Website is flagged as Compromised Site by Google
-
Hi everyone,
We have been running Google Ads for a while now and last week all of our Google Ads were paused with reason Compromised Site. We reached out to Google and they identify this page as one of the affected page: https://manpower.com.vn/vi/dich-vu-san-dau-nguoi-and-tu-van-nhan-su-cap-cao?
The malicious links they found are:
• googie-anaiytics[.]com
• vty68[.]netWe have asked our Website vendor to scan and they found nothing. We would be greatly appreciated if you could help.
I tried Google Search Console and even the tool Google Safe Browsing that Google itself suggested but both the tools showed that our website does not have any malicious links at all. And yet Google Ads support team keeps telling us our page contains these links.
I am wondering if anyone in the community has experienced this before and how did you address this issue.
Or could you guys please help to share any tools that you know can do a deep scan on this page and if possible our entire website to help us identify where the links are located?
Please let me know if you need any additional information from us and I would be happy to provide it.
-
@Alex-Montarev We actually have a Drupal site and we're having the same issue...
-
Hello
Thanks for the heads-up. We'll look into it immediately and take the necessary steps to resolve the issue.
-
Update: I have also raised this on Google community: https://support.google.com/google-ads/thread/280600750?hl=vi&sjid=17667827560611966802-AP
and one of the member, who claims to be an IT engineer and security researcher, replied that the issue is caused by the library polyfill. The person said that a popular library got compromised and resulted in many site affected by this attack.
We are checking on this and if it is possible, you all can also take a look at this on your sides as well.
Hope this helps.
-
@Pedropeit thank you for the information and the offer to help. I really appreciate it!
Our website provider have tried to scan our website using these tools: Sucuri SiteCheck, VirusTotal, Quttera but we haven't found any unsual things.
We are trying to do a deeper scan at the moment but we are leaning on the possibility that this is a false alarm from Google. If so, do you know how we can reach out to more relevant personnel from Google to ask about this issue other than the general support team?
Thank you!
-
@Alex-Montarev we do not use Shopify, unfortunately. We are still in process of solving this.
We reached out to Google Ads support but only get some generic answers. Have you able to solve it already?
-
Hello there.
I see that in your website, you are using https://polyfill.io/v3/polyfill.min.js?features=IntersectionObserver%2CIntersectionObserverEntry . You will need to remove it as it is a compromised CDN, and it can make your website run arbitrary code. -
@ManpowerVietnam said in Website is flagged as Compromised Site by Google:
Hi everyone,
We have been running Google Ads for a while now and last week all of our Google Ads were paused with reason Compromised Site. We reached out to Google and they identify this page as one of the affected page: https://manpower.com.vn/vi/dich-vu-san-dau-nguoi-and-tu-van-nhan-su-cap-cao?
The malicious links they found are:
• googie-anaiytics[.]com
• vty68[.]net
We have asked our Website vendor to scan and they found nothing. We would be greatly appreciated if you could help.
I tried Google Search Console and even the tool Google Safe Browsing that Google itself suggested but both the tools showed that our website does not have any malicious links at all. And yet Google Ads support team keeps telling us our page contains these links.
I am wondering if anyone in the community has experienced this before and how did you address this issue.
Or could you guys please help to share any tools that you know can do a deep scan on this page and if possible our entire website to help us identify where the links are located?
Please let me know if you need any additional information from us and I would be happy to provide it.I understand the frustration you're experiencing with the Google Ads suspension due to a "Compromised Site" issue. Here are some steps and tools you can use to deeply scan your website and address this problem:
Manual Inspection:
Check Source Code: Manually inspect the source code of the affected page for any references to the malicious links (googie-anaiytics[.]com, vty68[.]net). These might be hidden in scripts or embedded in iframes.
Browser Developer Tools: Use browser developer tools (F12) to inspect the network activity on the affected page. Look for any unexpected network requests to the malicious domains.
Online Security Scanners:Sucuri SiteCheck: This free tool scans your website for malware, blacklisting status, injected spam, and defacements. You can access it here.
VirusTotal: Submit the URL of the affected page to VirusTotal to get a report from multiple antivirus engines. You can use it here.
Quttera: This tool provides a detailed report on any suspicious content or malware on your website. Try it here.
Web Security Plugins:Wordfence (for WordPress): If your website is running on WordPress, install Wordfence Security. It provides comprehensive scanning and firewall protection.
MalCare (for WordPress): Another WordPress security plugin that offers malware scanning and removal.
Server-Side Scanning:ClamAV: If you have access to your server, you can run ClamAV, an open-source antivirus engine, to scan your web directories for malware.
Maldet (Linux Malware Detect): This tool can be used on Linux servers to find and quarantine malware.
Professional Help:If the issue persists, consider hiring a professional web security service or a cybersecurity expert to perform an in-depth analysis and cleanup.
Once you've performed a thorough scan and cleanup, you should:Submit a Review Request: Inform Google Ads support that you've taken steps to clean your site and request a review.
Monitor Regularly: Set up regular scans and monitoring to prevent future compromises.
If anyone in the community has faced a similar issue or has additional tools and tips to share, your input would be greatly appreciated.Please let me know if you need any further assistance or specific information. I'm here to help.
Best regards,
-
We're having the same issue with our Shopify store, starting a few days ago. Google says the same thing, this "googie anaiytics" link that does not exist on our site.
Are you using Shopify? I'm wondering if it's a common Shopify app that's hacked or something that's causing this issue.
Got a burning SEO question?
Subscribe to Moz Pro to gain full access to Q&A, answer questions, and ask your own.
Browse Questions
Explore more categories
-
Moz Tools
Chat with the community about the Moz tools.
-
SEO Tactics
Discuss the SEO process with fellow marketers
-
Community
Discuss industry events, jobs, and news!
-
Digital Marketing
Chat about tactics outside of SEO
-
Research & Trends
Dive into research and trends in the search industry.
-
Support
Connect on product support and feature requests.
Related Questions
-
Unsolved Google Ads Subdomain in sitelinks & Composition Change for Strategy Status
I have a basic query but could not find a definite answer on the internet. I am currently running a campaign for the main website of a big education brand and they also have a secondary learning website on subdomain, and I want to add sitelinks of subdomain to the campaign, but I am not sure whether it is allowed or not. The brand I am running ads for is https://www.rauias.com/ and the secondary website is https://compass.rauias.com/ branded slightly different in a subdomain, so should I add the sitelinks of Compass to the main campaign? Also one more silly question My Max Conversion search campaign gave me this status today. "Learning (composition change): Campaigns have been added to or removed from the bid strategy. Google Ads is now adjusting to optimize bids. 5 days left for learning" What does this mean exactly? And Why does it reenter the learning phase whenever I make a small change?
Paid Search Marketing | | rauoff0 -
Keyword & negative keyword overlap
So I just read your blog on quality score and after reading the negative keyword section I'm a little confused and I need clarification. In that paragraph you mentioned about not overlapping your negative keywords with your active keywords and you used an example of dog food and dog bed. So my question is, if you put the word dog bed into the negative keyword list isn't the word dog the over lap word? Would you ad not show because the word dog is in the active keyword list?
Paid Search Marketing | | Vallerinspects0 -
What are the best advertising platforms for B2C?
Recently, Google ads stop being as effective. Same ads, cost, and web pages, but not getting the same results. Our budget is $4500/mo and need to get at least $25,000 in sales before increasing the budget. What ad platforms have you had success with?
Paid Search Marketing | | seotools4me0 -
Blocking google adwords on google.com?
Is there any chance to block google adwords (not google adsense) firefox/chrome/internet explorer 🙂
Paid Search Marketing | | FCRMediaLietuva0 -
Google Giving 404 Errors to Working Pages
We have a problem that just came up out of the blue with Google, in particular Webmaster Tools & our Merchant Center. We're getting a 404 errors for 1000s of pages in both of these applications, but the pages are working just fine. Our shopping campaigns have been hit hard as many of our top products have been suspended from our merchant feed. Webmaster tools is giving us 1000s of 404 errors to product & category pages alike. But every page returning a 404 error is working. We've contacted Google and they mention that they are not getting a 404 error, but their crawler seems to be. Has anyone ever experienced this? What could be causing this? Thanks for any input.
Paid Search Marketing | | paulcorrado30 -
Social Media black hat methods - can google see this?
My site was hit by a Penguin or Panda, for some bad linking in 2012. Ever since then I have been 100% completely white hat, being careful who I pick to my marketing. Once burnt.... Recently, with all the hype of social media being the thing to help you boast rankings, it got me wondering about how Google really can monitor this. I saw this the other day on Elance... I need 5000 Facebook fans. They must be real looking and be coming from US IPs, Preferable real looking US accounts. If people are just going to get false Facebook fans, tweets etc.... then it is no better than all the bad linking. Perhaps Google will come out with Puma penalty (well we have pandas and penguins)
Paid Search Marketing | | Llanero0 -
Report site for duplicate content
Hi All, I know that when a site is using duplicate content (my content) I can report it to Google and have them removed from the index, contact the hosting provider, etc But I was wondering if there is anything I can do to have Google shutdown their PPC campaign? Thanks!
Paid Search Marketing | | Tug-Agency0 -
Adwords Product Listing Ads & Google Analytics mis-reporting
I hope you're sitting comfortably, this could be a long one and loaded with questions! Cut to the chase: Why is traffic from google product ads showing as 'organic' traffic in GA? Here's the scenario: Google Shopping I have thousands of products in a feed to google shopping (froogle, google base, google merchant, whatever you like to call it, I'll settle for google shopping for the purpose of this question). The URLs of this feed is tagged with GA tracking data (notably utm_source=GoogleBase&utm_medium=Product-Search), I have also tagged this with internal tracking which comes through in the back-end to assign orders to that specific source. In this case 'GOOGLEBASE'. Adwords Product Listing Ads As you know, a new (ish) feature of adwords pulls in your products from google shopping so that you get a richer ad (image, title, price) and displays this in the 'advert section' of the SERP. Once setting up a few of these, I noticed I was getting a fair amount of traffic for these new ads, taking one example, which resided in a relatively specific ad group (advertising Aviation Snips). Naturally, I wanted to find out which keywords were driving that traffic in order to improve the ads, or kill them if they weren't working. What was interesting is that I can't find anything about that traffic anywhere in adwords or google analytics. 254 clicks to 'aviation snips' must show up somewhere in analytics, if not the keywords, then what about the product? Analytics is showing nothing like that quantity of visits to those product landing pages where you'd expect. It's like ghost traffic. Google Analytics Since experimenting with product listing ads the organic traffic in GA has suddenly shot up, looking at the new keywords they are all queries which when I test them show up product listing ads in the SERP so it's obviously the paid listing ads driving this traffic. Why is google reporting these as organic, rather than paid? I also noticed a keyword appear as * in the PAID segment of analytics. I thought this was my missing aviation snips traffic, but digging into the landing pages for the * keyword, they are many different ones. There's a connection between the * and product listing ads, but what is it? Is the traffic being doubly reported? Back End Meanwhile we've seen an increase for orders tagged in the back-end of GOOGLEBASE which makes sense - google are pulling in my google shopping feed into the paid part of the SERPs and these are generating sales. Here are some of my initial thoughts / theories: 1. When google pulls in google shopping results into the organic part of the SERP, these get reported as ORGANIC in google analytics, even if you've tagged them otherwise. It seems they strip the tags out. This makes it very difficult to know if your google shopping feed is working well, or if you are doing well on standard organic traffic. 2. Google isn't separating out traffic as PAID with their new product listing ads, completely skewing the reports. It makes it look like you've gained great natural organic listings when if fact you are paying. 3. With relation to the missing Aviation Snips data - maybe google is showing a huge variety of products for that adgroup (even though it's specific) and therefore I can't see the traffic to the specific products that you'd expect. This I'm most confused about and wondered if I've missed a trick in setting the product listing ads up? I've attached a couple of screenshots which I hope will help clarify some of this. I can see product listing ads being great if you could get proper data to analyse and improve them. So here are my questions again if anyone can help? How do I see which keywords are driving the product listing ads? How do I see the landing pages for the product listings ads? What is the * keyword coming through in GA? How can you get GA to report product listing ads as paid rather than organic? Thank you so much. If I can gather enough data on this all and work it out I'll try to write up in a blog post to help others. 0rOMM.png GUAE0.png fWPL7.png
Paid Search Marketing | | ewanr0