Spamming and Wordpress
-
Hi,
I have a Wordpress site for which I was ranking #1 for my main key phrase. Then I noticed that my site had plummeted in ranking. Investigating I found the cause to be a hacking issue where my code has lots of content for and backlinks to Viagra sites! How do I best work on retrieving my ranking and making sure that the site in question gets penalized?
-
thanks, Paul.
I am testing the "Wordfence" plug-in, and I was able to identify (and delete) a malware file. I should probably look for a more secure host as well.
Cheers
Bo
-
This plugin is really helpful for protecting your site:
Once you clean up, it should gain rankings back.
-
A good idea would be to change your passwords on a monthly basis and maybe ask your hosting company to see if there is anything they can do to stop your site from being hacked. Also ask them if they have any data on when your site was hacked.
A good hosting company will help you keep your site secure
-
Just a heads-up Bo - and really sorry to be a bearer of bad news, but fixing a WordPress hack like you're describing is almost never as easy as just deleting the code you see in headers. Like on virus-infected desktop computers, the malware often hides an additional payload of crapware that is capable of regenerating the spam links after a designated time period.
There are a number of different WordPress scanning services like http://sucuri.net/, as well as security-scanning plugins available. Be sure to use a couple of them (no one tool catches everything) to make sure you site is actually clean. In addition, monitor it carefully and repeatedly for the next several weeks to make sure the malware doesn't surreptitiously re-assert itself.
Lastly, make certain you have changed all ftp passwords for your site's server and that you are using strong, complex passwords. This is an easy vector of attack that many webmasters forget to secure. If possible, you should be using sFTP (secure ftp) for any work on your site as it encrypts ftp passwords where regular ftp sends them in the clear and so is extremely easy to hack.
Paul
-
Hi,
thanks for sharing! I found the code in the Header and deleted everything, so hopefully that should take care of the "clean-up" process, so I can start on the "small matter" of regaining my ranking. I'm in 50th at the moment, so at least I'm indexed!
cheers
-
Hey Bo, just thought I'd chime in here. I had a client's site get some kind of nasty code injection - pharma stuff like you're talking about. Happened a month or so ago. He was #1 for his keyphrase also, but as soon as the site was compromised, he dropped to page 4-5. Soon as I re-did the site and got it live his rankings came back.
Sooo...bad news and good news. I highly doubt your site is actually de-indexed (good news). The bad news is the amount of work you'll have to do. I completely wiped the root folder, deleted the DB, and re-built the wordpress site from scratch on a different theme/framework.
-
hi, thanks for the advice!
I will check Webmaster tools, and send a description of the issue. I´m sure you´re right regarding the penalty issue, I guess I just have to tighten security...
-
Most usually, your rankings will come back once you clean your site up. I'd recommend letting go of thoughts regarding penalties to site in question. There's really nothing that the ordinary mortal can do that will make that happen and if there was something that could be done, they'd be up and running the next hour with another site (which probably already is up and running.)
The big take away is: keep your wordpress up to date, delete your admin account, and set up an account with another username with a strong password.
-
Is your site listed in google wmt? if so is there any messages.
Ask for re-consideration and explain what happened
Got a burning SEO question?
Subscribe to Moz Pro to gain full access to Q&A, answer questions, and ask your own.
Browse Questions
Explore more categories
-
Moz Tools
Chat with the community about the Moz tools.
-
SEO Tactics
Discuss the SEO process with fellow marketers
-
Community
Discuss industry events, jobs, and news!
-
Digital Marketing
Chat about tactics outside of SEO
-
Research & Trends
Dive into research and trends in the search industry.
-
Support
Connect on product support and feature requests.
Related Questions
-
Content spamming risk
If some websites, which provide information about apps in a particular niche, are publishing the same content which we have given in our app's description when they refer our app for that particular niche then would it lead to spamming? Our website is getting a backlink from one such website so are we at any sort of risk? What should we do about it without having to lose that backlink?
Technical SEO | | Reema240 -
Control indexed content on Wordpress hosted blog...
I have a client with a blog setup on their domain (example: blog.clientwebsite.com) and even though it loads at that subdomain it's actually a Wordpress-hosted blog. If I attempt to add a plugin like Yoast SEO, I get the attached error message. Their technical team says this is a brick wall for them and they don't want to change how the blog is hosted. So my question is... on a subdomain blog like this... if I can't control what is in the sitemap with a plugin and can't manually add a sitemap because the content is being pulled from a Wordpress-hosted install, what can I do to control what is in the index? I can't add an SEO plugin... I can't add a custom sitemap... I can't add a robots.txt file... The blog is setup with domain mapping so the content isn't actually there. What can I do to avoid tags, categories, author pages, archive pages and other useless content ending up in the search engines? 7Zo93b2.png
Technical SEO | | ShawnW0 -
Changing permalinks in new wordpress website using regex in 301s?
Hi there I am working on a website and we would like to change the permalinks from product-category (replacing with Shop) and product to buy. Currently there are nearly 400 products and multiple categories. Although the website has just been indexed wondering if we need to do 301's? if we did would like to use regex to manage so redirect would be as example: mydomain.com/sub-domain/product-category/ redirecting to to mydomain.com/sub-domain/shop/ (I know you do not need to put in the domain but as an example) - could anyone give me the regex for this? Same for products: mydomain.com/sub-domain/product/sample-product redirect to mydomain.com/sub-domain/buy/sample-product thanks in anticipation
Technical SEO | | musthavemarketing0 -
Wordpress Hatom problem
Hi, in Webmaster Tools i receive the following warnings: hatom-feedhatom-entry:Warning: At least one field must be set for HatomEntry.Warning: Missing required field "entry-title".Warning: Missing required field "updated".Warning: Missing required hCard "author".I googled a few strategies how to solve this problem but is it for SEO purpose really necessary to edit Theme core code to satisfy google's warnings?
Technical SEO | | reisefm0 -
Will invalid HTML code generated by WordPress affect SEO efforts?
Hi all, I'm new to SEOmoz and SEO in general really. I run a small but well regarded freelance website and graphic design business, and until very recently had an employee who handled the SEO side of things. I'm now looking to step into this role myself and hopefully learn the in's and out's of SEO. I've no doubt there will be much to learn, but the SEOmoz tools and it's community seem excellent and helpful. My question then is basically, if WordPress generated HTML code can have an effect on SEO, when it's reported as invalid by tools such as the W3C HTML validator? I'm used to hand coding the majority of my websites for clients, where creating valid HTML and CSS code is something I can do with relative ease. A new client however wants to use WordPress - for ease of updating the site content themselves. The client does however consider any potential SEO implications to be a very important factor in choosing a hand coded vs. WordPress based website. I am aware that WordPress itself is just a means of generating HTML code, and that to the search engines there is no difference between this and the hand coded websites I usually produce. However if WordPress is generating HTML that is being reported as invalid, would this make the search engines penalise the site? On a second note, will the search engines look negatively on a WordPress site where it is being used as a standard website, and the content may not be updated as frequently, as say, a blog? Thanks for your time, and I look forward to hearing your suggestions.
Technical SEO | | SavilleWolf0 -
The best managed hosting companies for WordPress
I'm looking for a reliable managed hosting company specializing in hosting WordPress sites with 24-hour phone support. What companies would you recommend?
Technical SEO | | translate0 -
What is the best permalink structure for WordPress?
Hi, Does anyone have practical knowledge of the best permalink structure to use in WordPress? I have seen recommendations for just the post name or category and post name and then some who suggest having 3 digits as part of the structure for pick up in Google news. I am left a little confused - does anyone have practical experience of the best structure please?
Technical SEO | | Wallander0 -
Recommended Wordpress Plugins
Hey Seomoz'ers, What would you recommend to use as plugins for wordpress when starting a new blog?
Technical SEO | | asimahme0