Google Malware Message
-
*Update 9/19/2013
So I finally have more details the site is a joomla site and is hosted on godaddy. The weird thing is the malware message only appears when browsing the site in chrome it comes up fine in internet explorer any specific reason why that would be? Also we noticed that on the joomla template there were about 6 scripts after the tag that were adult site related and have nothing to do with our site, any ideas? I appreciate all/any suggestions and or advice. Thank You.
I had a client recently pay about $300 for a site design that she hosted on go daddy. This is the site www.shirianfabric.com can anyone tell me why this would happen its only been live for about three months and out of no where we get this message? My client is thinking maybe the designer inserted some kind of malicious code?as he is now charging a couple hundred to fix the issue. Is there any way to look further into this? Im not sure a webmasters account was ever set up for this site so any advice would be greatly appreciated. Thanks.
-
Thank You! The site in question had the same malicious scripts detailed here. After finding them and removing them the site is up and running as it should thanks again for the advice.
-
Thank you very much for the links you provided. After doing some research I found some shady scripts on the website templates after removing the scripts everything seemed to work fine. We have changed the login info because unfortunately it looks as if the designer himself inserted the malicious code. Again thanks for the links and the info they got me on the right track.
Below is the malicious script for anyone having similar issues
-
I checked the site, and saw something a bit odd. This link kinda explains the problem, as you have the same code they have identified as a problem.
http://www.oxwall.org/forum/topic/11304
I would recommend in the first instance your client speak to their host. I am not overly sure how good Godaddy is, but I haven't heard good things. The common fix for this is reverting for a backup prior to this event happening.
In addition, once fixed install http://wordpress.org/plugins/better-wp-security/
If you do not have a backup, then try reinstalling wordpress files (keep the database). Delete all plugins, and reinstall from fresh. But for the love of god... take a backup first.
If you need a recommendation for a host try Siteground for specialist Wordpress hosting, or Hostnine for something cheaper, but very good. We use both, but mainly Hostnine for client sites.
-
My web development company (Everbearing Services) moved all of our clients off of Godaddy several years ago because of performance and security issues. There are several other good web hosts out there. The one that I feel is a true gem is one called Zippykid which only hosts word press web sites. They also provide security and malware scanning automatically. They also do all the patches and updates you might need.
They use Rackspace as their back end infrastructure. If your web site is not on Wordpress you might consider these guys. I have read in other posts that a provider Firehost is really good.
I have not seen any good reports on Godaddy lately.
That is my two cents if this helps. If you do not get your questions answered here and need any further help on this feel free to call me tomorrow or Monday.
Ron
-
The dangers of shared servers! If someone else's website on the server has vulnerable script on their site hackers can inject code on other sites on the same server... Remove the malicious code and talk to GoDaddy, hopefully they've picked it up and removed the offending site?
Of course, it could be that GoDaddy don't have the latest security patches installed on their servers and they are the cause!?!
-
Here is a step-by-step of what you could try doing from Cypress North: Hacked? Here's How to Remove the Dreaded Google Malware Warning.
Google also says, "If you're the administrator of a site we've identified with this warning message, learn how webmasters can fix this issue. Note that in some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message."
Good luck.
Mike
-
Set up WBT and Bing web tools. This will tell you whats happening from the malware side of things.
Got a burning SEO question?
Subscribe to Moz Pro to gain full access to Q&A, answer questions, and ask your own.
Browse Questions
Explore more categories
-
Moz Tools
Chat with the community about the Moz tools.
-
SEO Tactics
Discuss the SEO process with fellow marketers
-
Community
Discuss industry events, jobs, and news!
-
Digital Marketing
Chat about tactics outside of SEO
-
Research & Trends
Dive into research and trends in the search industry.
-
Support
Connect on product support and feature requests.
Related Questions
-
Do things like using labels on an element that is not a form input affect how google sees us in regards to accessibility?
Do things like using labels on an element that is not a form input affect how google sees us? It's an accessibility error that our devs have made - using a label element because it looks good, not because it's an actual label on a form field. Just wondering how that affects accessibility in Google's eyes.
Web Design | | GregLB0 -
Why is my homepage not indexed by Google or Bing
http://www.schoppnutritionclinic.com/ Home page is not indexed by Google or Bing but all other pages are indexed. I know that currently i am missing the robot.TXT file and the sitemap. This is something i am woking on as a possible solution. I would have thought Google/Bing would have still indexed this page regardless of the lack of sitemap/robot.txt files not being present. I attempted to run a fetch and render in Webmaster tools and received a Not Found status.
Web Design | | ChrisSams0 -
Do you know any tool(s) to check if Google can crawl a URL?
Our site is currently blocking search bots that's why I can't use Google Webmaster Tools' URL fetch tool. In Screamingfrog, there are dynamic pages that can't be found if I crawl the homepage. Thanks in advance!
Web Design | | esiow20130 -
Title tag on Google starts with company name then :
Can someone help me and tell me why Google picks up and shows the title tag as for example: SEOmoz**: SEO Software. Simplified.** Then if you click through and look at the cache version of the page it shows the title tags as just SEO Software. Simplified. So without the SEOmoz: at the start. http://webcache.googleusercontent.com/search?q=cache%3Awww.seomoz.org%2F&aq=f&oq=cache%3Awww.seomoz.org%2F&aqs=chrome.0.57j58.3052&sourceid=chrome&ie=UTF-8 Its probably something really easy and I'm going to kick myself when someone tells me but I can't figure out why?
Web Design | | i3MEDIA1 -
Changing Links that Show Up when I Google Brand (Site) Name
Hi SEOmoz Community, A quick question for you all. I've added an attachment for reference. When I google my brand name, say for example, Applied StemCell, I see six links as well below the description. Oddly though, these links seem to be chosen at random, or at least I'm not sure how Google decides on them. When I click on one of the links that is the company's name, Applied StemCell it brings me to a PDF document! Is there any way I can choose which ones to display there? Thanks! OF2oVVN.png
Web Design | | swzhai0 -
Does Google take email server IP blacklists into account?
This is just a hypothetical, but would Google use information from email server blacklists to determine the quality of a website? The reason is that we're planning to code in an e-mail queuing system for our next CMS, and we would put SPF and DKIM in place. We wouldn't be sending any bulk e-mails (we use Constant Contact for this), but we might be sending personalised follow up e-mails, unpaid order emails and that sort of thing. There's no reason to think we'll be blacklisted, but from experience I know that these email blacklist directories quite often give false positives when an e-mail server is incorrectly configured. So the risk is that we might get blacklisted by mistake when we start using this new feature. Would Google take this into account as part of the algorithm? And if so, would the damage be permanent? (I.e. does getting removed from the blacklist mean Google will stop thinking we're a low quality / spammy site)
Web Design | | OptiBacUK0 -
Why is Google sending traffic to our homepage, not our optimized pages?
Hello Forum, My team and I just completely redid a yoga eCommerce site, including its SEO. The old version of the site didn't feature page-specific optimization and, as a result, Google's search results for our keywords almost always directed visitors to the homepage. For example, a Google search for the term "yoga bolster" sent users to the homepage, not the product category page for yoga bolsters. After redoing the site and optimizing specific pages (i.e. the yoga bolster page is now optimized for the keyword "yoga bolster"), the Google search results are still taking users to the homepage, not the optimized page. (i.e. if you search for yoga bolster, find our search result, and click the search result link, you're taken to the homepage, not the bolster page) It's only been about 36 hours since we've launched the new website and submitted it to Google's webmaster tools. Does anyone know why Google is still sending people to our homepage and not the keyword-optimized pages we created? Is this a timing issue?
Web Design | | pano0 -
The primary search keywords for our news release network have dropped like a rock in Google... we are not sure why.
Hi, On April 11th, a month after the farmer update was released for U.S. users of Google, the primary keywords for ALL our sites significantly dropped in Google. I have some ideas why, but I wanted to get some second opinions also. First off, I did some research if Google did anything on the 11th of April... they did. They implemented the farmer update internationally, but that does not explain why our ranks did not drop in March for U.S. Google users... unless they rolled out their update based on what site the domain is registered in... in our case, Canada. The primary news release site is www.hotelnewsresource.com, but we have many running on the same server. EG. www.restaurantnewsresource.com, www.travelindustrywire.com and many more. We were number 1 or had top ranks for terms like ¨Hotel News¨, ¨Hotel Industry¨, ¨Hotel Financing¨, ¨Hotel Jobs¨, ¨Hotels for Sale¨, etc... and now, for most of these we have dropped in a big way. It seems that Google has issued a penalty for every internal page we link to. Couple obvious issues with the current template we use... too many links, and we intend to change that asap, but it has never been a problem before. The domain hotelnewsresource.com is 10 years old and still holds a page rank of 6. Secondly, the way our news system works, it´s possible to access an article from any domain in the network. E.G. I can read an article that was assigned to www.hotelnewsresource.com on www.restaurantnewsresource.com... we don´t post links to the irrelevant domain, but it does sometimes get indexed. So, we are going to implement the Google source meta tag option. The bottom line is that I think we put too much faith in the maturity of the domain... thinking that may protect us... not the case and it´s now a big mess. Any insight you can offer would be greatly appreciated. Do you think it was farmer or possibly something else? Thanks, Jarrett
Web Design | | jarrett.mackay0