?
Solved

Bing thinks website contains malware, google does not (any more); what to do?

Posted on 2014-07-31
8
Medium Priority
?
182 Views
Last Modified: 2015-03-18
The website zettlercontrols.com has a malware infection. The infection modified some JavaScript files within wordpress and created an iframe to redirect the user (that what google told me).

I cleaned all the files pointed out by Google webmaster tools and Google confirmed that it is clean now.

However, Bing Webmaster tools thinks it is still infected but does not tell me where the infection is.

I installed Comodo Virus scan for Ubuntu and it did not find any infection.

Can somebody recommend a good Malware scanner (online scanner or for installation) working with Ubuntu 14.04?

You may take a peak at www.zettlercontrols.com, but be aware that this site might be infected. If you do so, it is at your own risk.

Thank you for helping.
0
Comment
Question by:zettler92656
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
8 Comments
 
LVL 29

Expert Comment

by:Thomas Zucker-Scharff
ID: 40233139
Try an f-secure online scan.  You can also upload any suspicious files to virustotal.com.
0
 
LVL 82

Accepted Solution

by:
David Johnson, CD, MVP earned 672 total points
ID: 40233155
http://sitecheck.sucuri.net/results/www.zettlercontrols.com/
reports that sohos has blacklisted your site and you are using an outdated version of apache
0
 
LVL 62

Assisted Solution

by:gheist
gheist earned 664 total points
ID: 40234048
"apt-get upgrade" will install all applicable patches.
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 

Author Comment

by:zettler92656
ID: 40235356
I got more information. Yandex thinks that the Trojan is called "JSRedir-LH". Does someone has experience with how to detect and remove?
0
 
LVL 62

Expert Comment

by:gheist
ID: 40235378
So your site has been hacked. Install new server and restore from backup before incident.
0
 
LVL 27

Assisted Solution

by:skullnobrains
skullnobrains earned 664 total points
ID: 40242536
variants of this malware are known to steal ftp passwords and infect sites so you additionally most likely need to use different passwords. it is also more than likely likely that at least one of the hosts used to update the site is infected (possibly by a different malware)

grab an idea here : http://en.wikipedia.org/wiki/Gumblar it is not exactly the same as yours but shares quite a few concepts including infecting sites with redirectors
0

Featured Post

Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Transferring data across the virtual world became simpler but protecting it is becoming a real security challenge.  How to approach cyber security  in today's business world!
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Suggested Courses

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question