Google say my site is still hacked after cleanup [solved]
Moderators: mandville, General Support Moderators
Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Forum Post Assistant / FPA - If you are serious about wanting help, you will use this tool to help you post.
Windows Defender SmartScreen Issues <-- please read this if using Windows 10.
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Forum Post Assistant / FPA - If you are serious about wanting help, you will use this tool to help you post.
Windows Defender SmartScreen Issues <-- please read this if using Windows 10.
- bgrinter
- Joomla! Apprentice
- Posts: 38
- Joined: Wed Jan 03, 2007 2:06 pm
- Location: Sydney
Google say my site is still hacked after cleanup [solved]
Hi
I have a site (http://www.airleague.com.au) that was hacked in March and cleaned by Phil at myjoomla.com
This morning I received an email from Google
Content injection
These pages appear to be modified by a hacker with the intent of spamming search results.
Show details
Sample URLs Last detected
http://www.airleague.com.au/?start=30 10/04/2017
http://www.airleague.com.au/news/articl ... -last-f111 10/04/2017
This was 11 days ago, but after the cleanup.
I've run another audit from myjoomla.com and no hacked content found
I've checked the pages rendered by google and appears to be no spammy content
I've downloaded samples from their page but the "snippets" column is empty
Has anyone seem false positives before? Is this showing me old results from before the cleanup?
Before I request a review I want to make sure everything is covered
I have a site (http://www.airleague.com.au) that was hacked in March and cleaned by Phil at myjoomla.com
This morning I received an email from Google
Content injection
These pages appear to be modified by a hacker with the intent of spamming search results.
Show details
Sample URLs Last detected
http://www.airleague.com.au/?start=30 10/04/2017
http://www.airleague.com.au/news/articl ... -last-f111 10/04/2017
This was 11 days ago, but after the cleanup.
I've run another audit from myjoomla.com and no hacked content found
I've checked the pages rendered by google and appears to be no spammy content
I've downloaded samples from their page but the "snippets" column is empty
Has anyone seem false positives before? Is this showing me old results from before the cleanup?
Before I request a review I want to make sure everything is covered
Last edited by mandville on Sun Apr 23, 2017 3:21 pm, edited 1 time in total.
Reason: marked solved as per op
Reason: marked solved as per op
Brian
- leolam
- Joomla! Master
- Posts: 20652
- Joined: Mon Aug 29, 2005 10:17 am
- Location: Netherlands/ Germany/ S'pore/Bogor/ North America
- Contact:
Re: Google say my site is still hacked after cleanup
Links and site seem to be clean (virustotal.com). I have scanned the 2 pages for any malicious code and reviewed the code and the pages do not contain any malware. You can ask for a review imho but one general remark is needed. You should consider getting an SSL for the site. Google is since January indexing sites that have a) login and b) mail subscription without any SSL as risky sites. That is since their campaign Safe Browsing started and will give your site in their Chrome browser (Firefox starts implementing this moment as well) the "unsafe" warning (you are already marked as unsafe) See more https://security.googleblog.com/2016/09 ... e-web.html
I would first make sure that you have a proper working SSL installed, make sure that your script links (mailchimp for instance) point to https external site links (otherwise you still will get unsafe notice) and follow up after that with a Review
Leo
I would first make sure that you have a proper working SSL installed, make sure that your script links (mailchimp for instance) point to https external site links (otherwise you still will get unsafe notice) and follow up after that with a Review
Leo
Joomla's #1 Professional Services Provider:
#Joomla Professional Support: https://gws-desk.com -
#Joomla Specialized Hosting Solutions: https://gws-host.com -
#Joomla Professional Support: https://gws-desk.com -
#Joomla Specialized Hosting Solutions: https://gws-host.com -
- bgrinter
- Joomla! Apprentice
- Posts: 38
- Joined: Wed Jan 03, 2007 2:06 pm
- Location: Sydney
Re: Google say my site is still hacked after cleanup
Thanks for the quick reply Leo
Sorting out SSL is on the to-do list for this weekend. Its a website for a not-for-profit so maintenance is done after hours / weekends.
Things we do!
Sorting out SSL is on the to-do list for this weekend. Its a website for a not-for-profit so maintenance is done after hours / weekends.
Things we do!
Brian
- leolam
- Joomla! Master
- Posts: 20652
- Joined: Mon Aug 29, 2005 10:17 am
- Location: Netherlands/ Germany/ S'pore/Bogor/ North America
- Contact:
Re: Google say my site is still hacked after cleanup
namecheap.com offers cheap SSL (Comodo Positive SSL only US$ 9,95/year . Sufficient for a non-profit
Leo
Leo
Joomla's #1 Professional Services Provider:
#Joomla Professional Support: https://gws-desk.com -
#Joomla Specialized Hosting Solutions: https://gws-host.com -
#Joomla Professional Support: https://gws-desk.com -
#Joomla Specialized Hosting Solutions: https://gws-host.com -
- bgrinter
- Joomla! Apprentice
- Posts: 38
- Joined: Wed Jan 03, 2007 2:06 pm
- Location: Sydney
Re: Google say my site is still hacked after cleanup
Found a local hosting company who include SSL with plans - moving to new hosts and getting set upleolam wrote:namecheap.com offers cheap SSL (Comodo Positive SSL only US$ 9,95/year . Sufficient for a non-profit
Leo
Getting there :P
Brian
- bgrinter
- Joomla! Apprentice
- Posts: 38
- Joined: Wed Jan 03, 2007 2:06 pm
- Location: Sydney
Re: Google say my site is still hacked after cleanup
Ok - I've got an SSL certificate set up, I've configured Force HTTPS for entire site, however I only see a padlock on the administrator backend, not the front end.
Is there anything I'm missing?
https://www.airleague.com.au
Is there anything I'm missing?
https://www.airleague.com.au
Brian
- bgrinter
- Joomla! Apprentice
- Posts: 38
- Joined: Wed Jan 03, 2007 2:06 pm
- Location: Sydney
Re: Google say my site is still hacked after cleanup
Nevermind - PEBKACbgrinter wrote:Ok - I've got an SSL certificate set up, I've configured Force HTTPS for entire site, however I only see a padlock on the administrator backend, not the front end.
Is there anything I'm missing?
https://www.airleague.com.au
All good now.
Now to get Google to remove the flag on the results...
Brian
- darb
- Joomla! Hero
- Posts: 2042
- Joined: Thu Jul 06, 2006 12:57 pm
- Location: Stockholm Sweden
Re: Google say my site is still hacked after cleanup
Nothing better than free:) Lets Encrypt is free and working well too https://letsencrypt.org/ some hosting providers have this service for free..leolam wrote:namecheap.com offers cheap SSL (Comodo Positive SSL only US$ 9,95/year . Sufficient for a non-profit
Leo