Treehouse: Grow your CSS skills. Land your dream job.

What to do with a Malware-holder website, when you are its owner

  • # May 29, 2012 at 6:11 am

    I have 3 domain on my Host. 2 numbers of them have Malware. (as google say)

    I have several questions about this:

    1. My 3 website files are in 3 different folders. Can a damaged folder (= folder that have Malware), make the others damaged (= give other folders that virus)?

    2. Can a full-format clean the host?

    3. One my Websites made by WordPress. If I get a backup of my posts, and then format the host, install wordpress and upload my posts again, can the Malware back to the hosts? (Can the Malware be in my posts backup?)

    4. Is formatting the host and then Install wordpress again and upload my posts backup, bad for SEO?


    # May 29, 2012 at 11:12 am

    What type of server is it (Windows/Linux)?

    What type of anti-virus/malware are you running and have you scanned?

    Also, if you haven’t already, search for files that have been modified since the day before you Google started reporting malware.

    # May 29, 2012 at 11:34 am

    Quite often Chrome will throw out the ‘Malware’ warning if there are links to other sites which contain malware. I’ve seen it when a user’s avatar was hosted elsewhere and that site had it. Once the avatar was deleted the warning went away.

    You might want to check exactly what it is that Google are saying. Is it that your site contains malware or that it ‘contains links’ to malware?

    That might make a difference.

    # May 29, 2012 at 2:18 pm

    Ok, I contacted my – Linux – host administrator and they get a full scan of my files and found 5 .php virus in one of my domains. I deleted all of that domain (I don’t need that anymore)
    Can I be sure that my host is totally clean and make a GoogleWMT review?

    # May 29, 2012 at 3:08 pm

    Are you hosting domains for clients, or are these yours?

    # May 30, 2012 at 2:20 am

    No, they are mine.
    There is 3 domain on my public_html. How I can be sure that no file of them haven any virus or malware script?

    # June 1, 2012 at 5:28 am

    One of my Websites made by WordPress. If I get a backup of my posts > format the host > install wordpress and upload my posts again, can the Malware back to the host? (Can the Malware script be in my posts backup?)

    # June 1, 2012 at 1:37 pm

    The fact that malware was installed on your site is not the problem. The problem is, your site(s) had a security vulnerability that allowed someone to install malware.

    Regardless of whether you’re using WP or not, if you restore your sites without making sure the security problem was fixed, then YES, your site can be hacked again.

    Talk to your webhost, make sure they find out what caused the problem, make sure the problem is fixed, and then (only then) start thinking about restoring your sites and content. (The issue of google blacklisting you is even less important.)

    # June 1, 2012 at 5:40 pm

    Which WordPress files were compromised?

    # June 2, 2012 at 3:35 am

    Make sure you have up-to-date anti virus software installed on ALL computers that you own that have administrative and FTP access to your servers then run a FULL (emphasis on full NOT quick) scan on ALL of your computers. This will eliminate the possibility of them gaining access to your server through a Trojan on one of your computers. After that you can scan your site to see if it still has malware via many online site security companies like Sucuri ( or Website Defender ( Hope this helps.

    # June 2, 2012 at 8:59 am

    @BobbyJones After a Full local scan and cleaning my PC, how I can remove my current website’s malware(s)? Should I use a – premium account of a – defender website or I can do that with a manual check?
    @traq I contacted them. They said I remove all of my host’s files and then upload them again, with a strong exactitude. I’m not sure about this solution.
    @ChristopherBurton Sorry, I couldn’t understand your purpose about compromised files.

    # June 2, 2012 at 11:21 am

    Which files were compromised, as in hacked?

    # June 2, 2012 at 8:05 pm

    farzadina: That seems odd. If there is malware on one of their sites, they (the hosting company) should be very interested in removing it and fixing the underlying problem – not just telling you to do it.

    No offense to you, but if you don’t know how to deal with these issues, then you shouldn’t be the one doing it. That’s just common sense. It’s your host that should be fixing everything – in fact, they probably have a bigger vested interest in fixing it then you do (they wouldn’t want the problem spreading to other paying clients, after all).

    There are certainly some things that they would tell you – “don’t use such-and-such script anymore,” “don’t allow people to upload that type of file,” and so forth – but the technical end of it is their responsibility. That is what you’re paying them for, right?

    # June 2, 2012 at 10:37 pm

    I have fixed website that have this problem, first question, what server service do you use? How much do they help you. If you need some help send me an email.


    # June 2, 2012 at 11:37 pm

    To clean the malware from your site does require some expertise, if you are not comfortable with or not experienced with dealing with site security issues like this then yes I would recommend you sign-up with either Sucuri or website defender. These companies will clean your site for you, as well as doing some basic things to try to prevent your site from becoming re-infected, additionally they will monitor your site so long as you have an account with them, and keep cleaning your site should it get malware again.

Viewing 15 posts - 1 through 15 (of 26 total)

You must be logged in to reply to this topic.