Solved

Bing thinks website contains malware, google does not (any more); what to do?

Posted on 2014-07-31
8
177 Views
Last Modified: 2015-03-18
The website zettlercontrols.com has a malware infection. The infection modified some JavaScript files within wordpress and created an iframe to redirect the user (that what google told me).

I cleaned all the files pointed out by Google webmaster tools and Google confirmed that it is clean now.

However, Bing Webmaster tools thinks it is still infected but does not tell me where the infection is.

I installed Comodo Virus scan for Ubuntu and it did not find any infection.

Can somebody recommend a good Malware scanner (online scanner or for installation) working with Ubuntu 14.04?

You may take a peak at www.zettlercontrols.com, but be aware that this site might be infected. If you do so, it is at your own risk.

Thank you for helping.
0
Comment
Question by:zettler92656
8 Comments
 
LVL 27

Expert Comment

by:Thomas Zucker-Scharff
ID: 40233139
Try an f-secure online scan.  You can also upload any suspicious files to virustotal.com.
0
 
LVL 80

Accepted Solution

by:
David Johnson, CD, MVP earned 168 total points
ID: 40233155
http://sitecheck.sucuri.net/results/www.zettlercontrols.com/
reports that sohos has blacklisted your site and you are using an outdated version of apache
0
 
LVL 62

Assisted Solution

by:gheist
gheist earned 166 total points
ID: 40234048
"apt-get upgrade" will install all applicable patches.
0
Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

 

Author Comment

by:zettler92656
ID: 40235356
I got more information. Yandex thinks that the Trojan is called "JSRedir-LH". Does someone has experience with how to detect and remove?
0
 
LVL 62

Expert Comment

by:gheist
ID: 40235378
So your site has been hacked. Install new server and restore from backup before incident.
0
 
LVL 27

Assisted Solution

by:skullnobrains
skullnobrains earned 166 total points
ID: 40242536
variants of this malware are known to steal ftp passwords and infect sites so you additionally most likely need to use different passwords. it is also more than likely likely that at least one of the hosts used to update the site is infected (possibly by a different malware)

grab an idea here : http://en.wikipedia.org/wiki/Gumblar it is not exactly the same as yours but shares quite a few concepts including infecting sites with redirectors
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cheap SSL Certificates 3 128
Roguekiller has no option of deleting 19 130
EICAR File 5 72
Is there a tool that can take a URL, scan the page and identify dead links? 9 77
Transferring data across the virtual world became simpler but protecting it is becoming a real security challenge.  How to approach cyber security  in today's business world!
Today, still in the boom of Apple, PC's and products, nearly 50% of the computer users use Windows as graphical operating systems. If you are among those users who love windows, but are grappling to keep the system's hard drive optimized, then you s…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question