How to Clean Malware

This relatively new type of malware attack is related to a previous mass contamination, documented in this article.

If your WordPress site is being redirected to links, it’s likely that your site has been compromised or infected with malware.
Your site may have vulnerabilities that attackers can exploit, if you are using an outdated version of WordPress.

If your website is affected, it is important to address the matter a soon as possible to prevent reputation damage.

MAGEFIX SecurityMalware cleanup & protection

Try our Free site check.

How to recover from malware

  1. Review each website component, including plugins, themes and core files.
  2. Stop using outdated plugins.
  3. Review the web files structure, users with administrator rights, check for SEO spam, review FTP accounts, Cron jobs, SSH access, etc.
  4. Ask for a site reindex via Google search console, most likely the Google cache pages are still infected.
  5. Apply any future security updates a soon as possible.
  6. Scan neighbour sites for cross-site contamination.

Malicious URLs:

Malicious IPs & networks:,,, AS50321, AS14061.
Malicious domains:,,,,,,,,,,,,,,,,,,,

Malicious redirects are techniques used by hackers to divert web traffic from its intended destination to a different, often harmful, website. These redirects can lead to various malicious activities such as generating fraudulent ad revenue.

If your website is affected by malicious redirects, you should follow security best practices, such as: keeping software up to date, and regularly monitoring server logs.

Need more help?

Try our Free site check.