1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Cross Site Malware?

Discussion in 'White Hat SEO' started by Shizzleguy, Jul 3, 2015.

  1. Shizzleguy

    Shizzleguy Newbie

    Joined:
    May 2, 2015
    Messages:
    23
    Likes Received:
    4
    Hello Blackhatworld members!

    I am busy with creating a PBN. Now i have two websites, who has a warning in Google Results that my site 'may be hacked'. I have Googled it, and everybody says my website has been hacked. Now i have personally looked at it, and someone with more experience, but we haven't managed to find something bad. I have registered one website at Webmaster Tools, and i don't get any warnings there.. Now i have read something about cross-site malware. My niche is something with gambling, could those words trigger a warning? My sites are protected very well, and no malware or other bad stuff has been found. Hope someone could help me out! The sites has still the same ranking position, thats the strange part about it.

    Thanks!
     
  2. Shizzleguy

    Shizzleguy Newbie

    Joined:
    May 2, 2015
    Messages:
    23
    Likes Received:
    4
    Really no one? :(
     
  3. blackice6666

    blackice6666 Regular Member

    Joined:
    Nov 20, 2014
    Messages:
    233
    Likes Received:
    92
    Have you used any nulled theme on your website? What about the server hosting it? Shared hosting? VPS? Dedicated?
     
    • Thanks Thanks x 1
  4. archon10

    archon10 BANNED BANNED

    Joined:
    Oct 10, 2011
    Messages:
    1,181
    Likes Received:
    11,553
    With no URL it's pretty much impossible to help. "hacked" is better than "this site may harm your computer." This usually means one of the typical WordPress hacks has happened. One day, people will realize that WordPress is the new frontpage extensions.

    Anyway, this is what you can do:

    1) Google Rex Swain's HTTP viewer
    2) put your URL into the text box. Put "google" into user agent, and put "google" as referer.
    3) Submit the form
    4) First look at the response code. Is it 200? If it is, then you need to look at the code output.
    5) Look for suspicious code like JS scripts that don't belong. Iframes are also popular to use... look for suspicious iframes. Hackers usually add a bunch of carriage returns at the bottom to hide the script from view.

    If the response is not a 200 but instead a 301 or 302, it means that you're redirecting based on referer or user agent. This is usually the htaccess file that's been hacked. Go into it and look for referer info and delete it. User agent redirects can happen in the code too... actually, so can referer redirects but lots of time the hack is in the htaccess.


    That's an overview. You'll have to go digging to find the hack.
     
    • Thanks Thanks x 6
  5. Manjot kaur

    Manjot kaur Newbie

    Joined:
    Jul 6, 2015
    Messages:
    14
    Likes Received:
    0
    When users visit a web page, browsers like Chrome check the content that's loaded to see if any part of it is potentially dangerous. When it detects a problem, the browser shows a warning, alerting users that content from a site we've identified as being malicious is being loaded. In many cases, we'll also flag the original site as malicious, which alerts the webmaster and helps to protect potential users.


    There are situations where the currently viewed site is not flagged on our Safe Browsing list, but users still see a warning in the browser. In this case, that site may have attempted to load content from a different website, one that is known to contain malicious content. We call this a cross-site warning. In Chrome, this is denoted with a browser interstitial with the following graphic:
     
  6. KunkkaSword

    KunkkaSword Newbie

    Joined:
    Apr 10, 2013
    Messages:
    41
    Likes Received:
    10
    Location:
    United States
    I had cross site malware on a bunch of Wordpress sites. Used Wordfence plugin to help clean it up. Bought a sub since it helped out me out so much.
     
  7. Shizzleguy

    Shizzleguy Newbie

    Joined:
    May 2, 2015
    Messages:
    23
    Likes Received:
    4
    I have used al the good security plugins, even deleted my whole website and created it again. Nothing worked.. I think it is no problem of my website. You have any ideas how to continue? Should i let this domain go?