Malware, WP site rediderected

  • ambassador21

    (@ambassador21)


    2 years, 10 months ago

    Hello!
    It seems my site is not accessible for lots of people. Starting to loading, it’s redirected to some weird (phishing) sites. How can I check it, where can be a problem?
    Any help is really appreciated!
    Thanks,
    Alex

    • This topic was modified 2 years, 10 months ago by Jan Dembowski. Reason: Moved to Fixing WordPress, this is not an Everything else WordPress topic

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • WP STAGING | BACKUP

    (@wpstagingbackup)

    2 years, 10 months ago

    Install the plugin “WordFence” and scan your site to find the infected plugin. Then delete the infected plugin entirely and reinstall it from the source if you are sure it has been fixed.

    I also recommend deleting the folders wp-admin and wp-includes (after creating a backup) and then uploading them from scratch with the original wp core files that you can get here: https://wordpress.org/latest.zip.

    Also, follow these steps to harden your website’s security:

    Hardening WordPress

    If your website is critical, I recommend that you hire a professional to have a deep technical inspection of your website to find out any other malware leftovers.

    Cleaning up an infected website is a complex process because every file can contain malicious code and there is no guarantee reinstalling an infected plugin will delete the entire bad code.

    Thread Starter ambassador21

    (@ambassador21)

    2 years, 10 months ago

    Thanks a lot! It’s working )))) Still, there is file index.php in wp-content/uploads folder seems has malicious code inserted. Wordfence doesn’t offer to repair this one. Can I delete this file? I am not really how should I remove this malicious injection.
    Thank you!

    Rene Hermenau

    (@renehermi)

    2 years, 10 months ago

    Hello @ambassador21

    I’m glad to hear that it’s working.

    (I am a team member of WP STAGING, from whom you received the first reply, and am writing to you from my personal WordPress account).

    You can delete the entire file or, for added protection, keep the file but delete all the content and insert the following lines:

    <php
// Silence is golden.

    Make sure that the permissions for this file are 644 or less.

    • This reply was modified 2 years, 10 months ago by Rene Hermenau.
    • This reply was modified 2 years, 10 months ago by Rene Hermenau.
    • This reply was modified 2 years, 10 months ago by Rene Hermenau.
Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Malware, WP site rediderected’ is closed to new replies.

Tags