adamthomson123 Posted December 21, 2013 Share Posted December 21, 2013 (edited) hi! Can anyone help me to get rid of Malware virus problems, my website get virus every time, i dont know how virus comes and google block my website, last week i change effected files and now again this happened, metal bunk beds Pleae give me permanent solution, this is effecting my business. please thanks Edited April 17, 2023 by adamthomson123 (see edit history) Link to comment Share on other sites More sharing options...
PrestaHeroes USA Posted December 21, 2013 Share Posted December 21, 2013 first thing is to change all ftp passwords... then: 1. ensure you have good up to date anti-virus on your computer 2. download and unzip your prestashop version from here https://code.google.com/p/prestashop/downloads/list 3. using ftp download your production shop, this is where you antivirus should catch problem files, after download you should also run the antivirus against the download folder of your prod shop. 4. using the clean download of prestashop, replace those files note: using ftp on your production shop or downloaded files look for file dates that are recent. Especially .js files. make sure that you do not have bad permissions, i.e. 777...nominal permissions for folders 755, files 644 hope this helps Link to comment Share on other sites More sharing options...
PrestaHeroes USA Posted December 21, 2013 Share Posted December 21, 2013 after you clean this up, then using webmaster tools you can submit your shop for review. Note: the problem will always be, after you fix, is that you url will be designated as bad, even if google says it's good. My advice for this is to get another url. Link to comment Share on other sites More sharing options...
adamthomson123 Posted December 21, 2013 Author Share Posted December 21, 2013 If i Download all my Website content from Filezilla and delete all data in my server and after that i upolad my downloaded data again in Filezilla, Will my website Work Properly or deleteing can make a Proble and will i Loose my Data? Link to comment Share on other sites More sharing options...
adamthomson123 Posted December 21, 2013 Author Share Posted December 21, 2013 HOW TO CHANGE PERMISSION OF ANY FOLDER I FOUND A SUSPICIOUS FOLDER IN MY SERVER NAMED "01221321" TRYING TO DELETE IT , BUT CANNOT DELETE, PLEASE HELP ME, THANKS Link to comment Share on other sites More sharing options...
PrestaHeroes USA Posted December 21, 2013 Share Posted December 21, 2013 If i Download all my Website content from Filezilla and delete all data in my server and after that i upolad my downloaded data again in Filezilla, Will my website Work Properly or deleteing can make a Proble and will i Loose my Data? I never mentioned deleting 'all' files. Just find the bad files and upload those. Link to comment Share on other sites More sharing options...
PrestaHeroes USA Posted December 21, 2013 Share Posted December 21, 2013 HOW TO CHANGE PERMISSION OF ANY FOLDER I FOUND A SUSPICIOUS FOLDER IN MY SERVER NAMED "01221321" TRYING TO DELETE IT , BUT CANNOT DELETE, PLEASE HELP ME, THANKS I would not have enough information to tell you how to delete this file. It must have permissions what are they? You can contact your hosting company and they may be able to also help you with that file. I gave you an idea of how to proceed, I don't now where you are in that process. Link to comment Share on other sites More sharing options...
adamthomson123 Posted December 21, 2013 Author Share Posted December 21, 2013 (edited) Scanner is not Showing any virus, only Google Blocked the Webiste, i cannot find virus, as new to Prestashop, Please Help me to Get rid of it, you can visit my webite here www.brixton-beds.co.uk , it says www.brixton-beds.co.uk is javascriprt malware code injected. when i scan it. Edited December 21, 2013 by adamthomson123 (see edit history) Link to comment Share on other sites More sharing options...
PrestaHeroes USA Posted December 21, 2013 Share Posted December 21, 2013 what scanner? what is your antivirus did you download your entire shop files? look, don't panic, it's easy to get frustrated with this, I know as our shop was hacked June 2011, felt horrible... but by taking slow steps and following directions and reporting back what steps you did helps us help you Link to comment Share on other sites More sharing options...
adamthomson123 Posted December 21, 2013 Author Share Posted December 21, 2013 i am using inline scanners and ESET , yes i downloaded all the data in my server and i scanned it twice , but no virus detected in that data and Google says its Malware effected, only showing www.brixton-beds.co.uk, it is not a file name, how to clean www.brixton-beds.co.uk ? cant understand it. Link to comment Share on other sites More sharing options...
PrestaHeroes USA Posted December 21, 2013 Share Posted December 21, 2013 If you feel that you either no longer have malware or that your site is clean then you are ready to Request a maleware review. learn more here: https://support.google.com/webmasters/answer/168328?hl=en Link to comment Share on other sites More sharing options...
adamthomson123 Posted December 24, 2013 Author Share Posted December 24, 2013 hi! tried 2 times and changed all effected files, but still Google dont approve it as a clean site. is this problem happen because of a customized theme? i am using NIce&Clean Theme with prestashop 1.5.6, is this theme Compatible with this version of Prestashop? link for the theme is here http://www.prestashop.com/forums/topic/236264-free-theme-niceclean-customizable-default-theme-skin-updated-0608/ Please Guide me , i am stucked here and can't find any way to get rid of this Malware thing. pages Google saying are effected with Malware, cannot find any Malware code on them, here are some of these pages. 1 - http://brixton-beds.co.uk/ 2 - http://www.brixton-beds.co.uk/ 3 - http://brixton-beds.co.uk/index.php?id_category=3&selected_filters=color-blue&controller=category 4 - http://brixton-beds.co.uk/index.php?id_category=3&selected_filters=color-black&controller=category 5 - http://brixton-beds.co.uk/index.php?id_category=3&selected_filters=color-green&controller=category 6 - http://brixton-beds.co.uk/index.php?controller=cart&add=&id_product=3&token=a6ac758c2d93292946de53872ffcf4f6 7 - http://brixton-beds.co.uk/index.php?controller=cart&add=&id_product=6&token=a6ac758c2d93292946de53872ffcf4f6 8 - http://brixton-beds.co.uk/index.php?controller=cart&add=&id_product=7&token=a6ac758c2d93292946de53872ffcf4f6 9 - http://brixton-beds.co.uk/index.php?id_category=3&selected_filters=categories-divan_beds&controller=category 10 - http://brixton-beds.co.uk/index.php?controller=cart&add=&id_product=20&token=a6ac758c2d93292946de53872ffcf4f6 Pleae Help me, i Dont want to lose any data, Thanks Link to comment Share on other sites More sharing options...
vekia Posted December 24, 2013 Share Posted December 24, 2013 remember, that you shop files can contain code to include external scripts with malware., exactly as it is described here:http://safebrowsing.clients.google.com/safebrowsing/diagnostic?site=http%3A%2F%2Fwww.brixton-beds.co.uk%2F&client=googlechrome&hl=en-US Of the 245 pages we tested on the site over the past 90 days, 53 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2013-12-22, and the last time suspicious content was found on this site was on 2013-12-21.Malicious software includes 541 exploit(s). This site was hosted on 2 network(s) including AS30496 (COLO4), AS15085 (IMMEDION). How did this happen? In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message. Link to comment Share on other sites More sharing options...
adamthomson123 Posted December 25, 2013 Author Share Posted December 25, 2013 is there any way to get rid of this virus? without loosing any data, as i am new to Prestashp and havent got much knowledge about programming, can you please help me to do it. thanks Link to comment Share on other sites More sharing options...
PrestaHeroes USA Posted December 25, 2013 Share Posted December 25, 2013 first thing is to change all ftp passwords... then: 1. ensure you have good up to date anti-virus on your computer 2. download and unzip your prestashop version from here https://code.google.com/p/prestashop/downloads/list 3. using ftp download your production shop, this is where you antivirus should catch problem files, after download you should also run the antivirus against the download folder of your prod shop. 4. using the clean download of prestashop, replace those files note: using ftp on your production shop or downloaded files look for file dates that are recent. Especially .js files. make sure that you do not have bad permissions, i.e. 777...nominal permissions for folders 755, files 644 hope this helps did you follow this guidance? You might be able to hire someone (paid jobs) if you are unable to rid yourself of this problem. Link to comment Share on other sites More sharing options...
adamthomson123 Posted December 25, 2013 Author Share Posted December 25, 2013 YES, I DID TRY THIS ALL M2 TIMES AND NOW TRYING 3RD TIME, I AM READY TO PAY TO GET RID OF IT, BUT CANNOT FIND ANY ONE , IF YOU CAN HELP ME TO FIND SOMEONE FOR THIS JOB, WILL THANKFUL TO YOU. THANKS Link to comment Share on other sites More sharing options...
PrestaHeroes USA Posted December 25, 2013 Share Posted December 25, 2013 I move this to paid section to see if you can get additional help. Please in the future refrain from 'ALL' caps..that is like yelling at us Link to comment Share on other sites More sharing options...
adamthomson123 Posted December 25, 2013 Author Share Posted December 25, 2013 sorry for that, i never know ! sorry, thanks for your help. 1 Link to comment Share on other sites More sharing options...
PrestaHeroes USA Posted January 26, 2014 Share Posted January 26, 2014 I like you was hacked (June 2011). Horrible feeling. I now have written and released this module. http://www.prestashop.com/forums/topic/303132-module-prestashop-virus-monitor/ Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now