A Case Study of SEO Spam Ads Injected on a Website

Symptom: During SEO indexing by search engines like Baidu and Google, numerous spam ad links pointing to your site often appear.
Here we use Baidu as an example. Enter the following into Baidu (replace the domain with your own):

site:www.domain.com

You can see many spam links:

The links found through the above query show they were indexed via the site’s default homepage index.php and the new/show.php file (you can see the indexed URLs in the info above).
Based on this information, we opened show.php and index.php and saw the following:

Attachment Reference.zip
a70b28cb19798cb7168c4b38fb2662a3.zip (801 Bytes)

Next, we opened the URLs inside using a different browser and saw the following content:


The content above appears randomly; new content loads each time you refresh the page.
Based on the situation, we deleted these two files. Of course, in other scenarios you can choose your own approach depending on the circumstances. The key point is to pay attention to website security and avoid having

Leave a Comment

Your email address will not be published.