Welcome to WebmasterWorld Guest from 54.166.152.121

Message Too Old, No Replies

"Malware Warning" from Google

What does it mean?

     
1:30 pm on Jan 10, 2007 (gmt 0)

5+ Year Member



Dear frnds..

While searching for a specific keywords or just typing my domain name in google and after clicking on my site, it generates a warning named: "Malware Warning". Further they say:

"Warning - visiting this web site may harm your computer!
You can learn more about harmful web content and how to protect your computer at StopBadware.org.

Suggestions:

* Return to the previous page and pick another result.
* Try another search to find what you're looking for.

Or you can continue to xyz.com at your own risk.

Advisory provided by Google"

This is the warning i m getting from google since last 10 days. What does it mean? Does google have blocked my site?

How can i resolve this problem? I think this is very serious matter for me as mine is a shopping site.

Can anyone please guide me to solve this problem?

Thank you in advance.
Rahul

6:11 pm on Jan 10, 2007 (gmt 0)

5+ Year Member



Are you using the Google Toolbar? I can't think of any other reason you'd get such a message from Google. If their search result pages ever give that message, I've sure never seen one.

The message sounds like the type you get from Pc-cillin Internet Security or McAfee. These, and probably some other anti-badware software, don't just wait to see if you download a virus from the site; they are proactive and visit the site either by crawling or by visiting it an instant before you do (they get the URL from your browser). Then they label sites as ok or not ok so they can warn their users before they even get to the site.

You could look up your site here to see if this service has actually found anything bad on your site: [siteadvisor.com...]

If they have, note what it is. One cause could be that your site got hacked.

Some of these services are overly aggressive. PC-cillin used to give a warning something like "Warning: Spyware!" on any site that had advertiser links served by Commission Junction because they use tracking cookies.

6:57 pm on Jan 10, 2007 (gmt 0)

WebmasterWorld Senior Member henry0 is a WebmasterWorld Top Contributor of All Time 10+ Year Member



PCC does it
and it's very accurate
you really better avoiding entering such site

if you do not find anything call them
or find a friend that runs PCC and call them
they are very good with cust svces

& no I do not work for them but use the product for years on all my machines :)

7:18 pm on Jan 10, 2007 (gmt 0)

5+ Year Member



Do a Google News search for StopBadWare and all will be revealed. My sympathies.

[edited by: alfaguru at 7:18 pm (utc) on Jan. 10, 2007]

7:18 pm on Jan 10, 2007 (gmt 0)

WebmasterWorld Senior Member leosghost is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month



Google search does indeed issue these kind of warnings ..if when they spidered the page they feel they had reason to beleive ( rightly or wrongly ) that the page is either taking about warez ..offers links to warez ..offers links to torrents ..or appears to be hacker / virus /trojan / spyware related or serials or downloads dialers etc ..

The google search results will issue this warning if you attempt to to click through ..it will ask if you are sure as the site or page requested may contain malware or similar ..

I suggest that if your pages are clean ..that you email google and ask them why they think you are not ..

Wether you see these warnings in the normal course of events probably depends on the colour of your hat ;-)

HTH

4:42 am on Jan 11, 2007 (gmt 0)

5+ Year Member



Dear frnds,

Actually the site i m talking bout is mine. and i m receiving this since last 10 days. I gone through siteadvisor.com, but i dont think they might help me.

Further i m sure enough and can say that my site is not distributing any kindo badware or malware. and i have also mailed stopbadware.org regarding my issue.

But is there any other way to solve this problem quickly. I m losing my traffic and users daily.

5:11 am on Jan 11, 2007 (gmt 0)

WebmasterWorld Senior Member marcia is a WebmasterWorld Top Contributor of All Time 10+ Year Member



rahul_seo, maybe it could be possible that your site got compromised without you being aware of it? Maybe changing hosts at this time and making sure all your own files are clean would help.

Do you happen to be running anything on your site that's being called from another server, like some content or graphics? I've actually had a malware issue from simply clicking on a site that was from a GIF file - so nothing is impossible any more.

5:43 am on Jan 11, 2007 (gmt 0)

5+ Year Member



i dont think there is any problem with my hosting..becuase i have more than one site running on same. and the other one is running without any problems.

Secondly i have checked my folders on server side. There is nothing found like badware or malware.

So now wat should i do?

5:53 am on Jan 11, 2007 (gmt 0)

WebmasterWorld Senior Member marcia is a WebmasterWorld Top Contributor of All Time 10+ Year Member



That's your own folders you've checked, but you still haven't answered the question of whether your site is calling any scripts or graphics from other sites - which may be causing a problem.

How about it, are you or not?

9:58 am on Jan 11, 2007 (gmt 0)

5+ Year Member



Go to the stopbadware site and follow the procedures in the faq.
11:44 am on Jan 11, 2007 (gmt 0)

10+ Year Member



The last friend I had get this warning on his site had been hacked and was loading a script on surfers when they came to his site - Google is good at detecting these - usually unless you know your server software extremely well - you will need your server tech to go through and find the script and change out the pages that are calling the script - easy check would be to view source on your online page that google search was leading to - and seeing what extra html has been added to the page
4:06 pm on Jan 11, 2007 (gmt 0)

WebmasterWorld Senior Member 5+ Year Member



Rauhul, you may want to check this link...
[news.yahoo.com...]


This could occur, Stopbadware.org wrote, if a site contains advertising from third parties that has links to other Web sites with malware. Also, an organization's Web server may have been hacked, or the site itself could have been hacked using a security exploit.

Hope that helps, good luck, your not the only one.

4:00 am on Jan 12, 2007 (gmt 0)

WebmasterWorld Senior Member tedster is a WebmasterWorld Top Contributor of All Time 10+ Year Member



Related new blog post from Matt Cutts

"We have no bad software or installs or anything that would indicate a need to ban people from viewing our site," wrote Matt Blatchley, who works for the Greenbush Southeast Kansas Education Service Center, in a posting on Friday to Google Groups.

View the source and look at the bottom of the page. See the code that looks like

<script language="javascript" type="text/javascript">var k='(encoded gibberish)',t=0,h='';while(t<=k.length-1){
h=h+String.fromCharCode(k.charCodeAt(t++)-3);}document.write(h);</script>

...I've checked out a quite a few "we don't have any malware" reports at this point, and I've yet to see a false positive -- the sites in question have each had some malware on them.

[mattcutts.com...]

He also mentions that Google will be working to help site owners better diagnose why their sites got a malware warning.

The principal message seems to be that even though YOU didn't place malware on your site, somebody else may have. Servers do get hacked (malware writers are often into hacking) and not every employee is on the level.

6:54 am on Jan 12, 2007 (gmt 0)

WebmasterWorld Senior Member marcia is a WebmasterWorld Top Contributor of All Time 10+ Year Member



A site of mine got hacked and when I moved it over to my current host's server I had a chat with the man who manages it about website security. He said that *any* scripts whatsoever that are run can open a door for vulnerability to exploits. I told him that the site in question runs no scripts, but does use PHP includes. According to him, that's enough to do it unless steps are taken.

Any /subdirectory/ that doesn't have an index page should be protected against accessing, so that the "index" of files in it isn't visible - whether it's scripts, includes, or even graphics.

2:53 pm on Jan 12, 2007 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



Marcia,

Let me correct what your hosting provider said about website security and scripts.

ANY software that doesn't checketh both high and low including but not limited to the very software that services the server software can be exploited.

Exploited software may lead to unwanted results up to and including the ability to control the server.

3:13 pm on Jan 12, 2007 (gmt 0)

WebmasterWorld Senior Member quadrille is a WebmasterWorld Top Contributor of All Time 10+ Year Member



MC also said
I’ve checked out a quite a few “we don’t have any malware” reports at this point, and I’ve yet to see a false positive — the sites in question have each had some malware on them. But this change is also relatively new, and we’ll keep working on ways to help site owners diagnose if their site has been hacked and is distributing malware.

Doesn't mean there'll never be a false positive, but I'd hesitate to dismiss it without thoro investigation - on a third party PC!

[edited by: Quadrille at 3:13 pm (utc) on Jan. 12, 2007]

1:45 pm on Jan 17, 2007 (gmt 0)

5+ Year Member



well..well..frnds..thank you very much for all your support and helping me out...

as per your intructions I have mailed stopbadware.org and they have atlast replied back..and my site is back in google...:)

Thanks a lot again...

5:29 pm on Jan 17, 2007 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



The message sounds like the type you get from Pc-cillin Internet Security or McAfee. These, and probably some other anti-badware software, don't just wait to see if you download a virus from the site; they are proactive and visit the site either by crawling or by visiting it an instant before you do (they get the URL from your browser). Then they label sites as ok or not ok so they can warn their users before they even get to the site.

Often libeling innocent sites (like mine) in the process. What they chiefly fail on is toolbar addons, which they often falsely identify as malware, but then tell the world the site is dangerous when it is not.

Matt

11:01 pm on Jan 17, 2007 (gmt 0)

WebmasterWorld Senior Member quadrille is a WebmasterWorld Top Contributor of All Time 10+ Year Member



What's a toolbar addon?
 

Featured Threads

Hot Threads This Week

Hot Threads This Month