New to the community? Start here

Malware clean up help needed

Suddenly my site got down and later I was informed by the hosting team that my site got malware-infected and ran out of memory. Please help me clean up the malware from the site.

Tue, 14 Apr 2020 22:55:17
  • Jeff
    • Systems

    Hey David ,

    I’ve taken a look at the environment and cleaned up the installation as much as possible. I’ve re-installed the default WordPress Core files for you and removed folders & files that I’ve found on your root directory as well as at plugin directory that looked suspicious.

    I’ve re-installed our plugins as well as any plugin that was available via the wp.org repositories but you should also be re-installing any premium plugin & theme that you are using as we can’t verify those.

    Make sure to also remove any unwanted code from your site or any plugins & themes that are not used as stationary code (especially if not updated) might be a target for an attack.

    I’ve also reset the scheduled tasks so some plugins might be a bit late on running their next cronjob, this is to avoid having a malware being run via a cron during the cleanup.

    You will find a backup under your Backups tab with a note “after cleaning” as a revert point to this state.

    If the remaining plugins/themes are not updated and unused ones are not removed your site might get breached again and in this case you will need to hire security experts to clean up your site and any affected code.

    Regards,
    Jeff

  • Joseph Kibler
    • Design Lord, Child of Thor

    Gotcha, ok sounds good!

    I also noticed that when ya click on the link in the footer, the “LBMX” that is redirects users to another URL, one that is shown in the attached screenshots.

    I’ll also see if there are any pro plugins that we have.

    Also, we useally get a report, is there by chance we can get a report?