The steps to recover your websites.
ÂÂ
- Take your site down or put it into maintenance mode immediately.
- Update the administrator users' passwords to have at least 8 alphanumeric characters with a mix of capital letters, numbers and symbols.
- Carefully inspect if any new administrator users have been added to the web application without your knowledge.
- Upgrade all the installed web applications, such as Wordpress, Joomla, Drupal, etc, inclusive of its third party themes, plugins, components, etc to the latest version.
- Repeat the steps above to all the add-on domains and subdomains in the same account.
- Update control panel account and FTP account passwords to form strong passwords, with each consisting of at least 8 alphanumeric characters coupled with special symbols.
- Remove files and folders that are no longer in use.
- Scan your computer using an up-to-date scanning program to identify any malicious code which might have been added by hackers. Be sure to scan all your content, not just text-based files as malicious content can often be embedded in images.
- Restore clean files, and review the step from No.2 again.
- Put the website back online.
ÂÂ
To get Google suspicious page list, please refer to Google at: http://support.google.com/webmasters/bin/answer.py?hl=en&answer=163633
