| Posted by webEsun, 06-29-2011, 12:26 AM | | I am getting below the message, please do let us know how can I remove it.
Site is listed as suspicious - visiting this web site may harm your computer.
Part of this site was listed for suspicious activity 1 time(s) over the past 90 days.
What happened when Google visited this site?
Of the 1 pages we tested on the site over the past 90 days, 1 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2011-06-26, and the last time suspicious content was found on this site was on 2011-06-26.
Malicious software is hosted on 1 domain(s), including rmnjky.cz.cc/.
This site was hosted on 1 network(s) including AS12129 (123NET).
Has this site acted as an intermediary resulting in further distribution of malware?
Over the past 90 days, did not appear to function as an intermediary for the infection of any sites.
Has this site hosted malware?
No, this site has not hosted malicious software over the past 90 days.
How did this happen?
In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.
Next steps:
Return to the previous page.
If you are the owner of this web site, you can request a review of your site using Google Webmaster Tools. More information about the review process is available in Google's Webmaster Help Center.
|
| Posted by CH-Shaun, 06-29-2011, 01:07 AM | | Has your website been compromised in the past? You should thoroughly check all of your PHP scripts, HTML and Javascript files.
|
| Posted by sosys, 06-29-2011, 01:25 AM | | do a scan on your files. probably someone has 'put' a harmful script on your page
|
| Posted by webEsun, 06-29-2011, 01:33 AM | | How Do I check the PHP, HTMl and JS script? any idea please.
Thanks
|
| Posted by kyij, 06-29-2011, 01:37 AM | | very carefully... I am not sure. But I would assume you can look at a previous file of your website and compare the two with the code, script and etc to see/check for changes.
|
| Posted by webEsun, 06-29-2011, 01:49 AM | | Thanks every body , but I didn't get any use full comments .
Cheers
|
| Posted by kyij, 06-29-2011, 02:02 AM | | Why could you not compare an old version of your site, to a current one to check for changes that they might have added?
|
| Posted by techjr, 06-29-2011, 02:04 AM | | What kyi posted is very usefull TBH. Look at the files before you uploaded them to the server and the current files on the server and see any major changes in code.
|
| Posted by The3bl, 06-29-2011, 02:04 AM | | Do you have root access to the server?
|
| Posted by Dexqt, 06-29-2011, 02:18 AM | | Assuming you have root access to the server, install and run LMD from R-fx Networks;
cd /usr/local/src;wget http://www.rfxn.com/downloads/maldet...ent.tar.gz;tar zxf maldetect*;cd maldetect*;sh install.sh;cd
Give that a spin (check the options that best suit you before you run it) and see if you get anything back, if you do then it'll quarantine the infected items.. at which point I'd strongly recommend looking at further securing the server, patching the kernel, making sure the usual readable/writable directories and/or partitions have the appropriate permissions, and lastly make sure you and/or your users aren't uploading dodgy opensource software that gets exploited every other day of the week. You can keep track of what does over at securityfocus.com however, what I have mentioned above does not provide a bullet proof server.
|
| Posted by cptechie, 06-29-2011, 02:53 AM | | Hello,
Also check whether there are any vulnerable iframes in the codes of your domain.
|
| Posted by m4rc3, 06-29-2011, 05:17 AM | | it's probably iframes and scripts injections, try grepping your files for it and it woudln't hurt to grep your files for the domain mentioned on google's report.
|
|
 Add to Favourites
 Print this Article
|
