Welcome to WebmasterWorld Guest from 54.167.46.29

Forum Moderators: incrediBILL & martinibuster

Message Too Old, No Replies

Attack of the click fraudsters

My site is under attack - next step?

     
2:30 pm on Jul 25, 2006 (gmt 0)

Preferred Member

10+ Year Member

joined:Jan 10, 2004
posts:422
votes: 0


Couple of days without internet access while moving into a new house so today I log in and start checking stats on my sites, to my HORROR I find that my number one referal link is from one of those "You click on me, I'll click on you" sites, actually from a PHP toolbar from that site.

Since I don't know how many of these referals have actually clicked links in the last few days, I don't know how bad the damage is but I am petrified.

Anyone faced this? What did you do? How did it turn out?

I am going to block the site now, but is the damage done?

M

hunderdown

3:45 pm on July 25, 2006 (gmt 0)

Inactive Member
Account Expired

 
 


Notifiy Google, the sooner the better.
3:51 pm on July 25, 2006 (gmt 0)

Preferred Member

10+ Year Member

joined:Jan 10, 2004
posts:422
votes: 0


Yep, gonna do that now. I am having trouble remembering how to block a url in my htaccess file, if I put deny http://www.example.com, I get a 500 error when trying to access my site, anyone have a code snippet for the htaccess to block a specific URL. I searched but am having trouble finding a clear answer.

Thanks,
M

4:07 pm on July 25, 2006 (gmt 0)

New User

10+ Year Member

joined:Sept 21, 2004
posts:2
votes: 0


RewriteEngine on
# Options +FollowSymlinks
RewriteCond %{HTTP_REFERER} example\.com [NC]
RewriteRule .* - [F]

This will give out a 403 forbidden error.

4:26 pm on July 25, 2006 (gmt 0)

Senior Member from US 

WebmasterWorld Senior Member 5+ Year Member

joined:Mar 11, 2006
posts:1109
votes: 0


ianpurton

Thanks,

I logged that for future reference.

You just never know.

7:50 pm on July 26, 2006 (gmt 0)

Junior Member

10+ Year Member

joined:Nov 23, 2004
posts:78
votes: 0


You can also deny the IP address with:

DENY FROM 64.193.62.5
or
DENY FROM 64.193.62 # server will match first 3 octets
DENY FROM 64.193.62.0/24 # block the entire class C (CIDR assignment)

IP range used as an example only.

[edited by: TXGodzilla at 7:52 pm (utc) on July 26, 2006]

4:23 pm on July 28, 2006 (gmt 0)

Senior Member

WebmasterWorld Senior Member 10+ Year Member

joined:Apr 25, 2005
posts:677
votes: 0


Never faced this but the first thing to do is to notify Google before its too late
8:31 pm on July 28, 2006 (gmt 0)

Preferred Member

10+ Year Member

joined:Jan 10, 2004
posts:422
votes: 0


Google notified, canned response received, site blocked, no more referals showing up so hopefully all is well:)
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members