Question: WordPress site hacked. I can't find solutions

Question

WordPress site hacked. I can't find solutions

Answers 2
Added at 2016-12-28 15:12
Tags
Question

I'm a Web Developer of a Google partner's Web Agency.

A site of our client, not developed by us, is hacked ( 'compromised by spamming'); I'm spending many days to analyze the problem. I'm trying to solve it with:

  • The Code Analysis
  • Plug-in authenticity Analysis
  • Analysis of the CMS (is a WordPress site)
  • Analysis of the Site Security through dedicated software and online software tools.

For Google Search Console are still errors in the website and it result compromise. Google hide it. I enclose Screenshot:

enter image description here

If Searched through direct link (so by tap the URL in research bar) the site can be visited and viewed by the way is removed from Google SERP.

Even this morning, we proceeded to eliminate the compromises URL with "REMOVING URL" tool of search consoles.

Some one can help me please.

Thanks so much.

Answers
nr: #1 dodano: 2016-12-28 16:12

There are too many hacking vectors to try and cover between WordPress, plugins, your users and your host; your question is far too broad.

You can start by carefully following FAQ My site was hacked - WordPress Codex.

Then take a look at the recommended security measures in Hardening WordPress - WordPress Codex and Brute Force Attacks - WordPress Codex.

Scan your own PC. Tell your web host you got hacked; and consider changing to a more secure host: Recommended WordPress Web Hosting.

nr: #2 dodano: 2016-12-28 20:12

My question is: how can solve the spam injection and how can solve the visibiliy on google....

Spam injection - Can be prevented by fixing all vulnerabilities, removing all back doors and changing all passwords (in that order).

Visibility on Google - After fixing the spam injection problem you need to request a review from Google. This can be done here: https://developers.google.com/webmasters/hacked/docs/request_review

Source Show
◀ Wstecz