The Joomla! Forum ™

http://www.notjustpayroll .net
http://www.notjustpayroll .com

Shut down by Google.
I first went to HostGator the host and asked them why they had shut this site down.
They replied, that it was not their doing and that I needed to contact Google through using Googles "Webmaster Tools". At this time HostGator also did a scan that came back clean. I was still directed to go through Google.

I logged into the Google Webmaster Tools and added the sites and selected the button "Request a review".

A few hours went by and I returned to Google WebMaster Tools to see if anything had changed. They had the following links listed as
"Problematic URLs on http://www.notjustpayroll .net/" and below are the URLS:

http://notjustpayroll. net/
http://www.notjustpayroll. net/
http://www.notjustpayroll. net/index.php?option=com_content&view=article&id=50&Itemid=62

Q: If I have no access to the Joomla admin back-end how do I access anything to even begin to fix it?

Any help would be greatly appreciated.

<removed>

Hi,
If your website site is compromised, submitting a request request will not help you.

You'll first need to have someone review every file on your website via FTP or SSH, remove the injected malware, and locate any back door scripts hiding in the background. Only once your website is fully clear of malware will you be able to convince Google to lift the ban on your website.

it is very "odd" that google will have removed or disabled your site.
http://google.co.uk/safebrowsing/diagno ... yroll.net/
it may have just been removed from their search results.

Your site should still be accessible via the hosts control panel



[ ] Download and RUN the Forum Post Assistant / FPA Instructions available here and are also included in the download package. Post the generated results in your security/been hacked topic.

[ ] Ensure you have the latest version of Joomla for your 1.5 or 2.5 version of Joomla. Delete all files in your Joomla installation, saving a copy of the configuration.php file.

[ ] Review Vulnerable Extensions List to make sure any 3rd party extensions versions used appear on the vulnerable list.

[ ] Review and action Security Checklist 7 Make sure you've gone through all of the steps.

[ ] Scan all machines with FTP, Joomla super admin, and Joomla admin access for malware, virus, trojans, spyware, etc. Checklist 7 contains a list or recommended scanners.

[ ] Change all passwords and if possible user names for the website host control panel. Change the Joomla database user name and password.

[ ] Use proper permissions on files and directories. They should never be 777, ideal is 644 for files and 755 for directories. The configuration file can be set to 444 which is read only.

[ ] Check your htaccess for for any odd code (i.e. code which is not in the standard htaccess supplied as part of the Joomla installation).

[ ] Check the crontab or Task Scheduler for unexpected jobs/tasks.

[ ] Ensure you do not have anonymous ftp enabled.

[ ] Verify individually that any non-Joomla file such as but not limited to that will be placed back on the website such as images, pdf files, files for download, and other documents and files are valid and are supposed to be part of your website.

[ ] Replace the deleted files with fresh copies of a current full version of Joomla (minus the installation directory) you downloaded earlier. Install freshly downloaded copies of any extensions and templates used on the site. If the Joomla database user name and password were changed earlier, then make the necessary changes to the configuration.php file and upload a copy to the website. Upload any non-Joomla files that are necessary for your website. Only by replacing all files in the installation (including extensions and templates) can you be sure to remove the backdoors inserted and hidden in various files and directories More detailed information can be found in the Security Checklist 7

_________________
HU2HY- Poor questions = Poor answer
Un requested Help PM's will be added to the foe list and possibly just deleted
{Community.Connect Administrator }{ Showcase & Security Moderator}

Yes, Google did in fact shutdown my clients website!
DO NOT BE FOOLED, GOOGLE IS MORE THAN JUST A SEARCH ENGINE!!!!!

---------------------------------

The site is back up and running.
The site is hosted by HostGator.com (great service) .... I notified Host Gator of the problem and they told me that it was Google who took the site down because Google's web bots found malware somewhere in the website.

HostGator did a search for any malware. There was not any malware to be found.
I was told my HostGator that I had to login to Google "Gmail" and use their "Web Master Tools" to submit to have the site reviewed.

This particular client owns both the ".COM" and the ".NET" domains.
I forgot about this and had only the ".COM" submitted. They did not release the site. I went back a week later and submitted the ".NET" and they did release it.

<removed>

"Mandville" thank you very much for your awesome response.


David

No problem, it is a community led checklist put into one easy to understand format

_________________
HU2HY- Poor questions = Poor answer
Un requested Help PM's will be added to the foe list and possibly just deleted
{Community.Connect Administrator }{ Showcase & Security Moderator}