these are 2 completely different things. The tools that you use to protect your PC are not the same and most of the time useless for protecting your website/blog/application.

            here is some info for recovery process, try it, lets us know how it went...

            Step 5: Assess the damage (malware) - Webmaster Tools Help
            Signature
            www.groupesoloviev.com
            We help businesses manage cyber risk and compliance requirements.
            {{ DiscussionBoard.errors[7886663].message }}
  • Profile picture of the author RobinInTexas
    Is it still infected? I tried visiting and didn't see anything odd when visiting with firefox, although chrome is blocking it based on Google's crawl on 2013-01-23.
    Signature

    Robin



    ...Even if you're on the right track, you'll get run over if you just set there.
    {{ DiscussionBoard.errors[7882420].message }}
  • Profile picture of the author juangarciamtl
    if your site has malware
    try to remove it completly
    install wordpress again
    and repost your content you articles
    images and videos
    Signature

    More than 105 modules , scrapes, post and make money.
    http://autopostingtools.com/

    {{ DiscussionBoard.errors[7884718].message }}
  • Profile picture of the author nitesh
    If you can tell us the name of your site then there are many tools that can be used to take help.
    Signature

    Are you in need of Best Video Production Services? 2D and 3d Animation specializes in all types of Video Creation Services such as 2D and 3D Animated Explainer Videos, Typography Videos, Whiteboard Videos, and Instructional Videos.

    {{ DiscussionBoard.errors[7886734].message }}
    • Profile picture of the author Istvan Horvath
      Originally Posted by nitesh View Post

      If you can tell us the name of your site then there are many tools that can be used to take help.
      There should be a punishment for lazy b****ds that don't read the entire thread and post total nonsense, bordering idiocy.

      1. The OP posted the URL, just read the freaking thread not only the first post before replying!
      2. You don't really need the URL in order to name the "many tools" you are expert with...
      Signature

      {{ DiscussionBoard.errors[7886782].message }}
  • Profile picture of the author sunny00
    I am sure you could get a malware removal tool but that still will not give you the reason why it happened. If you are going to get a tool then you might as well buy it because the free access only tells you the issues most times.

    If you site was hacked in anyway I do not think the malware removal will do much because other files may be corrupted and logins could be compromised.

    If your not technical like most of us then finding a solid technical support team to handle your internet security issues would definitely be a good choice.
    {{ DiscussionBoard.errors[7897462].message }}

Trending Topics