Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Malware Threat on Website
Message
<blockquote data-quote="Dauphinbleu" data-source="post: 988106" data-attributes="member: 95117"><p>Hello [USER=1]@Jack[/USER] and [USER=59691]@SecureKongo[/USER],</p><p></p><p>Thanks for the reply. I first knew about it because when I opened my website, it got redirected to a suspicious link, and I couldn't access my website. I also couldn't access the WordPress dashboard. I have contacted my hosting provider and asked them to do a full account scan. Two viruses were found, and I followed the guidance to remove the virus. They also helped restore my account using backup before the occurrence, but the problem persisted.</p><p></p><p>My hosting provider also suggested replacing the default WordPress files which I had also done. I also removed some files and folders with suspicious names. When I opened my website again, I could access the homepage. I could also access the WordPress dashboard. But whenever I clicked on any post, it got redirected again.</p><p></p><p>I also scanned my website using Quttera Online Website Malware Scanner. There were many files detected as infected by a trojan. I have removed the script that was pointed out as malicious. This is the script that I removed from many js files :</p><p></p><p>[ATTACH=full]266548[/ATTACH]</p><p></p><p>Another full account scan has been done by my hosting account provider, and the result shows that the viruses have been successfully removed. But the posts on my website are still inaccessible.</p><p></p><p>I tried to check the database and found this script on some rows:</p><p>[ATTACH=full]266543[/ATTACH]</p><p></p><p>I have deleted all of those scripts I could find. But now, every time I try to click on any post on my websites, I still get this notification</p><p></p><p>[ATTACH=full]266539[/ATTACH][ATTACH=full]266540[/ATTACH]</p><p></p><p>Before asking for the full account scan, I checked on the google search console, and the result was clean. I checked on Sucuri before, and there was malware found on the website. But the last scan showed no malware found, though the site is still blacklisted.</p><p></p><p>This is the current result from virustotal scanner :</p><p></p><p>[ATTACH=full]266542[/ATTACH]</p><p></p><p>and this one from urlvoid</p><p></p><p>[ATTACH=full]266537[/ATTACH]</p><p></p><p>Here's the last external monitoring scan report from Quttera</p><p></p><p>[ATTACH=full]266544[/ATTACH]</p><p>[ATTACH=full]266545[/ATTACH]</p><p>[ATTACH=full]266546[/ATTACH]</p><p></p><p>I tried to find the redirected link in the database and Cpanel files, but I couldn't find anything. I would very much appreciate it if someone could help me fix this issue.</p></blockquote><p></p>
[QUOTE="Dauphinbleu, post: 988106, member: 95117"] Hello [USER=1]@Jack[/USER] and [USER=59691]@SecureKongo[/USER], Thanks for the reply. I first knew about it because when I opened my website, it got redirected to a suspicious link, and I couldn't access my website. I also couldn't access the WordPress dashboard. I have contacted my hosting provider and asked them to do a full account scan. Two viruses were found, and I followed the guidance to remove the virus. They also helped restore my account using backup before the occurrence, but the problem persisted. My hosting provider also suggested replacing the default WordPress files which I had also done. I also removed some files and folders with suspicious names. When I opened my website again, I could access the homepage. I could also access the WordPress dashboard. But whenever I clicked on any post, it got redirected again. I also scanned my website using Quttera Online Website Malware Scanner. There were many files detected as infected by a trojan. I have removed the script that was pointed out as malicious. This is the script that I removed from many js files : [ATTACH type="full"]266548[/ATTACH] Another full account scan has been done by my hosting account provider, and the result shows that the viruses have been successfully removed. But the posts on my website are still inaccessible. I tried to check the database and found this script on some rows: [ATTACH type="full" alt="1652243142692.png"]266543[/ATTACH] I have deleted all of those scripts I could find. But now, every time I try to click on any post on my websites, I still get this notification [ATTACH type="full" width="463px" alt="1652242084142.png"]266539[/ATTACH][ATTACH type="full" width="457px" alt="1652242132557.png"]266540[/ATTACH] Before asking for the full account scan, I checked on the google search console, and the result was clean. I checked on Sucuri before, and there was malware found on the website. But the last scan showed no malware found, though the site is still blacklisted. This is the current result from virustotal scanner : [ATTACH type="full" width="794px" alt="1652243042004.png"]266542[/ATTACH] and this one from urlvoid [ATTACH type="full" width="694px" alt="1652233918833.png"]266537[/ATTACH] Here's the last external monitoring scan report from Quttera [ATTACH type="full" width="563px" alt="1652247670823.png"]266544[/ATTACH] [ATTACH type="full" width="587px" alt="1652247683618.png"]266545[/ATTACH] [ATTACH type="full" width="590px" alt="1652247709581.png"]266546[/ATTACH] I tried to find the redirected link in the database and Cpanel files, but I couldn't find anything. I would very much appreciate it if someone could help me fix this issue. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
