A week ago InMotionHosting.com, our hosting outfit, detected malware on some files. They would not tell me what the malware was, or which files were affected. They moved my complete account over to Quarantine, and hosed not only Fishyfish, but a bunch of other websites I host.
Sometime recently InMotionHosting.com removed the Malware Scanning Software they had in Cpanel, thus creating an almost impossible scenario. They pushed for me to visit their partner Securi and pay them upwards of $1600-1800 to find and destroy the malware. Every time I'd contact InMotionHosting.com they'd take on average 24 hours to respond, adding insult to injury.
I finally found another Hosting Company who has migrated my Cpanel files over, and scanned and gave me a list of suspected files and malware. I've removed those files. I am in the middle of fixing DNS services, and then rescanning for Malware, and I'll be resetting passwords and updating all software hosted on the fishyfish.com server.
I want to publicly thank Bob Lanham and John Klistof for generously donating a wad of money to help offset the pain. Thank you Gentlemen!
Dust will take a bit to settle as the Domain Name Servers propagate the domains here there, and everywhere.
My humble apologies for all this. I am still perplexed how the Malware got in. I suspect it came from FTP because the malware was not in the normal Wordpress files. Something stinks at InMotionHosting.
