Are you a website site owner? Have you heard about new vulnerability found in WordPress sites? According to Security firm Sucuri reports Google has blacklisted over 11,000 malware-infected WordPress domains and 100,000 sites in total have been affected by a new malware campaign from SoakSoak.ru.

What were these malwares & how to find these virus in WordPress site? These are SoakSoak and RevSlider.

SoakSoak.ru is a Russian malware that modifies file in a site when installing WordPress and loads JavaScript malware.

Way to Detect: Scan your website with http://sitecheck.sucuri.net/ . This website analyzer scans whole website data and provides you complete information about SoakSoak or other malwares that are present in site.

RevSlider is a WordPress Premium Plugin and often used in WP themes. Most of the site owners may not even know that they are using RevSlider plugin as they had paid package and this is inbuilt in themes.

Way to Detect: To check RevSlider in website go to /wp-content/plugins/revslider/temp/update_extract==>check hack’s source==>removing those files ==>add permissions on the /revslider/temp/ folder.

This helps to prevent website from being modified.

Furthermore, Google has blocked websites which has affected by these malware. Are you one whose website is blacklisted by Google? How you can check whether your website has blocked by Google or not?

Following are the tools to detect blocked domain in Google:-

  1. Isbanned.com:- This is a free tool and help to check your website and/or domain is banned by the Google Search Engine & Google AdSense.
  2. iWebtool.com:- This is again a free and easy to use tools that detects website/ domain blocked by Google.

Some others tools are also present on web such as Bannedchecksite.com and Searchenginegenie.com that also help to analyze blocked website in Google Search Engine.

Once you have identified website has affected by malwares and blocked by Google, your next step is to find out solution to overcome by this.

Tips to overcome by these malwares are as follow:-

1. Download fresh WordPress installation.
2. Browse files and directories of /wp-admin and /wp-includes

a)  /wp-includes/template-loader.php
b) /wp-includes/js/swfobject.js

Also check if these files are recently modified by unknown source.

3. Replace these files and directories with fresh installation.
4. If problem still exist install WordFence from wordpress.org and scan website to find and fix the issue.

After installing fresh copy of wordpress files and directories in website, one need to resubmitted site in Google or email Google to remove it from ban.

Though you are aware of wordpress malwares, ways to check and how to overcome blocked website in Google. If you have any other ways that help to prevent malware please feel free to share your ideas through at biz@netgains.org.

Related News