Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
AVG Warning
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Help with my Plusnet services
- :
- Everything else
- :
- Re: AVG Warning
AVG Warning
07-02-2013 4:45 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
I just attempted to go to my website and my anti-virus said it has a Blackhole Exploit Kit (Type 2371) and am completely at a loss as to how to fix it.
The website is gchristison.plus.com
The website is gchristison.plus.com
Message 1 of 9
(2,113 Views)
8 REPLIES 8
Re: AVG Warning
07-02-2013 5:24 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
First steps, upload temporary index.html to stop others getting infected. Change ftp password. Scan own PC for infection. There's a lot of it about.
Gabe
Gabe
Message 2 of 9
(622 Views)
Re: AVG Warning
07-02-2013 5:55 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Kaspersky isn't happy either
Message 3 of 9
(622 Views)
Re: AVG Warning
07-02-2013 9:28 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Nor Avast!
Message 4 of 9
(622 Views)
Re: AVG Warning
07-02-2013 10:56 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
All very strange as I have not done anything to it for several years.
Message 5 of 9
(622 Views)
Re: AVG Warning
07-02-2013 11:24 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
It's not what you've done to it, unfortunately your website has been hacked, and the hacker will have changed your files. The hacker may have gained access to the site by infecting your own computer perhaps with a key-stroke logger and stealing your password, or by cracking it.
This is why the first step is to make sure your own computer is not infected by malware, then change your account password - I think that also changes your Homepages website password. Make sure the new password is a strong one, at least 8 characters, not a dictionary word and include mixed case letters, digits and special characters.
Note that next time you connect your broadband you will have to use the new password; if you are using a Plusnet easy start router that should change automatically. You also need to use the new password to collect email from your default mailbox.
Hopefully you have a back-up copy of all files on the website so you can delete current ones (which are potentially infected) and replace them all with clean ones.
This is why the first step is to make sure your own computer is not infected by malware, then change your account password - I think that also changes your Homepages website password. Make sure the new password is a strong one, at least 8 characters, not a dictionary word and include mixed case letters, digits and special characters.
Note that next time you connect your broadband you will have to use the new password; if you are using a Plusnet easy start router that should change automatically. You also need to use the new password to collect email from your default mailbox.
Hopefully you have a back-up copy of all files on the website so you can delete current ones (which are potentially infected) and replace them all with clean ones.
David
Message 6 of 9
(622 Views)
Re: AVG Warning
08-02-2013 12:42 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Ok have just removed everything from htdocs but left with a folder (logs) is that normal.
Message 7 of 9
(622 Views)
Re: AVG Warning
08-02-2013 2:06 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Yes this is normal. The logs folder is owned by and written to by the webstats processes that run in the early hours each morning to store access logs relating to your websites. You (or a hacker) shouldn't be able to write to that folder.
David
Message 8 of 9
(622 Views)
Re: AVG Warning
09-02-2013 11:03 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Having changed my password I set about attempting to upload the website with the new settings, to no avail. It would appear that changing the main password has not changed the website password because the old password works fine and the new one doesn't.
Message 9 of 9
(622 Views)
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page