6 {{ upvoteCount | shortNum }}
6 {{ upvoteCount | shortNum }}

My Site Has Been Hacked and Injected With Malware?

by tarmizikun
5 replies
Good day fellow warrior. Hopefully you guys are doing great.

On 9th of May 2011 my sites has been identified as malicious sites by Avast Antivirus. Avast gives this warning message everytime I open one of my sites:

imgddd.net/t.php?id=16535883
imgddd.net/t.php?id=16536000

AmplusnetPrivacyTools.exe

I have no idea what is happening until I do some googling. I try to find which files has been infected by unable to do so. Shoot a support ticket but still no solution by my hosting provider. I have several domain names under the hosting, PC Software Promo , pakji.com , onlinepromotionalcode.com

Now my sites has been identified as malicious by stopbadware.org. This incident really tarnish my site's reputation and everytime I open them now Avast will give a big full page red warning message that my site is malicious. Website traffics drop thanks to the hacker

My sites has been hacked. Coincidently there are recent forum thread on this topic too.

How to clean my sites from the malware :-(
#hacked #injected #malware #site
  • Profile picture of the author JoshDay
    Compare a fresh copy of your scripts, with the current contents within rootdir and all of your directories. When you find a file which you did not upload and does not go along with the rest, delete it.

    Please send me a PM if you'd like hands on assistance.
    {{ DiscussionBoard.errors[3856679].message }}
  • Profile picture of the author tarmizikun
    Thanks Josh

    Yes there is some files that fishy and I delete them. Then I scan my sites with sucuri.net tool to check for infected codes (malware). All index.php files has been inserted with this code:

    <img heigth="1" width="1" border="0" src="http://imgddd.net/
    t.php?id=16535883">

    Already removed them and now requesting review from Google. Thanks to this incident my sites have been identified as malicious by stopbadware.org, and blocked by antivirus.
    Signature
    Malaysia Hotel
    {{ DiscussionBoard.errors[3856716].message }}
    • Profile picture of the author David Perdew
      Originally Posted by tarmizikun View Post

      Thanks to this incident my sites have been identified as malicious by stopbadware.org, and blocked by antivirus.
      Not to worry. Once you've cleaned the sites, changed all your passwords and login information, just resubmit to those sites and they will let you out of malware jail. It happened to me too.

      But it is a really good indication that you have some security holes in your site, host or easy passwords. Need to tighten it up.
      {{ DiscussionBoard.errors[3856741].message }}
      • Profile picture of the author tarmizikun
        Originally Posted by David Perdew View Post

        Not to worry. Once you've cleaned the sites, changed all your passwords and login information, just resubmit to those sites and they will let you out of malware jail. It happened to me too.
        It's relieve to hear this. How long usually it takes?

        But it is a really good indication that you have some security holes in your site, host or easy passwords. Need to tighten it up.
        Already changed all the passwords. Thanks. Do you have any suggestions on how to make our sites more secure?
        Signature
        Malaysia Hotel
        {{ DiscussionBoard.errors[3856754].message }}
  • Profile picture of the author athanne
    This can happen to anyone. Let the experts help and advice all of us
    Athanne
    {{ DiscussionBoard.errors[3856733].message }}

Trending Topics