How to determine which files not to delete

  • Resolved mschmohl

    (@mschmohl)


    9 months, 3 weeks ago

    I need help in determining which files should not be deleted from a Wordfence scan. The Wordfence scan found over 600 files that appear to be malicious. I was going through and downloading each individual file and then deleting the file and afterward checking my sites for functionality. After doing this for most of the day, later during the day the site could not be accessed and WordPress gave me a fatal error message. Fortunately, I had backed up the sites so I was able to recover them. But I’m back to square one where I still have all the infected files. Please help!

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @mschmohl, thanks for your question.

    As you already have a backup to restore, it would be best to follow our site cleaning guide: https://www.wordfence.com/docs/how-to-clean-a-hacked-wordpress-site-using-wordfence/

    As a rule, any time I think someone’s site has been compromised I also tell them to update their passwords for their hosting control panel, FTP,? WordPress admin users, and database. Make sure to do this.

    XML-RPC requests are one of the most common brute force/credential stuffing attack methods so we always recommend using long unique passwords along with 2FA for all of your administrative accounts.

    Additionally you might find the WordPress Malware Removal section in our free Learning Center helpful.  

    If you are unable to fully clean this on your own, there are paid services that will do it for you.?Wordfence offers one but there are others out there.

    Thanks,
    Peter.

Viewing 1 replies (of 1 total)
  • The topic ‘How to determine which files not to delete’ is closed to new replies.