1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Help Needed -Spam Links

Discussion in 'Black Hat SEO' started by NeedRanking, Dec 18, 2015.

  1. NeedRanking

    NeedRanking Newbie

    Joined:
    Dec 1, 2015
    Messages:
    12
    Likes Received:
    6
    Hello Guys,

    Someone Making Spam Links To My Site..

    My Website is Like mywebsitedotcom

    And Some One Making Links Like

    mywebsitedotcom ? p=good-generic-viagra
    mywebsitedotcom ? p=how-get-viagra
    mywebsitedotcom ? p=manly-generic-viagra
    mywebsitedotcom ? p=viagra-price-pharmacy


    Those Links are redirect To

    spamwebsitedotcom/ ? search=viagra

    ............

    Please Let me Know Guys :-

    how are thy doing it?
    and how do I clean it
    I hope google will see it as an obvious hack and not hit mywebsite


    My hosting company said it was an seo hack...

    Thanks In Advance
     
  2. Alchemyx

    Alchemyx Newbie

    Joined:
    Dec 13, 2015
    Messages:
    10
    Likes Received:
    26
    Location:
    # 127.0.0.1
    Home Page:
    It is SEO hack a.k.a Hacklink. A few days ago I wrote a detaield post about it but it has been deleted due to T&C violations :) Basically, your website is vulnerable due to poorly scripted code or using outdated plugins. This guys have automatic tools and they are scanning and attacking hundreds of thousands URL's in one go. It happens completely automatically.
    If you are using bespoke script then contact your developer and ask for security audit. If you are using wordpress, joomla, presta etc, make sure that all of the installed plugins (even those disabled) are updated. If you host multiple websites under one account e.g. /public_html/website1com, /public_html/website2com, /public_html/website3com and one of them is vulnerable to hacks, then all of your websites are sharing same faith as attacker can use rootshell/remote upload to gain access to your entire /public_html folder.
    Go trought your directories and check for strange files/folders and also look for files that have been recently modified. If you can find affected files and they are not the part of core script files, then delete them. If they are core files, edit and remove malicious code. When you are sure that all infected files have been deleted/updated, run an update on all plugins, themes etc and change your passwors. If you host multiple domains under one account, make sure to change mysql and ftp passwords. When you done, ask your hosting provider to run a scann on your account.

    If they modified files by "touch" you will not be able to track these changes as this will not update the dates. In order to track infected files, you will have to check them all. Manually check each file and those that are not a part of core engine you can delete. Everything else must be edited and malicious code must be removed. When you are sure that all infected files have been deleted/updated, run an update on all plugins, themes etc and change your passwors. If you host multiple domains under one account, make sure to change mysql and ftp passwords. When you done, ask your hosting provider to run a scann on your account.

    If you don't know how to solve it, ask your host for backup or upload it on your own (hope you have one :) ). Then run an update on all plugins, themes etc and change your passwors.
    Harvest indexed spam pages using following footprints:
    Remove unwanted pages using GWT :)