Redirect Malware keeps coming back

  • I am struggling to keep clear a malware that redirects to other pages here is a section from the scanner “JA6EO(“<script*.clksite.”) in wprss_feed_item(publish):

    I have ran through the full scanner a couple of times and it comes back with Found 5026 Database Injections SQL injections and then I run the auto fix. Then the scanner again it nothing found, I have ran wordfence and Cerber and a couple of external scanners which confirm clean.

    Within an hour or so its all back again as it was with the redirecting and when I scan there are all the entries again and the quarantine is filling fast.
    I switched off the cache, deleted the cache plugins, switched cache plugin and still it comes back.

    I have tried about 10 tools/plugins and still nothing will keep it away, any ideas?

    • This topic was modified 5 years, 4 months ago by computerdude.

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Author Eli

    (@scheeeli)

    This sounds like a direct database injection, which means that your server might be compromised and you might not have any malicious files or back-door scripts on your site.

    The first thing that you should try is to reset your database password and update the DB_PASSWORD in your wp-config.php file to match. Then, if you still have frequent injections into your DB then you may need to consider moving your site to a more secure hosting environment.

Viewing 1 replies (of 1 total)
  • The topic ‘Redirect Malware keeps coming back’ is closed to new replies.