Programming Tutorials

How to fix: Warning: Visiting this site may harm your computer - domainameat.cc

By: William Alexander in PHP Tutorials on 2010-06-29  

If google redirects all your visitors to this warning below:

Warning: Visiting this site may harm your computer!
The website at www.yoursite.com contains elements from the site domainameat.cc, which appears to host malware - software that can hurt your computer or otherwise operate without your consent. Just visiting a site that contains malware can infect your computer.

Then, probably your site has been infected with malware. Ok first things first, be cool and dont panic. This could be resolved. If you open your FTP and closely check your PHP files, you will see some lines of code on top of the page that starts with eval(base64_decode(.............................

index.php could be the file affected or it could have affected almost all of your php files.

You will have to remove these lines of code from your files. If you have to do manually, it will be a nightmare.

So just follow these steps to do it automatically.

1. Copy the below code and save it into a file. And name it as 'fix.php'.

<?php
set_time_limit(0);

$dir = "./";

$rmcode = `find $dir -name "*.php" -type f |xargs sed -i 's#<?php /\*\*/ eval(base64_decode("aWY.*?>##g' 2>&1`;
echo "Malware removed.<br />\n";
$emptyline = `find $dir -name "*.php" -type f | xargs sed -i '/./,$!d' 2>&1`;
echo "Empty lines removed.<br />\n";
?>
<br />
Completed.

2. Now upload this file to your website. (save it in the folder where your index.php file resides). 3. Open your browser and call this file (eg. http://www.yoursite.com/fix.php)

Be patient, depending on your site, it may take very long. That is why the time out limit is set to unlimited in the above code. Be sure, all the affected files will be restored back to normal.

What the above code does is, to search for all the php files that containst the infected code and deletes those lines. Then the emptyline code removes the empty lines from the file as well.

Cheers. Your site is now restored to normal.






Add Comment

* Required information
1000

Comments

No comments yet. Be the first!

Most Viewed Articles (in PHP )

PHP code to write to a CSV file from MySQL query

Different versions of PHP - History and evolution of PHP

PHP code to import from CSV file to MySQL

Encrypting files using GnuPG (GPG) via PHP

Send push notifications using Expo tokens in PHP

PHP Warning: Unknown(): Unable to load dynamic library '/usr/local/php4/lib/php/extensions/no-debug ......

Decrypting files using GnuPG (GPG) via PHP

A Basic Example using PHP in AWS (Amazon Web Services)

Error: Length parameter must be greater than 0

Parent: child process exited with status 3221225477 -- Restarting

Password must include both numeric and alphabetic characters - Magento

Count occurrences of a character in a String in PHP

Convert a hex string into a 32-bit IEEE 754 float number in PHP

Reading word by word from a file in PHP

PHP file upload prompts authentication for anonymous users

Latest Articles (in PHP)