Question

How to fix my website that have been hacked

All my websites have a spam or malware report in URL checkers for malware online.

But I cant get access to my wordpress website ( I get error 500), and wp-admin is not working.

This is a mail I got from Digital Ocean… (NetCraft abuse Report)


Hello,

We have detected a cryptocurrency investment scam site hosted on your network:

hxxps://domain[.]com/wp-includes/index.html?jhBgVdSEAQZSXDRcFvgHBnjMOmmKIjnHBUgyVtFCcRESXRDCfVGBH

Would it be possible to have the fraudulent content, and any other associated fraudulent content, taken down as soon as you are able to?

Cryptocurrency investment scams are sites that promote fraudulent cryptocurrency trading platforms, either directly or by mimicking well-known news sites. These platforms suggest high financial returns, but do not pay out the amounts promised. They often tailor the content served based on the visitor’s country to provide a more convincing scam.

More information about the detected issue is provided at https://incident.netcraft.com/7123cde2b8d9/

Many thanks,


I have a droplet with CyberPanel-ubuntu… and tried to fix this with a security module called Imunify 360, but I cant install it because I need to convert Cyberpanel to Cloudlinux.

So I tried tutorial(https://cyberpanel.net/docs/1-convert-cyberpanel-server-to-cloudlinux-os/) but Terminal in CyberPanel is not working. I get this image http://prntscr.com/wb4hwt

What if I delete my droplet? the problem could be fixed?

Thanks for your help…


Submit an answer

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Want to learn more? Join the DigitalOcean Community!

Join our DigitalOcean community of over a million developers for free! Get help and share knowledge in Q&A, subscribe to topics of interest, and get courses and tools that will help you grow as a developer and scale your project or business.

Hi,

IMHO, the easiest method is to rebuild the server with an existing snapshot on DigitalOcean if you have one.

If not, manually fix it by following HERE for the WordPress official recommended fix method.

If you already have any of malware scanners, just try it.

Note, you can only upgrade from CentOS to CloudLinux, not for Ubuntu/Debian system.

I hope you get to the bottom of this.

Best, Eric