Remove Sites from Compromised Server?

cPanelLauren

Forums Analyst II
Staff member
Nov 14, 2017
8,126
667
263
Houston
cPanel Access Level
DataCenter Provider
HI @Muhamed Asil


In a lot of cases, this originates from a WordPress installation having a vulnerable plugin or theme. While difficult to clean I don't think it (unless root compromised) would be necessary to wipe the entire server and start fresh.

I would suggest reading over some of WordPress's articles on how to resolve issues that come about such as this but ultimately you need to remove the source of the issue, audit your files and potentially use a malware scanner such as ClamAV or Linux Malware Detect (there's a bunch of others too) to check the integrity of the files.

If you're at a complete loss then I would suggest contacting a qualified system administrator for assistance. If you don't have one you might find one here: System Administration Services | cPanel Forums

Thanks!