Getting Warning, This Site May be Compromised in Google Search Results

Today morning I got a call from one of my friends who is running an e-commerce website. His users are getting a warning about his website in Google Search Results,  This Site May be Compromised. He has no clue about how this error happened and there is no symptom of virus infection in his server. There are no Antivirus popups which saying potentially harmful site while loading his website in our computer. So I told him to login to his Google webmaster tools account and check whether there is any message from Google.

In webmaster tools account we found a message with headline "Notice of Suspected Hacking on --- ".
hack website

We got a list of sample URLs which are injected by third party sources. It helped us to identify the source and removed these files. Surprisingly there was no review link provided in Google Webmaster tools. So we believe Google will automatically check the pages after we remove the unwanted pages and remove the label "This Site May be Compromised".

"This Site May be Compromised" Vs "This site may harm your computer"

“This site may harm your computer” link is applicable to the websites where some malicious content present. For other websites which do not have malicious codes but have a strong reason to believe as a compromised (hacked )will be labeled as "This Site May be Compromised". Since my friend's website do not have any malicious page, it is being labeled as "This Site May be Compromised".

Some Earlier posts related to the topic:

  1. How to Check whether a Website is safe to browse

  2. How to Check Virus Infection in a website

How to Fix "This Site May be Compromised" Issue

This flag is for websites having pages injected by third party sources. So all we need to do is check the server one by one and remove any suspicious script and pages. There is a chance of hidden pages and links in our server so we should be extremely careful while checking these injected pages. Since our website is already hacked, it is better to change the ftp and hosting manager user name and password to prevent further injection.

Related Articles

  1. Secure Computer and Network

  2. Double Click on a Folder is not working

No: Recent Posts
Broadband Hack Tricks
Network Address Translation( NAT)
What is Smurf Attack & How to Prevent it
How to Setup MTNL Broadband ADSL Modem
Setup Idea 4G on Android Phone
Delete Beneficiary Fund Transfer in HDFC Netbanking
Setup Asianet WiFi Router
Denial of Service (DOS) attacks
View & Clear Saved Username and Passwords In Mozilla Firefox
Setup Log Files for IP Messenger
Make Sure your Computer and Network are Safe and Secure
Omiga Plus Browser Infection Removal Guide
Error 797: A Connection to the Remote Access Server was not Made
How to Reset BSNL WiFi Modem
How to Check Your Tata Photon Plus Internet Usage
Destination Net Unreachable