So I go to work one of my sites today. I pull up a browser to check on it, and it's a reported attack site. The report says an attempt at a malware install was made a few days ago when Google last crawled the site. I had some malware and a trojan I had to get rid of a few weeks ago. I don't know much about this stuff - did my web files get infected on my computer? Is it more likely that somebody hijacked my account? I've removed all the website files and deleted them. I'm gonna go change all my passwords. What else should I do?
Malware on my site - Help needed
- Thread starter Gablablah
- Start date
- Status
That should get it .. just as long as you don't re-upload all of the old files.
The server hijack was likely a symptom of your computer malware. They probably used a keylogger to grab your password. I'd change paypal, your bank account & everything else too.
The server hijack was likely a symptom of your computer malware. They probably used a keylogger to grab your password. I'd change paypal, your bank account & everything else too.
If you're ever testing scripts on your server, make sure you password-protect the directory or delete the files when you're done. A lot of people install scripts like forums, guestbooks, etc to test them out, and forget about them. Eventually someone will find a way to exploit a particular script and your vulnerable pages will show up in a google search.
God damn. All of my sites were infected. I'm guessing I can kiss SEO goodbye for these domains names?
Google has been very quick at removing sites after they've been cleaned. You need to be sure your sites are cleaned before requesting another review.
If you list the infectious malscripts, I can provide you the grep commands to remove all the infectious malscripts from your sites. Or you can just reload known good code after changing all your passwords.
We can run a scan of your sites if you'd like to list them here. Then we can provide an exact command to run to remove all those infections from your sites.
Let us know...
If you list the infectious malscripts, I can provide you the grep commands to remove all the infectious malscripts from your sites. Or you can just reload known good code after changing all your passwords.
We can run a scan of your sites if you'd like to list them here. Then we can provide an exact command to run to remove all those infections from your sites.
Let us know...
Thanks for the support. I'm having my hosting account reset and reworking my sites. They needed serious work anyway. How do you guys keep your computers safe? I've been running AVG and Ad Aware on my windows computer but still managed to get a trojan. The only things I typically download are reputable software and music torrents with lots of people seeding. I imagine the folks here making 4 figures a day have some pretty tight security precautions.
Ok, I can now visit the sites without warning, and they've even kept their google rank, but in the SERPs it still says "this site may harm your computer." Is that gonna go away?
- Status