A 10 Step Guide to removing Malware from your website.

By jebernierMalwareComments are off

One day you go to your website or search for it on Google and your website is blocked due to malware.

You see something like the following:

Website Malware warning

 

NOW WHAT?

You may ak yourself the following:

  • What is this?
  • Why is my website blocked?
  • How did this happen?
  • I'm losing business, what do I do?

What is this?

Google uses scanners that look for web pages that have been compromised by spyware, viruses, worms, and other types of malware. When the scanners find such a page, they add a warning to the search results: “This site may harm your computer.” It looks like this:

Google Search Results Malware Warning

Your website has been blocked by Google, users can choose to continue anyway, but who would?

Why is my website blocked?

Your website has been blocked because Google has found Malware on it. Malware is short for malicious software, consists of programming (code, scripts, active content, and other software) designed to disrupt or deny operation, gather information that leads to loss of privacy or exploitation, gain unauthorized access to system resources, and other abusive behavior.

How did this happen?

That's the one-million dollar question. There are several ways that malware could be installed on your website. At Bazinga! Web Design we have found that the most common cause is that your webmaster or web design company had the malware on the cmputer(s) that they used to develop and upload your website. They probably didn't even know that it was on their computers. The malware infected the files (including your website files) and when they uploaded your website to the hosting provider, your website became infected!

I'm losing business, what do I do?

  • Step 1: Take your website offline while you diagnose the issue. If you can't take it off-line, return a 503 status code to prevent it from being crawled. If you hve a Google Webmaster account, you can In the Webmaster Tools, use the URL removal tool to remove any hacked pages or URLs from search results that may have been added. This will prevent the hacked pages from being served to users.
  • Step 2: Scan your website files for common malware types and identify the infected file(s). At Bazinga! Web Design we discovered that a client had over 48 infected files on their website!
  • Step 3: Download all the website content to a computer that cannot be infected by the malware type. At Bazinga! Web Design we use both Mac & Linux computers to download and analyze your website content.
  • Step 4: Once you have identified the infected file(s), open them in a text editor and remove the infected code. Scan and Re-Scan the files again to ensure all infected code has been removed.
  • Step 5: Upload the cleaned file(s) back to your hosting provider.
  • Step 6: Patch any software packages to the latest version. This includes things such as weblog platforms, content management systems, or any other type of third-party software installed.
  • Step 7: Change all your hosting provider passwords, including the main login and all FTP accounts. Make sure that the passwords are secure and not easy to figure out. You can use the following service to generate secure passwords. Strong Password Generator.
  • Step 8: Get your website back online.
  • Step 9: Sign in to your Google Webmaster Tools account and If your site was flagged as having malware, request a review to determine whether your site is clean. If you used the URL removal tool on URLs which you do want in the index, request that Webmaster Tools re-include your content by revoking the removal.
  • Step 10: Keep an eye on things, as the hacker may try to return.

At Bazinga! Web Design we can provide all these services for a very reasonable price and get your website back online and generating business in no time. Contact Us for a free analysis and price quote.

John Bernier
Owner & Chief Geek
Bazinga! Web Design

P: 774.473.6513
E: [email protected]