Hi All,
I have site previously got DDos attacked, and all the original website has been restored. Even for now, I move to another hosting services, but still recognized as a threat.
HELP…!!!
Regards,
GunsaldY
Hi All,
I have site previously got DDos attacked, and all the original website has been restored. Even for now, I move to another hosting services, but still recognized as a threat.
HELP…!!!
Regards,
GunsaldY
First to be able to help, we need some information to work with and investigate.
The web site address change the http to hXXp to break any active link to a suspect site.
If you can say what the information on the avast alert said. Better still would be a screen shot of the alert.
Hi David,
Thank you for your reply.
How can I attached the error message on here? kindly advice.
Thanks in advance.
Regards,
GunsaldY
Below the box you write in >> Attachments and other options
Hi David,
Got it, please find as attached file error from avast every time I access my website.
Thanks in advance and look forward to hearing from you.
Regards,
GunsaldY
Blacklisted and browser difference :
https://www.websicherheit.at/website-malware-viren-scanner/?url=gunaldy.com
Blacklisted :
http://www.urlvoid.com/scan/gunaldy.com/
https://sitecheck.sucuri.net/results/gunaldy.com
https://www.virustotal.com/en/url/474ce1b3dd01ecf4918eb62ae5f532b12b840d823f538496b07bd597a025b012/analysis/1494430633/
Suspicious (could be infected) :
https://quttera.com/detailed_report/gunaldy.com
Huge history of blacklistings :
https://www.virustotal.com/en/ip-address/31.22.4.108/information/
Malware and blacklistings :
http://urlquery.net/report.php?id=1494428515074
Wordpress insecurity :
Warning Directory Indexing Enabled
Vulnarable library (needs to go) :
http://retire.insecurity.today/#!/scan/0c79cd375ffa65cb67ccaf19929d0fea3c325b4477dc50b6bf1e34a53c784518
Dear Eddy,
Thank you for your kindly support and information.
So what should I do? kindly advice. As per my first post I already inform that my site previously got DDos attacked, I already restore all the setting and move the hosting but still have the same issue.
Thanks in advance.
Regards,
GunsaldY
A good start would be stepping away from shared hosting and get dedicated hosting.
After that, disable the directory indexing in Wordpress, retire the vulnerable jquery and remove the suspicious code.
Avast detected the Blocked URL in this Locky Ransomware.
hxxp:gunaldy.com/87hcrn33g
Hi Eddy and Jefferson,
Thank you for your kindly reply and support.
Actually this already on dedicated server, and fresh new.
Before no Wordpress installation at all, just free parking at the hosting. But still remain the same issue
Last night, I just installed WordPress.
Thanks.
Regards,
GunsaldY
Did you clean the site and change the passwords ?
H Jeff,
The site is clean, I move to another hosting service.
Thanks.
Reported to Virus analyst ~
Thank you Jeff, look forward the update then.
Hi,
URL block has been disabled.
Lukáš
Hi Lukas,
Thank you for your kindly assistant and information.
Yup, now my site is normal.
Once again, thank you.
Regards,
GunsaldY