Looking for someone to help with a delisted site after a malicious hack
-
Hello,
My website - www.musillawfirm.com was recently hacked and has been de-listed by google. It had some sort of a crypto mining script on it that I was able to remove. It shows up if you type in the domain but even a generic search for "musil law firm" does not show the site - it used to rank # 1 for that term and #1 or 2 for immigration lawyer in my local area. If anyone can assist me in getting it re-indexed please let me know and let me know how much it would cost. I tried getting it re-indexed through the search console, but no luck.
Thank you kindly
-
Hello
Many sites can help you solve your problem
One of the best hack and security websites in Iran that also provides security services for outsiders is PentestCore whose web site addresses are as follows:
https://pentestcore.com/ -
Ok this is, not a simple process
STEP - 1 Review Warning Status
Your website is blacklisted because Google scanned your site and found harmful behavior. Google needs to protect its users from dangerous websites that show up in their search results. In fact, websites that repeatedly get blacklisted for malicious behavior are limited to only one review every 30 days. That big red splash page (and warnings next to your site in Google's search results) are designed to stop visitors from entering your site. It works, too. Websites lose about 95% of their traffic when blacklisted by Google.
The specific warning message on your site can help you to understand what Google is telling you about the type of security issues they found on your site. This information will be useful in the following sections of this guide.
Here are a few examples of common malware warnings that suggest your hacked website is serving malicious downloads such as viruses, spyware, rootkits, and ransomware. Most browsers use Google's blacklist API, but Microsoft (IE/Edge) have their own. The following images are examples of this kind of blacklist warning from popular browsers.
- Website Malware Warnings
- Website Phishing Warnings
So the first step is to identify which one is your problem
STEP - 2 Fix Blacklist Symptoms
If you use a CMS such as WordPress or Joomla, you can safely rebuild the site using fresh copies of your core files and extensions directly from the official repositories. Custom files can be replaced with fresh a recent backup, as long as it's not infected.
To manually remove a malware infection from your website files:
- Log into your server via SFTP or SSH.
- Create a backup of the site before making changes.
- Search your files for any reference to malicious domains or payloads you noted.
- Identify unfamiliar or recently changed files.
- Restore suspicious files with copies from the official repository or a clean backup.
- Replicate any customizations made to your files.
- Test to verify the site is still operational after changes.
To manually remove a malware infection from your database tables:
- Log into your database admin panel.
- Make a backup of the database before making changes.
- Search for suspicious content (i.e., spammy keywords, links).
- Open the table that contains suspicious content.
- Manually remove any suspicious content.
- Test to verify the site is still operational after changes.
- Remove any database access tools you may have uploaded.
To clean up your user accounts:
Confirm all website user accounts are valid:
- CMS users
- FTP/SFTP/SSH users
- Database administration panels (PHPMyAdmin, etc.)
- cPanel accounts
- Hosting company logins
- Change all passwords for all users.
- Enable two-factor-authentication (2FA) if it is available.
Backdoors commonly include the following PHP functions:
- base64
- str_rot13
- gzuncompress
- eval
- exec
- create_function
- system
- assert
- stripslashes
- preg_replace (with /e/)
- move_uploaded_file
Step 3 Final Steps
To remove the blacklist warning you need to let Google know that you have completely cleared the infection. To do this, you must have a Google Search Console account (formerly Webmaster Tools).
To verify ownership of your website in Google Search Console:
- Open Google Webmaster Central.
- Click Search Console and sign in to your Google account.
- Click Add a site.
- Type in your site's URL and click Continue.
- Verify your site using the Recommended method or Alternate methods options.
- Click Add a site.
- Click Verify.
- Check the Messages section to review any warnings.
_NOTE: THIS JUST A GUIDE BASED ON MY EXPERIENCE, KEEP IN MIND THAT SOME THINGS CAN BE VALID TO YOUR CASE AND OTHERS WILL NOT VALID, ALL DEPENDS ON YOUR CMS, YOUR SERVER CONFIGURATION AND I CAN NOT GIVE YOU A EXACT ADVICE WITHOUT SPECIFIC INFORMATION _
IF THE ANSWER WERE USEFUL DONT FORGET TO MARK IT AS A GOOD ANSWER
GOOD LUCK
-
Thank you! How do I remove it? And how do I ask google to take me off the blacklist?
Thank you
-
I made an audit and your situation does not look ok.
http://www.musillawfirm.com/
Virus: HTTP
Virus: SmallHTTP
Virus: W32/Http.FILESHARE
Virus: W32/HTTP.A!dos
Virus: W32/Kryptik.WWW
Virus: VBS/Doget.HTTP!tr.dldr
Virus: Riskware/TinyHTTP
Virus: W32/NukeHTTP.A!trThe Fortinet Anti-Virus Analyst Team is currently in the process of creating a detailed description for this virus.
HOPE THIS INFO CAN HELP YOU
-
If you have been hacked probably Google put you on a blacklist. So, in that case, you need to clean up your site, and then request an evaluation process on Google. You will need to explain what happened, and what did you about it. I have a case like this a year ago.
Once they make sure you are a secure site, then you will visible again. I try to enter to your website and the firewall is blocking your site.
URL: http://www.musillawfirm.com/
Category: Malicious WebsitesSo, in that case, your site is still insecure or still is on a blacklist or even both.
Got a burning SEO question?
Subscribe to Moz Pro to gain full access to Q&A, answer questions, and ask your own.
Browse Questions
Explore more categories
-
Moz Tools
Chat with the community about the Moz tools.
-
SEO Tactics
Discuss the SEO process with fellow marketers
-
Community
Discuss industry events, jobs, and news!
-
Digital Marketing
Chat about tactics outside of SEO
-
Research & Trends
Dive into research and trends in the search industry.
-
Support
Connect on product support and feature requests.
Related Questions
-
Competition site with Duplicate Name
I have a client who is in real estate and one of his competition used the same Name and Domain and added the word Toronto in front. The competition is putting similar content on the website. The competition also hijacked the Google listing since they both work in the same building. Is this going to affect the ranking our website? What negative effect will it put on our website?
Intermediate & Advanced SEO | | KaranX0 -
Is my site being penalized?
I've gone through all the points on https://moz.com/blog/technical-site-audit-for-2015 but the site only ranks for its brand name after months. The website is not ranking in the top 100 for any main keywords (2,3,4 word phrases), only for a handful of very long phrases (4+). All of the content is unique, all pages are indexed, the website is fast and doesn't contain any crawl errors and there are a couple of links pointing to it. There is a sitewide follow link in the footer pointing to another domain, its parent company and vice-versa. This is not done for any SEO reasons but the companies are related and also the products are supplementary of each other. Could this be an issue? Or is my site being penalized by something else?
Intermediate & Advanced SEO | | Robbern0 -
Multilingual Site and 301 redirection
Hey there awesome people of Moz I have this site that has many languages in it. The main language is English and my developer did the following www.example.com ( is the main site ) which redirects with a 301 to www.example.com/en if your geo location is supported by our languages then you will automatically be redirected to whatever language you have in your country but does the first language with is english have to 301 redirect to www.example.com/en ? I thought that the right way is to just leave /en at the root file. Thanks in advance
Intermediate & Advanced SEO | | Angelos_Savvaidis0 -
What things, that we might overlook, help retain link juice on the site?
Since subscribing to Moz, I have been focussing alot on some of the more technical aspects of SEO. The current thing I am finding interesting is stopping link juice leaks. Here are a selection of some of the things I have done: I have cloaked my affiliate links - see http://yoast.com/cloak-affiliate-links/ Removed some html coded social share links within the theme, and replaced with javascript plugin (http://wordpress.org/plugins/flare/) Used the Moz toolbar to view as Google, to see what google is seeing. Removed some meta links at the bottom of blog posts (author etc) that were duplicated. Now, I don't intend to go over the top with this, as links to social accounts on each page are there to encourage engagement etc, but are there any things you may have come across \ tips that people may have overlooked but perhaps should look out for? As example as some of the things that might be interesting to discuss: Are too many tags, categories bad? Do you index your tag, date archive pages? Does it matter?
Intermediate & Advanced SEO | | Jonathan19790 -
Need help on SEO for my site. Can't figure out what is wrong.
My site, findyogi.com, isn't ranking well in google SERPs. For some good content and matching keyword, my pages are ranking 200+ whereas other sites that have similar or lower authority are ranking in top 10. I must be doing something fundamentally wrong but can't seem to figure out what. I am not looking at ranking 1 on google right now but my pages don't appear even on page 2-4. Sample Keyword- "Samsung galaxy s4 price in india" . Matching page - www.findyogi.com/mobiles/samsung/samsung-galaxy-s4-b94a37/price Please help.
Intermediate & Advanced SEO | | namansr0 -
Is it possible to Spoof Analytics to give false Unique Visitor Data for Site A to Site B
Hi, We are working as a middle man between our client (website A) and another website (website B) where, website B is going to host a section around websites A products etc. The deal is that Website A (our client) will pay Website B based on the number of unique visitors they send them. As the middle man we are in charge of monitoring the number of Unique visitors sent though and are going to do this by monitoring Website A's analytics account and checking the number of Unique visitors sent. The deal is worth quite a lot of money, and as the middle man we are responsible for making sure that no funny business goes on (IE false visitors etc). So to make sure we have things covered - What I would like to know is 1/. Is it actually possible to fool analytics into reporting falsely high unique visitors from Webpage A to Site B (And if so how could they do it). 2/. What could we do to spot any potential abuse (IE is there an easy way to spot that these are spoofed visitors). Many thanks in advance
Intermediate & Advanced SEO | | James770 -
My site links have gone from a mega site links to several small links under my SERP results in Google. Any ideas why?
A site I have currently had the mega site links on the SERP results. Recently they have updated the mega links to the smaller 4 inline links under my SERP result. Any idea what happened or how do I correct this?
Intermediate & Advanced SEO | | POSSIBLE0 -
On-Site Optimization Tips for Job site?
I am working on a job site that only ranks well for the homepage with very low ranking internal pages. My job pages do not rank what so ever and are database driven and often times turn to 404 pages after the job has been filled. The job pages have to no content either. Anybody have any technical on-site recommendations for a job site I am working on especially regarding my internal pages? (Cross Country Allied.com)
Intermediate & Advanced SEO | | Melia0