WordPress.org

Support

Support » Requests and Feedback » Reported Attack Site! – Help!!

Reported Attack Site! – Help!!

  • Reported Attack Site!

    This web site at http://www.ychange.com has been reported as an attack site and has been blocked based on your security preferences.

    Attack sites try to install programs that steal private information, use your computer to attack others, or damage your system.

    Some attack sites intentionally distribute harmful software, but many are compromised without the knowledge or permission of their owners.

    I’m using Firefox

Viewing 3 replies - 1 through 3 (of 3 total)
  • The corruption seems to be at your blog address:

    //www.ychange.com/ychangeblog/

    http://safebrowsing.clients.google.com/safebrowsing/diagnostic?client=Firefox&hl=en-US&site=http://www.ychange.com/ychangeblog/

    You have a hidden iframe linking you to here:

    //findbigbrother.cn:8080/ts/in.cgi?pepsi6

    …that site is also flagged.

    Actually it seems as if I got hit with the Gumblar .cn virus and it came through WP it appears. It changed my file permissions and now I can’t open the files even using notepad. Any suggestions would be helpful. Most of my index.php files and image.php file and fucntion.php and some .html files have been infected.

    How do open a locked file to clean it?

    Thanks

    whooami

    @whooami

    Member

    gumblar doesnt come through wordpress. gumblar comes malware. malware that steals your ftp passwords.

    static HTML sites can. and do get infected by gumblar.

    and that image.php .. isnt one.

    if your permissions have been changed such that you dont have ownership to open the file or edit, you will need to enlist the help of your host.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Reported Attack Site! – Help!!’ is closed to new replies.
Skip to toolbar