4images Forum & Community
4images Issues / Ausgaben => Discussion & Troubleshooting => Topic started by: __G__ on December 28, 2012, 07:13:59 AM
-
Hi My 4homepages is infected and google blacklisted my website :( Anyhow So I downloaded the whole site to my local pc now from ftp So How Do I detect where the code is hiding is there a scanner ? Which will remove that code. I have no idea from where should I begin Can someone please shed some light on this.
-
Hi!
website ?
-
I sent you in PM the website
UPdate
I have just pm you with the ftp access.
-
So.. i found this:
" <?php eval(gzinflate(base64_decode.......e.t.c..... ?> "
in lang/english/main.php
in lang/deutsch/main.php
i hope i have all....
Next:
1.) Do not longer login on your FTP or Web Interface
2.) Check with a Powerfull Antivirus Program your Home PC . (There is very Important, the most Trojaner on the websites come from own PC per FTP.)
3.) If your Sytem clean change all your FTP and SQL passwords.
4.) Do not call your website
5.) Login on your FTP and remove the Code, check all your *.php and *html files on your FTP server.
6.) Have you all this done, call your website and check with the Online Antivirus Program your website.
mfg Andi
-
Thanks a lot I will now remove those codes. You just saved my life Thank you so muchhhhh
So just to ask you the code you found on those main files have you removed it already ? if yes Thank you so much The mods and admins of this website has always been so helpful God bless you
-
Yes i have removed it..
mfg Andi