Gootloader infection cleaned up
February 27, 2022 by
Categories: Miscellaneous

Dear blog owner and visitors,

This blog had been infected to serve up Gootloader malware to Google search victims, via a common tactic known as SEO (Search Engine Optimization) poisioning. Your blog was serving up 59 malicious pages. Your blogged served up malware to 19 visitors.

I tried my best to clean up the infection, but I would do the following:

Gootloader (previously Gootkit) malware has been around since 2014, and is used to initally infect a system, and then sell that access off to other attackers, who then usually deploy additional malware, to include ransomware and banking trojans. By cleaning up your blog, it will make a dent in how they infect victims. PLEASE try to keep it up-to-date and secure, so this does not happen again.

Sincerly,

The Internet Janitor

Below are some links to research/further explaination on Gootloader:

https://news.sophos.com/en-us/2021/03/01/gootloader-expands-its-payload-delivery-options/

https://news.sophos.com/en-us/2021/08/12/gootloaders-mothership-controls-malicious-content/

https://www.richinfante.com/2020/04/12/reverse-engineering-dolly-wordpress-malware

https://blog.sucuri.net/2018/12/clever-seo-spam-injection.html

This message

You may be interested in...

Recent posts What we blog about
acceptance adventure Change charter for compassion clients coming back compassion Connection coping couples don't give up emotions empathy family fear feelings grief growth happiness healing health human humility inner fight journey life loneliness metaphors mindfulness perspective quote relationship relationships relationship with client sadness self self-growth self-inquiry self acceptance shame sharing stress therapist therapy vulnerability

No Thoughts About Gootloader infection cleaned up

Share your thoughts

Your email address will not be published.

*