Welcome to WebmasterWorld Guest from

Forum Moderators: open

Message Too Old, No Replies

Cleaning Cloaked Site

How do I remove links to external sites placed on my site by interlopers?

3:55 pm on Feb 22, 2011 (gmt 0)

New User

5+ Year Member

joined:Feb 22, 2011
posts: 1
votes: 0

Somebody implanted links on my website to their horrible spammy viagra/cialis sites. These links are revealed when I use the Fetch as Googlebot option in Google's webmaster tools, as well as when I run a site: query on google.com.

How do I clean these from my site? They don't show up in my code, so I can't just delete them. Is there a tool I can run to disinfect my site? It's running on a shared server at bluehost.

Any help greatly appreciated.
2:47 pm on Feb 25, 2011 (gmt 0)

Senior Member

WebmasterWorld Senior Member topr8 is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Apr 19, 2002
votes: 80

check to see if there is anything in .htaccess that you don't recognise.

otherwise the best solution is to contact your host and ask them - the entire server could have been hacked not just you, and if that is the case just move hosts.
9:23 pm on Mar 9, 2011 (gmt 0)

Senior Member

WebmasterWorld Senior Member 10+ Year Member Top Contributors Of The Month

joined:Nov 26, 2002
votes: 1

if that is the case just move hosts.

Move to where? to the host who's next in line to be hacked?! -

If your host does not provide the service needed, move.

Otherwise, let them solve the problem for you.
3:40 am on Mar 10, 2011 (gmt 0)

Preferred Member

10+ Year Member

joined:July 25, 2006
posts: 460
votes: 0

Something in your site is testing whether the request is coming from googlebot, and serving alternate content if it is.

That can be done in .htaccess. Check your .htaccess for redirect code. Also search for new .htaccess files that aren't supposed to be there.

It can also be done by a malicious .php script embedded somewhere in your site. It would have to be in a script invoked for every page load; for example, a header or include file.

If your site is not just showing "links" but also the drug sales pages, it's possible the hackers have embedded their entire drug website inside your site, possibly bundled into a single big .php script with the contents base64_encoded to make it harder to find with text searches.

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members