Malware Signatures

  1. Home
  2. Malware Signatures
  3. html.spam-seo.pharma-site.001

html.spam-seo.pharma-site.001

Sometimes instead of intermediary doorways that automatically redirect visitors to third-party sites, hackers create
[almost] full featured pages of online pharma stores directly on compromised sites. They still act as doorways since
every click on any item leads to the real pharma store on the beneficiary third-party site

Cleanup

You should find and delete the doorway files. Usually they aare hidden in some deep subdirectories of the hacked site.
You might want to use Google to find such doorways. For example search your sites for keywords like cialis or viagra [site:yourdomain.com cialis].
Check indexed pages and search queries in Google Webmaster tools - they may help reveal things that don't belong to your site.
You can also sign up with us and let our team remove the malware for you.

Dump

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd?dvzbrzry"><html xmlns=http://www.w3.org/1999/xhtml> <head> <meta http-equiv=Content-Type content="text/html; charset=ISO-8859-1; doctype=dvzbrzry" /> <title>All top-quality Canadian medications in one place at most reasonable price!...