Support » Fixing WordPress » Reported Attack Site

  • Suddenly recently when i try to visit my site, I receive a warning page with the title “Reported Attack Site.”

    When I click on “Why was this site blocked?” this is what shows up:

    Of the 10 pages we tested on the site over the past 90 days, 3 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2009-07-29, and the last time suspicious content was found on this site was on 2009-07-29.

    Malicious software is hosted on 1 domain(s), including cqodezuz.cn/.

    2 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including send29931.cn/, drocuwil.cn/.

    This site was hosted on 1 network(s) including AS32181 (ECOMD).

    HELP!

Viewing 6 replies - 1 through 6 (of 6 total)
  • Thread Starter themamalist

    (@themamalist)

    The problem is I can’t even access my admin panel without the warning coming up so I can’t change my password as many of the support panels recommend. I do have access to the FTP files but I’m not sure which files to copy without copying the malware. Any suggestions?

    First of all what version of wordpress are you using?

    Use phpMyAdmin and check your database both visualy and by running the included tools. Once you have the all clear then backup your database. if there are problems witht the database drop the problematic tables if they are malicious. Then backup this time marking the the file as bein compromised – you can go through it at your leasure and look for any out of place items.

    Take a backup of your site via ftp, again mark the files as having been compromised – you can do this by putting them in a folder on your desktop named accordingly. Delete all the core files of your site and install a fresh copy.

    In the folder on your desktop unzip the database and once done run a virus scan on the entire folder – if all clear on the database then restore to your new installation and take it from there.

    Disclaimer: You may loose some data/posts with this method – use this info at your own risk, I take no responsibility.

    Thread Starter themamalist

    (@themamalist)

    I’m using WordPress 2.7.1. Is phpMyAdmin a program that I need to download? I really don’t know anything about coding so I’m worried this may be a little over my head.

    No phpMyAdmin is provided fre by your hosting account provider and is accesible via your control panel.

    I can help if you want, drop me a mail via contact us on my site

    Thread Starter themamalist

    (@themamalist)

    Thanks! I’ll get in touch with you via email.

Viewing 6 replies - 1 through 6 (of 6 total)
  • The topic ‘Reported Attack Site’ is closed to new replies.