Help! My Blog Has Been Invaded By Malware Scripts!

by Remi Vladuceanu on January 9, 2010


One of the  great ‘joys’ of being a proud owner of a wordpress blog, or any other website for that matter, is to be hacked and cracked and your business turned upside down by a nasty little source code called malware or badware.

There’s a lesson to be learned in every online endeavor, they say. And unfortunately I learned this particular lesson the hard way.

It all started one day when I wanted to log into the wordpress admin area of my blog when I was horrified by the image I got in front of my eyes. The red background probably made it even worse.

I soon found out my websites were compromised and a malware script invaded every index file on my ftp account. And since I have access to all my domains through a single ftp account, you can probably imagine the damage.

I started searching online for a solution and found this website: [www.badware…]

Luckily for me a nice gentleman by the name of Tom… decided to respond to my desperate query and explained how things work with badware and malware and what I should do to remove them.

How these nasty bugs work is they infect your PC through a Trojan that accesses your ftp software and logs in to your account. Then it injects the malware script in your files. After that it’s the ‘job’ of your website’s visitors to pass on the malware to their PC’s and so on.

I noticed the malware was injected only in index files. But at this point there is also a possibility that the malware has been already injected in a database that will inject the script again and again even if you delete it from the files, it will reappear soon.

I had some help from Google’s Webmaster Tools where I logged in with my Google account info and added all my websites. It’s a vital tool for any webmaster! It can help you in cleaning up your webpages of badware and malware but also gives you a lot of information regarding your website’s position in terms or SEO and much, much more.

But unfortunately this matter is still not entirely solved. Even if I managed to get my website out of the blacklist and getting control back again, there’s still something wrong with some of the directories from my ftp account in which I have files named ‘index’.

Hopefully I will manage to eliminate the badware entirely from all my websites and install proper security measures like a wordpress plug-in for additional security of my ftp account.

But I’m glad to announce that the blog is free of malware and you can surf the website without any worries that it will infect your PC or something like that.

I will keep you guys up-to-date about the development of this unfortunate event and hopefully I will soon announce that all malware has been removed from my websites.

UPDATE: My websites are clean now thanks to Thomas J. Raef from We Watch Your Website. You can see the results of our conversation here.

Share and Enjoy:
  • Print
  • Digg
  • Sphinn
  • del.icio.us
  • Facebook
  • Mixx
  • Google Bookmarks
  • Blogplay
  • Technorati
  • Twitter

Tagged as: badware script, google webmaster tools, malware, trojan virus, wordpress hack

{ 1 comment… read it below or add one }

1 monalisa222 February 12, 2010 at 7:32 pm

How to remove Malware:Trojan, Virus, Worm, spyware, adware or other Malware

Leave a Comment

You can use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

CommentLuv Enabled

Previous post:

Next post: