← Desenvolvimento

HELP : Google colocou o meu blog na blacklisted

Lida 4195 vezes

Offline

Coffe Things 
Membro
Mensagens 347 Gostos 3
Feedback +7

Troféus totais: 26
Trófeus: (Ver todos)
Eighth year Anniversary Seventh year Anniversary Level 5 Mobile User Windows User Super Combination Combination Topic Starter Poll Voter Level 4

Boas, o meu blog está em blogger e ao entrar agora apareceu o aviso de blacklisted.
Não consigo descobrir o codigo malicioso.


Help  :-( :-(
Offline

André Freitas 
Membro
Mensagens 941 Gostos 16
Troféus totais: 29
Trófeus: (Ver todos)
Apple User Super Combination Combination Topic Starter 10 Poll Votes Poll Voter Level 5 Level 4 Level 3 Level 2

Viva,
O teu site foi atacado e injectado com código malicioso. Ora isto pode ter acontecido por falta de atualização de CMS, vírus no computador que tem acesso FTP ao Alojamento ou vulnerabilidade num plugin do CMS que usas. Confere aqui os ficheiros que estão infectados: http://sitecheck.sucuri.net/scanner/

Pede um backup à tua empresa de Alojamento para repor o estado anterior do site.
Offline

Coffe Things 
Membro
Mensagens 347 Gostos 3
Feedback +7

Troféus totais: 26
Trófeus: (Ver todos)
Eighth year Anniversary Seventh year Anniversary Level 5 Mobile User Windows User Super Combination Combination Topic Starter Poll Voter Level 4

O meu blog está em blogger.
Não sei que códigos estão a fazer isso, porque não alterei nada nos ultimos dias.
Aqui parece estar tudo bem:
Offline

kongming 
Membro
Mensagens 183 Gostos 4
Feedback +7

Troféus totais: 20
Trófeus: (Ver todos)
Super Combination Combination Topic Starter Level 4 Level 3 Level 2 Level 1 100 Posts 50 Posts 10 Posts

Verifica se não tens links ou banners para outros sites que estão também no blacklist. Verifica se os widgets que usas são tds confiáveis.
Offline

kurtmix 
Membro
Mensagens 1895 Gostos 605
Feedback +4

Troféus totais: 28
Trófeus: (Ver todos)
Tenth year Anniversary Nineth year Anniversary Eighth year Anniversary Seventh year Anniversary Search Level 5 Windows User Super Combination Combination Topic Starter

Dá uma olhada nisto:

Código: [Seleccione]
Failed to load resource: the server responded with a status of 404 (Not Found) http://www.coffe-things.com/URL-DO-ARQUIVO-SHADOWBOX.CSS
Failed to load resource: the server responded with a status of 509 (Bandwidth Error) http://dl.dropbox.com/u/77633893/data-post.js
Uncaught SyntaxError: Unexpected token . blogger.js:1
Uncaught ReferenceError: Shadowbox is not defined www.coffe-things.com:1352
##########################
#  The endpoint used to load this resource has been deprecated.
#  Please update to the current Facebook JavaScript SDK.
#  https://developers.facebook.com/docs/reference/javascript/
########################## FB.Share:52
The "fb-root" div has not been created, auto-creating FB.Share:52
FB.getLoginStatus() called before calling FB.init(). FB.Share:52
FB.init has already been called - this could indicate a problem FB.Share:52
FB.getLoginStatus() called before calling FB.init(). FB.Share:52
Unsafe JavaScript attempt to access frame with URL http://www.coffe-things.com/ from frame with URL http://www.youtube.com/embed/lbP8YPotvvw?rel=0. Domains, protocols and ports must match.
Unsafe JavaScript attempt to access frame with URL http://www.coffe-things.com/ from frame with URL http://www.youtube.com/embed/XPMeVOo6E_A?rel=0. Domains, protocols and ports must match.
 www-embed_core_module-vflN0G8oN.js:24
Uncaught SyntaxError: Unexpected token . blogger.js:1
Unsafe JavaScript attempt to access frame with URL http://googleads.g.doubleclick.net/pagead/html/r20130122/r20121214/zrt_lookup.html from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-123522389931900…9&oid=2&fu=0&ifi=1&dtd=1969&xpc=VmzKP120jY&p=http%3A//www.coffe-things.com from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-123522389931900…9&oid=2&fu=0&ifi=1&dtd=1969&xpc=VmzKP120jY&p=http%3A//www.coffe-things.com from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://www.youtube.com/embed/XPMeVOo6E_A?rel=0 from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://www.facebook.com/plugins/like.php?href=http://www.coffe-things.com/2…tandard&show_faces=false&width=250&action=like&colorscheme=light&height=35 from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://googleads.g.doubleclick.net/pagead/html/r20130122/r20121214/zrt_lookup.html from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-123522389931900…09&oid=2&fu=0&ifi=2&dtd=848&xpc=ZtNl20quu7&p=http%3A//www.coffe-things.com from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-123522389931900…09&oid=2&fu=0&ifi=2&dtd=848&xpc=ZtNl20quu7&p=http%3A//www.coffe-things.com from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://www.facebook.com/plugins/like.php?href=http://www.coffe-things.com/2…tandard&show_faces=false&width=250&action=like&colorscheme=light&height=35 from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://www.youtube.com/embed/lbP8YPotvvw?rel=0 from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://www.facebook.com/plugins/like.php?href=http://www.coffe-things.com/2…tandard&show_faces=false&width=250&action=like&colorscheme=light&height=35 from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://googleads.g.doubleclick.net/pagead/html/r20130122/r20121214/zrt_lookup.html from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-123522389931900…09&oid=2&fu=0&ifi=3&dtd=832&xpc=Poa1CvMOAd&p=http%3A//www.coffe-things.com from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-123522389931900…09&oid=2&fu=0&ifi=3&dtd=832&xpc=Poa1CvMOAd&p=http%3A//www.coffe-things.com from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://nucleo-nl03.netlucro.com/ad/mpromo.php?argumentos=13042;925;;728x90;510920b462d0c;ffffff;;;;; from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://www.facebook.com/plugins/like.php?href=http%3A%2F%2Ffacebook.com%2Fc…dth=250&show_faces=true&action=like&colorscheme=light&font=arial&height=80 from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://nucleo-nl03.netlucro.com/ad/mpromo.php?argumentos=13042;;;250x250;510920b462548;ffffff;;;;; from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://www.clicmais.net/widget/?p=CX7P0201U0 from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://static.ak.facebook.com/connect/xd_arbiter.php?version=18#channel=f28…coffe-things.com&channel_path=%2F%3Ffb_xd_fragment%23xd_sig%3Df14cdcc6c%26 from frame with URL http://www.coffe-things.com/. The frame being accessed set 'document.domain' to 'facebook.com', but the frame requesting access did not. Both must set 'document.domain' to the same value to allow access.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL https://s-static.ak.facebook.com/connect/xd_arbiter.php?version=18#channel=…coffe-things.com&channel_path=%2F%3Ffb_xd_fragment%23xd_sig%3Df14cdcc6c%26 from frame with URL http://www.coffe-things.com/. The frame requesting access has a protocol of 'http', the frame being accessed has a protocol of 'https'. Protocols must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://www.facebook.com/plugins/share_button.php?href=http%3A%2F%2Fwww.coff…%252Ff28ce0071c%26domain%3Dwww.coffe-things.com%26relation%3Dparent.parent from frame with URL http://www.coffe-things.com/. The frame being accessed set 'document.domain' to 'facebook.com', but the frame requesting access did not. Both must set 'document.domain' to the same value to allow access.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://www.facebook.com/plugins/share_button.php?href=http%3A%2F%2Fwww.coff…%252Ff28ce0071c%26domain%3Dwww.coffe-things.com%26relation%3Dparent.parent from frame with URL http://www.coffe-things.com/. The frame being accessed set 'document.domain' to 'facebook.com', but the frame requesting access did not. Both must set 'document.domain' to the same value to allow access.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL http://www.facebook.com/plugins/share_button.php?href=http%3A%2F%2Fwww.coff…%252Ff28ce0071c%26domain%3Dwww.coffe-things.com%26relation%3Dparent.parent from frame with URL http://www.coffe-things.com/. The frame being accessed set 'document.domain' to 'facebook.com', but the frame requesting access did not. Both must set 'document.domain' to the same value to allow access.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL https://plusone.google.com/_/+1/sharebutton?plusShare=true&bsv&action=share…auth%2Conload&id=I0_1359552702648&parent=http%3A%2F%2Fwww.coffe-things.com from frame with URL http://www.coffe-things.com/. The frame requesting access has a protocol of 'http', the frame being accessed has a protocol of 'https'. Protocols must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL https://plusone.google.com/_/+1/sharebutton?plusShare=true&bsv&action=share…auth%2Conload&id=I1_1359552702653&parent=http%3A%2F%2Fwww.coffe-things.com from frame with URL http://www.coffe-things.com/. The frame requesting access has a protocol of 'http', the frame being accessed has a protocol of 'https'. Protocols must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL https://plusone.google.com/_/+1/sharebutton?plusShare=true&bsv&action=share…auth%2Conload&id=I2_1359552702657&parent=http%3A%2F%2Fwww.coffe-things.com from frame with URL http://www.coffe-things.com/. The frame requesting access has a protocol of 'http', the frame being accessed has a protocol of 'https'. Protocols must match.
 friendconnect.js:1146
Unsafe JavaScript attempt to access frame with URL https://plusone.google.com/_/+1/fastbutton?bsv&size=medium&hl=pt-PT&origin=…cled%2Conload&id=I3_1359552702659&parent=http%3A%2F%2Fwww.coffe-things.com from frame with URL http://www.coffe-things.com/. The frame requesting access has a protocol of 'http', the frame being accessed has a protocol of 'https'. Protocols must match.
 friendconnect.js:1146
Failed to load resource: the server responded with a status of 404 (Not Found) http://cdn.api.twitter.com/1/users/show.json?screen_name=coffethings&callback=twttr.setFollowersCount
Unsafe JavaScript attempt to access frame with URL http://r1rk9np7bpcsfoeekl0khkd2juj27q3o-a-fc-opensocial.googleusercontent.c…dQs36oJP5rNPiXBK%252FbhF96Hn99Q%253D%26c%3Dpeoplesense&rpctoken=730515222& from frame with URL http://www.coffe-things.com/. Domains, protocols and ports must match.
 tc.js:15

São algumas coisas a corrigir.

 :superlol:
Offline

Coffe Things 
Membro
Mensagens 347 Gostos 3
Feedback +7

Troféus totais: 26
Trófeus: (Ver todos)
Eighth year Anniversary Seventh year Anniversary Level 5 Mobile User Windows User Super Combination Combination Topic Starter Poll Voter Level 4

Consegues explicar-me isso por outras palavras?
As primeiras cenas eu percebo que falharam o load.
Mas as outras...  :-?
Offline

kurtmix 
Membro
Mensagens 1895 Gostos 605
Feedback +4

Troféus totais: 28
Trófeus: (Ver todos)
Tenth year Anniversary Nineth year Anniversary Eighth year Anniversary Seventh year Anniversary Search Level 5 Windows User Super Combination Combination Topic Starter

Toma cuidado com googleads.g.doubleclick.net pesquisa no google por essa expressão.
Offline

Coffe Things 
Membro
Mensagens 347 Gostos 3
Feedback +7

Troféus totais: 26
Trófeus: (Ver todos)
Eighth year Anniversary Seventh year Anniversary Level 5 Mobile User Windows User Super Combination Combination Topic Starter Poll Voter Level 4

Toma cuidado com googleads.g.doubleclick.net pesquisa no google por essa expressão.
Não tenho nenhum anuncio do adwords.  :-k
Offline

Coffe Things 
Membro
Mensagens 347 Gostos 3
Feedback +7

Troféus totais: 26
Trófeus: (Ver todos)
Eighth year Anniversary Seventh year Anniversary Level 5 Mobile User Windows User Super Combination Combination Topic Starter Poll Voter Level 4

Penso que já corrigi.
Pelo menos já me dá o site "verde" pela:
norton->http://safeweb.norton.com/report/show?url=www.coffe-things.com
avg->http://www.avgthreatlabs.com/sitereports/domain/www.coffe-things.com/domain-search-widget/www.avg.com.au
http://www.avgthreatlabs.com/sitereports/domain/coffe-things.com

Já fiz a "reclamação" ao google também, agora é esperar.

Tudo isto começou porque o site ituga foi sinalizado pelo google, e como tinha o banner e link para lá fui apanhado também. Pelo menos vários colegas que também tinham o banner aconteceu o mesmo.

Obrigado a todos, em especial ao kurtmix
 :obrigado: