1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Harmful website!!!

Discussion in 'Black Hat SEO' started by Frandy, Feb 18, 2012.

  1. Frandy

    Frandy Junior Member

    Joined:
    Sep 20, 2008
    Messages:
    109
    Likes Received:
    16
    Hi All,

    Looking for help. My websites have been listed suspicious by Google and all traffic has been off. I've tried to make them verifyed by Google webmaster but it seems that I've not really well followed the process.

    I need advices to make Google verify my sites and also how to prevent these kinds of attack?

    Thank you!
     
  2. polomint

    polomint Registered Member

    Joined:
    Sep 12, 2011
    Messages:
    88
    Likes Received:
    15
    Then you likely have some malware / trojans injected on your site, this happens many ways one of the most common is using nulled plugins & templates which come with the trojan already, or your using weak security such as out of date cms, plugins etc etc.

    Your need to go though access.log, and error.log asuming your site is on a linux box, also you may need to go though your code in the php or html. look for <Script> first and if you see encoded scripts, then focus on them first as they are normally the cause but sometimes its really tasking if its a good trojan.

    I recommend downloading the site to your desktop and doing a search on the files, and then your need to go though the SQL entries too as they will most likely be injected as well.

    GL
     
    • Thanks Thanks x 2
  3. polomint

    polomint Registered Member

    Joined:
    Sep 12, 2011
    Messages:
    88
    Likes Received:
    15
    Also, forgot to say... Prevention is a long winded post and I suggest you googling 'SECURING YOURCMS'

    But best methods are, Don't used nulled software (Pirated) unless you know the source is good (Torrents, Newgroups is no good, unless you know what too look for)

    Keep your CMS updated, and Plugins, plugins tend to be how people get in because these are widely ignored by people.

    Always check vulnerability sites which list such things, often or not most things will be listed that such and such plugin or cms has this problem and can be hacked.

    List goes on and on might, you best using Google, and seeking advice from whatever CMS your using.
     
  4. Frandy

    Frandy Junior Member

    Joined:
    Sep 20, 2008
    Messages:
    109
    Likes Received:
    16
    My hosting provider service has already cleaned the files. Now I need Google to verify the sites again. I've seen some traffic today and I am waiting to some progress tomorrow.
     
  5. polomint

    polomint Registered Member

    Joined:
    Sep 12, 2011
    Messages:
    88
    Likes Received:
    15
    https://www.google.com/webmasters/tools/malware?hl=en&siteUrl=yourdomain.com

    Hopefully you checked webmaster tools before they did, you could check to see when thats updated.

    chances are if your site is now clean, it'll be rescanned at a later date then re-index'd sadly some of your SEO scoring will be lost, but not sure how much but maybe someone with more experience with infected sites will be able to tell you.
     
  6. Frandy

    Frandy Junior Member

    Joined:
    Sep 20, 2008
    Messages:
    109
    Likes Received:
    16
    I've also made error by keeping old unused wp sites on my account. I think all these plugins have never been updated and maybe the source of that malware attack.
     
  7. mpulse

    mpulse Regular Member

    Joined:
    May 27, 2009
    Messages:
    292
    Likes Received:
    40
    Hook me up with some rep pls.. ;)

    Ok heres what you do


    You got hacked and have a virus some kinda, like base64 malware or something most likely
    you need to clean it out first

    1. Go here and scan it and see what it says
    http://sitecheck.sucuri.net/scanner/

    After you fix the malware (check all your index.html htaccess and index.php files look towards the bottom)

    2. go to webmastertools
    if the site inst there, add it.
    Then google will tell you you have malware.

    if you cleaned the site out and it has no more malware, click the review my site link (it might be named something else i cant remember the name) but after the site gets reviewed again 6-24hrs. The red page will disappear and you wont have a problem.

    But if you didnt clean out the virus, it will stay.

    the trick is to get the sucuri scanner to tell you your site is clean. but just blacklisted from google.

    Good luck, hope this helped...


    edit: to verfiy your site with WMT you just need to drop an html file in the root of your site..
    and I agree with everything polomint says thats what you need to prevent.. especially WORDPRESS!
     
    • Thanks Thanks x 1
    Last edited: Feb 18, 2012
  8. Frandy

    Frandy Junior Member

    Joined:
    Sep 20, 2008
    Messages:
    109
    Likes Received:
    16
    Thank you mpulse. I've tried to make my sites verifyed by Google but error happens again and again. I've added the html link to my header page and update the site: it should be the good process but it does not work for me when I ask again to google to verify.
     
  9. Frandy

    Frandy Junior Member

    Joined:
    Sep 20, 2008
    Messages:
    109
    Likes Received:
    16
    now I have all my sites clean
     
  10. mpulse

    mpulse Regular Member

    Joined:
    May 27, 2009
    Messages:
    292
    Likes Received:
    40
    Pm me your site

    Sent from my SPH-D710 using Tapatalk
     
  11. Frandy

    Frandy Junior Member

    Joined:
    Sep 20, 2008
    Messages:
    109
    Likes Received:
    16
    Thank you all for your great support especially mpulse. now my sites are clean and even I win some cents from Google today and some dollars from Clikbank. hehehe:D
     
  12. mpulse

    mpulse Regular Member

    Joined:
    May 27, 2009
    Messages:
    292
    Likes Received:
    40
    Np bro...
    Glad I could help

    Sent from my SPH-D710 using Tapatalk