Malicious code is the brother of a hacker it leads website owner to bad ways. If your websites have malicious code you better scan your websites and fix the issue immediately because the malicious code will automatically run and hack your site that is why Myschooltutorial is here to provide you the solution and I will take this step-by-step guide can be used by practically anyone to remove malware from WordPress. However, you must be willing to get your hands a little dirty, and be comfortable with FTP and File Manager. If this is not your cup of tea, you may wish to look at our malicious removal service instead.
Okay, let’s begin.
Step one: Scan Your Computer
Malware can infect your WordPress in various ways, one of which is if your computer has a virus that is leaking your FTP password. This is actually quite common. So first things first are to make sure your computer is virus-free. We recommend scanning at least with Malicious Bytes, and to be doubly safe, another anti-virus such as AVG or Kaspersky or virus total.
Step two: Change Your cPanel/FTP Password
Now that your computer is virus free, you should change your cPanel and FTP password. Make sure it is something random, with at least 1 special character like ! # < &, a mix of lower and uppercase letters plus numfriends good example is K^iadm#jopq.
Step three: Download WordPress
Download the latest fresh WordPress package from the official site.
Step four: Extract Files
Extract the files from the zip or tar.gz that you have just downloaded onto your computer. Leave those files there for now. We will come back to them later.
Step five: Removing The Malicious Infection
Login to your FTP or cPanel > File Manager.
Your WordPress installation files on your web host should look like this:
Delete everything you see there except for the wp-content folder, and the wp-config.php file.
Now your installation should look like:
In your cPanel > File Manager, click on and edit the wp-config.php file. Make sure there are no strange codes or anything unusual. If there is malware in this file, it will generally look like a long string of random text. You can compare it to the wp-config-sample.php file to be sure.
Now go into the wp-content folder. It should look like:
Make a list of the plugins you are currently using, then remove the plugins folder and index.php file. You will need to re-install your plugins after the cleaning process.
Go into the themes folder, and remove any theme which you are not using. You will then need to individually check each file in your current theme to make sure there is no malware or strange codes in them. If you have a clean backup of your theme somewhere (like on your computer), then to be safe you should just delete the entire themes folder.
Check every directory inside your uploads folder to make sure there are no PHP files or anything that you may not have uploaded.
Step six: Re-upload WordPress
The fresh WordPress files that you extracted earlier in Step five can now be uploaded via FTP.
If you removed your theme you should also re-upload your clean backup theme files.
Step seven: Change WordPress Admin Password and Re-install Plugins
You should now be able to have access your dashboard and change your admin password. Always use a random hard to guess the password. Don’t be tempted to use something basic like man1234 or my best (actual passwords used by some of our clients). You will get hacked this way.
If you don’t want to use a random password like HkiunGjal, then pick an uncommon phrase with 3 or more words like Koli.fa/+-gas_*n?. A strong password is one with uncommon words, at least 1 number, 1 special character and a mix of upper and lower case characters.
Step 8: Remove Google Warning
If google warn your site for maliware source, you can submit your site to Google to get the warning “This site may harm your computer” removed. Login or create an account at Google Webmaster Tools, add your site, click Health, and then click Malware. and finally, Request a review.
If you find this article helpful? Help me share this information with your social media friends or drop your comment thanks.