How to remove virus from wordpress website (Solution)

Hello Guys,welcome to my blog here is a guide for you all on how to remove virus from wordpress website are you searching for solutions to repair your infected site. read below to for the solution / Fix to remove malware from wordpress site

People searching for solution "how to remove malware from my wordpress site", "wordpress malware removal plugin", "wordpress site hacked how to fix", "how to remove malware from website free", "wordpress malware removal service", "remove malware from my website free", "scan wordpress database for malware"


Steps to remove virus from wordpress website


Step 1 - Scan Your Site
Step 2 - Backup Your Website
Step 3 - Clean out Plugins
Step 4 - Extract Files
Step 5 - Examine The Backup Files
Step 6 - Removing The Malware Infection
Step 7 - Restore Your Backup
Step 8 - Change WordPress Admin Password and Re-install Plugins


How to remove virus from wordpress website (Solution)


Most of hackers infect your website with malware. Common malware threats include:
  • Pharma Hacks – Injects spam into your website database or files
  • Backdoors – Allows hackers to gain access to your website at any time using FTP or your WordPress admin area
  • Drive by Downloads – When a hacker uses a script to download a file to the users computer, either without their knowledge or by misleading the visitor and saying the software does something useful
  • File and Database Injections – Inserts code into your files or database that lets the hackers do a number of different things
  • Malicious Redirects – Redirects visitors to a page of theirs that misleads people into downloading an infected file
  • Phishing – Used to acquire usernames, passwords, email addresses, and other sensitive information.
In order to remove virus from wordpress website follow this steps given below:-


Step 1: Scan Your Site
Plugins Used for scanning WordPress website for malware and viruses.

Step 2: Backup Your Website
I will always recommend everyone to have a scheduled backup of their site. The reason is the loss of data will be minimized and you can easily restore your site to the previous checkpoint right before the hacking. If your backup is very outdated, then backup your current website. At Least you can use the files that are not infected. The best backup plugins we recommend are
  • BackupBuddy
  • UpdraftPlus

Step 3: Clean out Plugins


Now this is another area that malicious code likes to live and breathe. Follow the steps below to get this area of your WordPress install fresh and clean
  1. Create a folder of your choice somewhere on your computer naming it whatever you like
  2. Using FTP, navigate to your plugins folder via the path wp-content/plugins
  3. Once in there, drag all the folders to the location of the new folder you created in step #1
  4. After all plugin folders have been backed up to your computer, delete them all.  DO NOT delete the main “plugins” folder.  Just the folders within it
  5. You will need to install fresh copies of each plugin either next or once you are all clean.

Step 4: Extract Files
Extract the files from the zip or tar.gz that you have just downloaded onto your computer. Leave those files there for now. We will come back to them later.

Step 5: Examine The Backup Files
Once you find which version of your site backup is free from malware, choose the file and examine the file to know what are the details you will be missing. Make a note of it and if you have the other source file of the missing data search for it and keep it ready. 
If you don’t have any other copy of the missing file then you have to work on it again.Nowadays most of the best hosting service providers give you a scheduled backup option. Reach your hosting provider’s support and ask for a help. If the level of malware attack is minor they itself will fix it, if not ask them for a copy of a malware-free version. From there you have to manually take on the job of reverting your site.

Step 6: Removing The Malware Infection
Login to your FTP or cPanel > File Manager.
Your WordPress installation files on your web host should look like this:
wp-admin
wp-content
wp-includes
index.php
license.txt
readme.html
wp-activate.php
wp-blog-header.php
wp-comments-post.php
wp-config.php
wp-config-sample.php
wp-cron.php
wp-links-opml.php
wp-load.php
wp-login.php
wp-mail.php
wp-settings.php
wp-signup.php
wp-trackback.php
xmlrpc.php
Delete everything you see there except for the wp-content folder, and the wp-config.php file.
Now your installation should look like:
wp-content
wp-config.php
In your cPanel > File Manager, click on and edit the wp-config.php file. Make sure there are no strange codes or anything unusual. If there is malware in this file, it will generally look like a long string of random text. You can compare it to the wp-config-sample.php file to be sure.
Now go into the wp-content folder. It should look like:
plugins
themes
uploads
index.php
Make a list of the plugins you are currently using, then remove the plugins folder and index.php file. You will need to re-install your plugins after the cleaning process.
Go into the themes folder, and remove any theme which you are not using. You will then need to individually check each file in your current theme to make sure there is no malware or strange codes in them. If you have a clean backup of your theme somewhere (like on your computer), then to be safe you should just delete the entire themes folder.
Check every directory inside your uploads folder to make sure there are no php files or anything that you may not have uploaded.

Step 7: Restore Your Backup
The most recommended way is to restore the site from your backup. Even if you have customized by the theme, these backup files will help you to retain your theme customization's. Install the recovery plugin you used.We made a detailed post on how to recover a WordPress site from the backup. Please take a look at it know more. Again the method we recommend is using plugin method to backup and restore. Remember, to recover the site from backup use the same plugin which you used to backup your site.

Step 8: Change WordPress Admin Password and Re-install Plugins

You should now be able to access your dashboard, and change your admin password. Always use a random hard to guess password. Don’t be tempted to use something basic like kitten44 or tomcruise (actual passwords used by some of our clients). You will get hacked this way.
If you don’t want to use a random password like Gsdi6!33&W, then pick an uncommon phrase with 3 or more words like AragornLuvsArwen<3. A strong password is one with uncommon words, at least 1 number, 1 special character and a mix of upper and lower case characters.


In this way you can remove virus from wordpress website (Solution)

How to remove virus from wordpress website (Solution) How to remove virus from wordpress website (Solution) Reviewed by Siddhesh Lad on June 11, 2018 Rating: 5

No comments:

Powered by Blogger.