Remove Sites from Compromised Server?


Product Owner II
Staff member
Nov 14, 2017
HI @Muhamed Asil

In a lot of cases, this originates from a WordPress installation having a vulnerable plugin or theme. While difficult to clean I don't think it (unless root compromised) would be necessary to wipe the entire server and start fresh.

I would suggest reading over some of WordPress's articles on how to resolve issues that come about such as this but ultimately you need to remove the source of the issue, audit your files and potentially use a malware scanner such as ClamAV or Linux Malware Detect (there's a bunch of others too) to check the integrity of the files.

If you're at a complete loss then I would suggest contacting a qualified system administrator for assistance. If you don't have one you might find one here: System Administration Services | cPanel Forums