WordPress.org

Ready to get started?Download WordPress

Forums

Reports of virus warning (6 posts)

  1. ginmonkey
    Member
    Posted 2 years ago #

    I have been getting reports that some people are getting a virus warning when trying to access my site:

    http://www.ginmonkey.co.uk/

    I can't find anything using online scans, I have contacted my hosts and they can't find anything either. What could this be?

    Help!
    Emma

  2. Krishna
    Volunteer Moderator
    Posted 2 years ago #

    I too do not find any virus/ malware/ adware in your site. Here is one report: http://sitecheck.sucuri.net/results/www.ginmonkey.co.uk/

  3. ginmonkey
    Member
    Posted 2 years ago #

    Thank you. I have also downloaded all my files and scanned using sophos but can't find anything. Users still reporting the warning though. Does anyone have any ideas as to why this may be??

  4. esmi
    Forum Moderator
    Posted 2 years ago #

    What exactly are these warnings? Are they specific to a few pages? Some AV software can trigger false reports based on posted code as opposed to "real" code.

  5. ginmonkey
    Member
    Posted 2 years ago #

    I'm not exactly sure as I can't replicate the problem. I've been getting reports around twice a week for a couple of weeks now. Someone sent me a screen shot from Norton of what was displayed when they tried to access:

    http://www.ginmonkey.co.uk/2011/07/08/franks-campari-bar-london/

    It stated that it was a Web Attack: Mass Injection Website and said it had blocked an intrusion attempt?

    E

  6. esmi
    Forum Moderator
    Posted 2 years ago #

    Sucuri gives the site a clean bill of health apart from the fact that you're using an older version of WP. However, I'm also getting AV warnings (via AVG) of a Blackhole Exploit hack at that url. I suggest that you proceed on the basis that the site has indeed been hacked. You need to start working your way through these resources:
    http://codex.wordpress.org/FAQ_My_site_was_hacked
    http://wordpress.org/support/topic/268083#post-1065779
    http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/
    http://ottopress.com/2009/hacked-wordpress-backdoors/

    Additional Resources:
    http://sitecheck.sucuri.net/scanner/
    http://www.unmaskparasites.com/
    http://blog.sucuri.net/2012/03/wordpress-understanding-its-true-vulnerability.html

Topic Closed

This topic has been closed to new replies.

About this Topic