DigitalOcean

Report this

What is the reason for this report?
Question

How to fix my website that have been hacked

Posted on December 28, 2020
Security
DigitalOcean Cloud Firewalls
WordPress
cabra

By cabra

All my websites have a spam or malware report in URL checkers for malware online.

But I cant get access to my wordpress website ( I get error 500), and wp-admin is not working.

This is a mail I got from Digital Ocean… (NetCraft abuse Report)

Hello,

We have detected a cryptocurrency investment scam site hosted on your network:

hxxps://domain[.]com/wp-includes/index.html?jhBgVdSEAQZSXDRcFvgHBnjMOmmKIjnHBUgyVtFCcRESXRDCfVGBH

Would it be possible to have the fraudulent content, and any other associated fraudulent content, taken down as soon as you are able to?

Cryptocurrency investment scams are sites that promote fraudulent cryptocurrency trading platforms, either directly or by mimicking well-known news sites. These platforms suggest high financial returns, but do not pay out the amounts promised. They often tailor the content served based on the visitor’s country to provide a more convincing scam.

More information about the detected issue is provided at https://incident.netcraft.com/7123cde2b8d9/

Many thanks,

I have a droplet with CyberPanel-ubuntu… and tried to fix this with a security module called Imunify 360, but I cant install it because I need to convert Cyberpanel to Cloudlinux.

So I tried tutorial(https://cyberpanel.net/docs/1-convert-cyberpanel-server-to-cloudlinux-os/) but Terminal in CyberPanel is not working. I get this image http://prntscr.com/wb4hwt

What if I delete my droplet? the problem could be fixed?

Thanks for your help…



This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
0
eleu
eleu
December 29, 2020

Hi,

IMHO, the easiest method is to rebuild the server with an existing snapshot on DigitalOcean if you have one.

If not, manually fix it by following HERE for the WordPress official recommended fix method.

If you already have any of malware scanners, just try it.

Note, you can only upgrade from CentOS to CloudLinux, not for Ubuntu/Debian system.

I hope you get to the bottom of this.

Best, Eric

Become a contributor for community

Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.

Sign Up

DigitalOcean Documentation

Full documentation for every DigitalOcean product.

Learn more

Resources for startups and AI-native businesses

The Wave has everything you need to know about building a business, from raising funding to marketing your product.

Learn more

Get our newsletter

Stay up to date by signing up for DigitalOcean’s Infrastructure as a Newsletter.

New accounts only. By submitting your email you agree to our Privacy Policy

The developer cloud

Scale up as you grow — whether you're running one virtual machine or ten thousand.

Get started for free

Sign up and get $200 in credit for your first 60 days with DigitalOcean.*

*This promotional offer applies to new accounts only.

© 2026 DigitalOcean, LLC.Sitemap.