15 replies
  • SEO
  • |
Hi friends, when I type a site name in Google search below the URL and description there is a message ''THE SITE MAY BE HACKED". How can I overcome this problem?
#hacked #site
  • Profile picture of the author Hemanth Malli
    Tell your host your site has been attacked, they may help find out what happened to your site and how to recover it.
    Signature
    {{ DiscussionBoard.errors[10231171].message }}
  • Profile picture of the author nettiapina
    Originally Posted by vithobaaseo View Post

    How can I overcome this problem?
    Once the site has been cleaned ask for reconsideration from Webmaster Tools. But the site has to be cleaned for this to work.
    Signature
    Links in signature will not help your SEO. Not on this site, and not on any other forum.
    Who told me this? An ex Google web spam engineer.

    What's your excuse?
    {{ DiscussionBoard.errors[10231236].message }}
    • Profile picture of the author vithobaaseo
      Originally Posted by nettiapina View Post

      Once the site has been cleaned ask for reconsideration from Webmaster Tools. But the site has to be cleaned for this to work.
      What do you mean by saying site has to be cleaned? How to clean the site, is there any tool or manual. Please explain, it would be very helpful
      {{ DiscussionBoard.errors[10231454].message }}
      • Profile picture of the author HarrisAndrea
        You need to hire an expert to clean up your site and then submit a reconsideration in Google search console (known as webmaster tools in the past).
        {{ DiscussionBoard.errors[10231463].message }}
        • Profile picture of the author vithobaaseo
          Originally Posted by HarrisAndrea View Post

          You need to hire an expert to clean up your site and then submit a reconsideration in Google search console (known as webmaster tools in the past).
          what are all the process includes in cleaning up the website?
          {{ DiscussionBoard.errors[10231481].message }}
          • Profile picture of the author HarrisAndrea
            You need to log into cpanel and examine the source code of wordpress files (core files, plugins, themes etc) and also inspect the folders to see if additional hacking scripts have been uploaded to your server. You can also install special wordpress plugins which scan and secure the website (however the manual human inspection is the best). As a first step, do a free scan using sucuri to identify the type of hack you have.
            {{ DiscussionBoard.errors[10231546].message }}
            • Profile picture of the author vithobaaseo
              Originally Posted by HarrisAndrea View Post

              You need to log into cpanel and examine the source code of wordpress files (core files, plugins, themes etc) and also inspect the folders to see if additional hacking scripts have been uploaded to your server. You can also install special wordpress plugins which scan and secure the website (however the manual human inspection is the best). As a first step, do a free scan using sucuri to identify the type of hack you have.
              1)In cpanel I have examined core files, plugins, themes I did not find any hacking script.
              2)I dont have any additional wordpress plugins which scan and secure the website
              3)I scan using https://sitecheck.sucuri.net/ it shows 2 error

              a)Website Firewall with medium risk
              b)website outdated with high risk

              Now my question is how to fix the website outdated and firewall issues?
              By securing the site by SSL will work?
              {{ DiscussionBoard.errors[10231586].message }}
              • Profile picture of the author rhinocl
                Website Firewall is an add on that Sucuri sells ($200 to $300) per year. Whether it is advisable depends a lot on the nature of the site. I like to keep old versions of full cpanel backups on a local drive or two. If a site is infected then you can ask your host to wipe it and reinstall everything from the full backup. Most of them can do it for free with 2 to 24 hours if you are on shared hosting.

                As far as outdated- are you using the latest version of WordPress with all plugins updated.

                Neither of these things are severe enough to trigger a Google warning so it is either a false positive or you missed something.
                {{ DiscussionBoard.errors[10231602].message }}
                • Profile picture of the author nettiapina
                  Originally Posted by rhinocl View Post

                  If a site is infected then you can ask your host to wipe it and reinstall everything from the full backup. Most of them can do it for free with 2 to 24 hours if you are on shared hosting.
                  That's something you can do. Many hosts will ask for a fee for it if they need to dig their own backups, but usually the price is reasonable.

                  However, unless you can patch the hole your restored version can be hacked in a few hours again. The perpetrators probably catalogued which of their automated methods worked in your case, and they're going to just try it again.
                  Signature
                  Links in signature will not help your SEO. Not on this site, and not on any other forum.
                  Who told me this? An ex Google web spam engineer.

                  What's your excuse?
                  {{ DiscussionBoard.errors[10231791].message }}
      • Profile picture of the author nettiapina
        Originally Posted by vithobaaseo View Post

        What do you mean by saying site has to be cleaned? How to clean the site, is there any tool or manual. Please explain, it would be very helpful
        Sorry, but if you're need to ask such a question it would be best to contract someone who can do it for you. Yes, it's in the WordPress Codex, and you would've found out about that already if you had googled it. Is that article helpful? Well, that's a good question. Maybe.

        Wordfence or a similar security scanner might help. One that scans the files from within the CMS, not just something like Sucuri Sitecheck.

        I can't teach WordPress structures or hack removal to a stranger over on a forum, and I'm not even willing to try.

        If you think that the site is clean, and you've checked the HTML source (without being logged in) for pharma/porn/whatever spam, then submit a reconsideration request.
        Signature
        Links in signature will not help your SEO. Not on this site, and not on any other forum.
        Who told me this? An ex Google web spam engineer.

        What's your excuse?
        {{ DiscussionBoard.errors[10231596].message }}
  • Profile picture of the author Mehwish84
    contact your host provider will help you in this regard
    {{ DiscussionBoard.errors[10231385].message }}
  • Profile picture of the author ssaaronschwart
    Ask the hosting person he is the right person to guide you.
    {{ DiscussionBoard.errors[10231555].message }}
  • Profile picture of the author patadeperro
    We have some discussion about hacked sites here some days ago, hope it helps
    {{ DiscussionBoard.errors[10231627].message }}
  • Profile picture of the author Kingfish85
    I see some people suggesting to restore your backups, or have the host restore from a backup - before doing this, make sure that your backup doesn't include the same problem as well. If the problem has been present for some time, it's most likely been getting backed up as well.
    {{ DiscussionBoard.errors[10231860].message }}
  • Profile picture of the author yukon
    Banned
    If it's a Wordpress site odds are it's a plugin or theme causing the problem in the SERP description:
    Signature
    Hi
    {{ DiscussionBoard.errors[10231989].message }}

Trending Topics