hi everybody, I'm new to digital point and i'm sure that i can really find a solution to my problem here; I told my friends about the problem that i encounter with Google and most of them recommended me to register in digitalpoint, and they promised that this is the best place to solve my prob. any way, my prob is that, I own a website, and suddenly without any previous warnings, i found that google diplays a warning page when i'm trying to enter the website that the website is harmfull and contains malware... I scanned my website and removed all the suspicious files that I have found and requested a review from google staff through Google Webmasters tools, but it is INVAIN. nobody, listen or i don't know what is happening exactly, it is more than a month now and i still have the warning page before I enter my website, I don't know why although my website is now safe completely Hope that anybody can really HELP me and tell me what to do exactly, please It is really important ....... BTW my website is OnlySuper.com
all the pages of my website have the same warning message, and even in the search engine results there is a message appear under the link says that " This site may harm your computer" really don't know why although my website is safe and don't contain any viruses or malware.....!!
A lot of websites might be experiencing that. There are some Trojans which attack the FTP applications and then, when you upload your web pages, especially the INDEX files, they are added to them. Scan and clean your computer, reupload and wait or use your Webmaster Tools to contact Google.
Safe Browsing Diagnostic page for onlysuper.com What is the current listing status for onlysuper.com? Site is listed as suspicious - visiting this web site may harm your computer. Part of this site was listed for suspicious activity 3 time(s) over the past 90 days. What happened when Google visited this site? Of the 24 pages we tested on the site over the past 90 days, 21 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2009-10-05, and the last time suspicious content was found on this site was on 2009-10-05. Malicious software includes 4 scripting exploit(s). Successful infection resulted in an average of 5 new process(es) on the target machine. Malicious software is hosted on 3 domain(s), including atmatm.net/, 212.174.200.0/, feedspider.org/. 1 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including step2me.net/. This site was hosted on 2 network(s) including AS21788 (NOC), AS36351 (SOFTLAYER). Has this site acted as an intermediary resulting in further distribution of malware? Over the past 90 days, onlysuper.com did not appear to function as an intermediary for the infection of any sites. Has this site hosted malware? No, this site has not hosted malicious software over the past 90 days. How did this happen? In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message. Next steps: * Return to the previous page. * If you are the owner of this web site, you can request a review of your site using Google Webmaster Tools. More information about the review process is available in Google's Webmaster Help Center.
I scaned all my public HTML files and deleted the infected files, then reuploded them, and I'm sure now that my website is clean and safe. BUT google still says that it is harmful, I hope that they can tell me if they use a more advanced virus scanner or let me know the infected files which they find in order to delete them. don't know how to contact with them, I tried many times to give google a feedback through my webmasters tools and unfortunately, no body answers...... Does anyone have any suggestions?!
You site has virus script or Iframe virus in your pages first you need to remove the script from the pages then submit it in google for request to reviewing my website again. This will really help you to sort out this thing Ady
There is definitely a squatter script on your html files. No matter how you clean it and reupload new files.. the script will just run again through your file structures... What you need is after re-uploading the files.. have your index file chmod to 444.. unwritable.. so that the script cannot write into your html code. If you just upload the files without securing it, the problem will just come back all over your new files.
clean your site and request a reconsideration. There is sthg wrong unfortunately. G is an algorithm and so there is sthg wrong in your coding.
thanks catrosinfo, may be that is what i was missing, but there is another prob that i really don't know how to have my index file chmod to 444.. unwritable, so if you have any suggestion let me know, thanks agai
Yeah, I would love to help... it probably ain't gonna take 10 seconds to do. But you can actually do it yourself. If your server is linux/unix like mine... just go to your cpanel, go to file manager, then public_html folder(that's your root directory), then the directory of your website if not the root directory, click on the index file.. do not double click it, just click it once, then change permission... file permission is what we call chmod... it is probably set to standard writable 644, change it to 444. Now if your server is windows based, your control panel may look different, but the process of changing file permission is still similar. Just set it to "read only." Regards
Simply cleaning it will not do the trick. You got to set a file security. And by the way,DO NOT execute the infected file in your local machine, if it has a server... it will crawl all your index file and sit on those.
thanks for the tips, and sorry for asking again..... i can't understand the point that i shouldn't execute the file in my local machine because I already did that, I deleted the infected index files from my server ( Cpanel) and then re uploaded the them from my PC, is that what you mean?!
I have experienced like this. at the time my web infected by worm/virus we can not solve the case by my self. That you need to do are contacting your webhosting support and tell them what your problem.ou. they will work for you. Just report it and they will scan and clean your web files.
I had this happen once too, just delete the malware and then resubmit, google will pick it back up but it won't be a priority site. In the meantime try creating a new domain and shifting all of your content to the new domain.