Sites are blacklist when authorities such as Google, Bing, Norton Safe Web, McAfee SiteAdvisor etc. Find irregularities on a website that they deduce to be malware. Malware can come in many forms: trojan horses, phishing schemes, pharma hacks, email or information scraping.
Most often, the website owner is not even aware that they have been hacked. However, it’s in the search engine’s best interest not to show infected results, as they don’t want to lose users due to these results putting their computer in harm’s way.
Understanding Google’s Security Warnings
“This site may be hacked” warning”
This message is used to tell the user that Google believes a bad actor has made changes to the site by adding new pages in the form of spam. Visiting the site might redirect you to a page showing various forms of spam links or spam pages.
Google’s official explanation is:
“You’ll see the message “This site may be hacked” when we believe a hacker might have changed some of the existing pages on the site or added new spam pages. If you visit the site, you could be redirect to spam or malware.”
This warning does not generate a red screen and shows exclusively in the Google Search Engine Results Pages (SERP). For more information on what to do if you see this warning visit the Google help pages.
Why:
There are several reasons the domain and site are list as “This site may be hacked”. May refer below for some of the details:
1. Website compromised
2. Code injection under web file
3. outdated web application version(Joomla, WordPress, OpenCart and etc)
Note: Outdated themes, plugins, module and etc may cause code injection. Besides that, installing plugins, themes, a module from un-trusted/un-verify party may also cause code injection
=====
How:
1. Alias with a web developer to check on web file under hosting. Remove suspicious/unused web file, remove unverified plugins, module and themes.
2. Update all web application version, themes, plugins, module and etc to latest version from time to time.
3. Install security plugins/module and perform scan on user web application
Upon the above steps had perform, do login into Google Webmaster end to request for site review. Google will take 24-72 hours to review.