How to Clean Malware

Here is the latest cleanup guide for malware with updated content.
To add more valuable information to this article, please contact us.

Try our Free site check.

Follow these steps to recover from this hack:

Step 1
Before applying any fixes, perform a full account backup, including web files and database.

Step 2
Assess the malware impact
Find all the sites that share the same hosting account. If you have two or more websites, all are likely infected.

Step 3
Reviewing site components
Review each site carefully, making sure you’re running the latest site version. Preferably rebuild the core files, plugins, and themes offline.

Step 4
Analyze files left from the previous site version
Any PHP, JS or ICO files recovered from the previous site version should be manually reviewed.

Step 5
Check for backdoors
Attackers often install malicious backdoor files, to regain access. Also, unauthorized users with admin privileges are created. And less often, malicious cronjobs or PHP processes are running in the background, creating bad files. Look for backdoor files, users, cronjobs, PHP processes, and newly created email and FTP accounts.

Malicious domains:,,,,,,,,,,,,,,,

Malicious URLs
IPs: ( DataWeb Global Group B.V. )

Linked malicious attack:

Need help? Let us clean your site.