Unwanted Software Site!

[ZeNiX]

Yes, this is an annoying problem.
Any suggestion?

[TechLord]

Quote:

Originally Posted by ZeNiX

Yes, this is an annoying problem.
Any suggestion?

Any sites which either contain downloadable exploits (as attachments to posts or within the database) or provide links to downloadable exploits would be potentially flagged.

Earlier on (you can check if you don't believe me), there were no EXPLOITS or MALWARE per se or links to them seen in the forum.

When these links were permitted around 2 months ago, I guess the problem started.

Solution:
Ban malware or EXPLOITS (or links to the same) on this forum.

[atom0s]

Quote:

Originally Posted by ZeNiX

Yes, this is an annoying problem.
Any suggestion?

Generally it happens from Google marking your site malicious due to a download that is available on it. Easiest way to get around it is to password any download that is publicly visible to their scrapper bot.

I had to do it for my personal sites a few times already as well to get rid of the blocks.

Afterward, once the files are passworded you can tell Google to rescan the site to fix the errors. (Once you claim the domain on Google's site tools, you can see the specific files causing the problems as well, they generally give you decent information about what's causing it.)

[TechLord]

Quote:

Originally Posted by atom0s

Generally it happens from Google marking your site malicious due to a download that is available on it. Easiest way to get around it is to password any download that is publicly visible to their scrapper bot.

I had to do it for my personal sites a few times already as well to get rid of the blocks.

Afterward, once the files are passworded you can tell Google to rescan the site to fix the errors. (Once you claim the domain on Google's site tools, you can see the specific files causing the problems as well, they generally give you decent information about what's causing it.)

This worked for your site as yours does not have any "cracks" or other PUPs on it.
In other words whatever had been flagged on your site were all (I understand) false positives.

On this site unfortunately, it is.. Ermm... cough... Different.

If links to malware/cracks/exploits/cracks are allowed on the site, then there is no way to get around it other than to get them removed from your site, OR, remove them to hidden sections of the site not accessible to the web spiders.

Even then, if someone takes a sccreenshot of the hidden area and "reports" it, then once again, the site will be flagged.

The best way would be to ban links to malware, RATs and other such stuff in the forum.
These items in any case were not there for many years prior in this forum...

[chants]

This problem has had a very old solution that was even used here in older times.

Removal of information has never been a solution for all of life's problems except maybe by authoritarians and ruling class thugs.

But we can simply post links using

Quote:

http:// www <dot> google <dot> com

or using other notations so that bots will not crawl them and mark them as such. This notation and style should be used for any links which are in those categories that could be marked as dangerous by services such as those VT lists.

As for the RATs in question, I have already edited the post to do just that so that baseless accusations that these particular links are the ones which caused the flagging can be thrown in the wastebasket.

Perhaps it is another post with another link containing a crack, etc. No one knows for sure. But this recommendation provides a forum with full expression, information sharing and gives an extra indicator when caution should be exercised (which is pretty much always in a reverse engineer's context).

[atom0s]

Quote:

Originally Posted by TechLord

This worked for your site as yours does not have any "cracks" or other PUPs on it.
In other words whatever had been flagged on your site were all (I understand) false positives.

On this site unfortunately, it is.. Ermm... cough... Different.

It's not any different. Googles tools do not attempt to open passworded archives. You can zip anything up and password it and it's automatically deemed safe to Google. You can also block their bot from accessing those parts of the site entirely with the robots.txt and that'll also fix the issues.

Please don't assume shit you don't know about. I've dealt with this on multiple sites, not just one public facing site you know about.