Warning: Something's Not Right Here!
www.mywebsite.com contains malware. Your computer might catch a virus if you visit this site.
Google has found malicious software may be installed onto your computer if you proceed. If you've visited this site in the past or you trust this site, it's possible that it has just recently been compromised by a hacker. You should not proceed, and perhaps try again tomorrow or go somewhere else.
We have already notified www.mywebsite.comthat we found malware on the site. For more about the problems found on www.mywebsite.com, visit the Google Safe Browsing diagnostic page.
If you understand that visiting this site may harm your computer, proceed anyway.
One of our website is now down and it looks like this. What is the cause of this?
Please HELP.
I can only speculate what the cause is since you didn't provide the link, but my guess is that your site has been compromised. Look at your code and see if there is anything out of place. For example, a tag that is below your closing tag. Someone probably injected code on your site that contains data from their site. Google sees the domain that has been marked as malware and then says that your site has malware.
Can you provide a link to the code?
Just contributing a few links that might be more useful for folks looking to troubleshoot this problem when it comes up on their server.
Malware Blog
Post
Stop
Badware
If the website has been compromised, run the antivirus software on your PC to scan the entire computer. If any malware is detected, delete it. Remember to keep antivirus program up-to-date. If security tools don't work, refer to the instructions below:
http://www.pcworld.com/article/243818/how_to_remove_malware_from_your_windows_pc.html
http://blog.mightyuninstaller.com/infected-by-trojandownloadervbsagent-el-steps-to-completely-remove-trojandownloadervbsagent-el/
Related
I will rephase for a more precisely question. If I click on a malicious/virus link, then I do not click on anything further or download anything from that website, can my PC get hacked?
I am asking this question on the perspective of a web developer through all the tools and programming languages.
If browsers work as intended, there shouldn't be, but there's always the risk that someone has exploited a vulnerability in a web browser that has gone undetected or unreported. Such vulnerabilities do occur, though most get fixed quickly.
It's highly unlikely that you'd just stumble upon such an exploit, but it's always best to be safe. If you don't know or trust the link, it's best to just not click it.
There is nothing standard that would allow a developer to hack or infect a client computer through a browser simply by the client loading the page.
I'm an rather experienced web developer and have Plesk Onyx running on my dedicated server. It features 2FA via Google Authenticator. Inside Plesk, I added multiple WordPress-based webpages of mine and friends of mine. All of these WordPress installations are securely installed by Plesk and hardened access to by moving the admin area, globally disabling comments, 2FA, and so on.
Now a few days ago, a friend told me he was seeing massive ads on my webpage. Since the server also yields my company's page, that is perhaps something to take serious - so did I. However, I couldn't reproduce the ads or the pop ups, etc. - at all -, neither on my Windows machines (10 and Server 2016), nor on any mobile or laptop device. Yesterday, I was viewing my webpage with a friend of mine (desktop PC). And all of a sudden, ads are shown up when he clicks links in my WP menu and stuff like this. Very pushy, very much, absolutely... unacceptable.
I introduced myself as rather experienced web developer. However, I don't know how to tackle this. Whether my server was actually hacked or compromised, some WordPress plugin is messing up with ads (however, friend found problems on multiple sites that are not using the same plugins), or whatever. I think Plesk and WP are both strong and shouldn't be compromised that easy. Besides, I didn't notice any further.
How to tackle this?
Did you try Revisium Antivirus to scan your websites? It is available on Plesk extensions. I had a similar issue and Revisium Antivirus found all the files that were infected.
Also, check your friend's PC (web browser) for malware. There is some malware (hidden software) which can run adds or add strange links to your website. So, in that case, there is nothing to do with your server or websites.
http://catbreedsinformation.com
A friend and I put that site together a few years ago, just to do some study on how to use google ranking. It was actually doing quite well. Recently, we haven't really messed with it, but I still check the analytics, and they have severely dropped.
I went to visit the site tonight, and it loads for a split second, and then redirects me to a completely different site.
Can anyone explain what is causing this? And also, explain how I can stop this?
thanks.
Looks like your website hacked.
First of all, please change all passwords. Then remove twitter fan box plugin (because script of this plugin is causing redirect)
Then you can check this resource: https://codex.wordpress.org/FAQ_My_site_was_hacked
Someone contacted me telling me that my magento company website was not secure, and they addressed me to http://www.magereport.com/scan/. I told them that the patches were installed manually, which it was what I was told at the time by the developers. I double checked with the developers and they told me that the manually applied patches will not be considered in that url. I however checked this other one https://magento.com/security-patch and says that the website appear to be safe. (including the "bespoke" admin url
Could anyone confirm if it is true that the manually installed patches can't show in those url's?
In one hand I have to trust my developers, and I believe they are saying the truth, but on the other hand I had a couple of people (probably trying to sell something) telling me something different. In the meantime I want to make sure the site is safe, and there is no compromise to our customers details.
What would you recommend as the best plan of action?
Magento version is 1.8.1.0
Many thanks for your honest help!
i am checking my magento web site at regularly (one a week)
http://mxtoolbox.com/ (ip and domain badlist control)
http://sitecheck.sucuri.net/ (malware control)
http://www.unmaskparasites.com/ (malware control)
http://www.magereport.com/ (magento security patch control)
You can trust this web sites. And I think, enough to control these sites
http://www.magereport.com/scan/ is very accurate. I would trust your developers.
Magereport is checking site from front end and cannot see is your php files completly patched. You should check Magefence extension that check your site from backend by scanning php files for each security patch, beside other security features. This is most complete security extension for regular site owners. https://www.extensionsmall.com/mage-fence-security.html
my website opens with xx.xxx.xxx.xxx IP address till friday it was working fine..after wards not able view the site in webbrowser...what could be the problem ? how can we solve it?
My server with this IP is working and can able to view the updated data in database ..but not able to view, or open the page of website.before the website under IIS configuration was stooped and now started again..still no use..am couldnt view Login page at all.My application was developed in classic asp long back.Kindly give me any suggestion to this...its very urgent...
I tried browsing the website in IIS manger(server) .It showing page cannot be displayed.
Thanks in advance.
First, Don't Panic. Staying calm can avoid further damage.
While it's hard to tell what could be the problem, the first thing you can do is to "ping" the domain from terminal.Can you login remotely? "wget" (on linux) will download the files from website, and could help you see if the files on the site are still accessible. Check from different browsers or machines, if possible. I'm no expert in asp or IIS, so won't advice on that front. But once I had faced the same situation with my website. So I just called up the hosting service provider, and it turned out it was their problem, and they brought the server online. If it's okay from their end, you might have changed some configurations in your server or application or there might be some up-gradation changing parameters, or even an accidental deletion/ moving/ renaming of files. Just try to remember what are the things you did with your server and application, before it went down, and also ask your server administrator. That will surely help you understand the problem better, if not help to solve it right away.
Good Luck.