AVG Threat

Dancre · Dec 14, 2013

Someone sent me a message saying there was a Black Hat message when they tried to go to my webpage. I updated everything, but my friend also tried my website and he also got the error. HEre's what it says: THis website is unsafe for browsing: active threats have been detected on this link

Blackhat SEO (type 1720)

Navigation on this site is not recommended.
3 compromised pages have been found on kimkouski.com

Go to full 30-day site report for more details. It then wants the user to download a newer version of the virus protection. I'm thinking someone has redirected my site to their site in order to sell their product. If so, how do I stop them from doing this? http://www.avgthreatlabs.com/websit...mkouski.com%2F/?utm_source=TDPU&utm_medium=OS Thanks.

robjvargas · Dec 14, 2013

I went to your site. It's been compromised. I'm not enough of an expert to tell you how, but there's header data on your page that is pouring out Viagra and Levitra ad content.

If you've got a good Web host, they might be able to help you clean that up. I'd start by contacting them.

Change all your passwords ASAP. That an enormous undertaking, but clearly someone has access to your site. And if they have that, they have access (potentially) to anywhere else you use that password.

Deleted member 42 · Dec 14, 2013

You've been hacked by an injection attack.

Your host ought to be able to help you.

Be aware that numerous pages have malicious code injected into them; these will have to be cleaned by hand or restored from a known safe backup.

Also be aware that quite often the injection takes place because a user with login access has an infected PC; so you'll need to check your computers carefully for malware.

Quite often with WordPress sites the injection takes advantage of an insecure template or plugin.

Often a theme or plug in includes "upload" functionality in the form of a file or library that's installed in the theme or plugin directory (you need to use FTP or a file manager to search for these).

Names of known upload libraries include "class.upload.php", "HTTP_Upload", "SWFUpload", "Uploadify" and "jQuery-file-upload".

Ken · Dec 15, 2013

... definitely follow the above advice.

With AVG in general would just ad that it may not be the best protection. We have that at work and it does not pick up the same threats that Norton does.* Maybe that is b/c Norton overdoes it. Maybe, b/c AVG under-does it. Not sure? Something to consider in any event. One or both may not be foolproof.

e.g. mrexcel.com raises a red flag for Norton. Not so with AVG.

Dancre · Dec 15, 2013

I updated everything and I'll change the password right now. I'll also contact my host tomorrow. Hopefully, they can help me. thanks all!!! I also had an account with something called AlphLinks. It kept asking me to update to a paying fee act and apparently it allowed me to post my blog stuff on twitter. I got tired of it so I deleted the account. I can just manually add stuff to twitter. I just changed the password too. I hope this all helps. I'm starting to think is having a blog really worth all this nonsense?

AVG Threat

Dancre

Just have fun.

robjvargas

Deleted member 42

Ken

Dancre

Just have fun.