Hostinger

There are a few things to look for that can indicate a potential malware infection:

Unexpected deny rules on your .htaccess file

Files on your website's root folder that you did not create either manually or via a custom script/cron job

Files such as index.php containing large amounts of unreadable code

Your WordPress admin page does not load the style properly

- Unexpected deny rules on your .htaccess file
- Files on your website's root folder that you did not create either manually or via a custom script/cron job
- Files such as index.php containing large amounts of unreadable code
- Your WordPress admin page does not load the style properly

At Hostinger, we have an automatic <a href="https://support.hostinger.com/en/articles/6197555-what-is-malware-scanner">Malware Scanner on your hPanel</a> that will help identify and remove malicious files on your account, so you will not need to worry about malware infections.

In case Malware Scanner is not available yet on your panel, or if you want to manually clean up your website, you can use security plugins such as <a href="https://wordpress.org/plugins/wordfence/" rel="nofollow noopener noreferrer" target="_blank">WordFence</a> or <a href="https://wordpress.org/plugins/gotmls/" rel="nofollow noopener noreferrer" target="_blank">Anti-Malware Security</a>.

You can find a step-by-step tutorial on how to clean up an infected WordPress site using the WordFence plugin here: <a href="https://www.hostinger.com/tutorials/wordpress-malware-removal" rel="nofollow noopener noreferrer" target="_blank">WordPress Malware Removal Guide</a>

If your website presents issues after cleanup, you can consider <a href="https://support.hostinger.com/en/articles/4283700-how-to-restore-backups-at-hostinger">restoring it from a backup</a>. Please note that this would revert any changes you had made after the date of the backup.

To avoid similar issues in the future, we recommend the following:

Use strong passwords: unique, with more than 8 characters using letters, numbers, and special characters

Keep WordPress, themes, and plugins updated to the latest stable version

Avoid plugins and themes from unknown or third-party providers

Protect your website's contact/registration/login forms with <a href="https://www.google.com/recaptcha/about/" rel="nofollow noopener noreferrer" target="_blank">reCAPTCHA</a>

<a href="https://support.hostinger.com/en/articles/5981435-how-to-download-backups-at-hostinger">Generate and download backups of your website periodically</a>

- Use strong passwords: unique, with more than 8 characters using letters, numbers, and special characters
- Keep WordPress, themes, and plugins updated to the latest stable version
- Avoid plugins and themes from unknown or third-party providers
- Protect your website's contact/registration/login forms with <a href="https://www.google.com/recaptcha/about/" rel="nofollow noopener noreferrer" target="_blank">reCAPTCHA</a>
- <a href="https://support.hostinger.com/en/articles/5981435-how-to-download-backups-at-hostinger">Generate and download backups of your website periodically</a>

<a href="https://support.hostinger.com/en/articles/1583390-what-to-do-if-your-account-or-site-has-been-hacked">What to do if your account or site has been hacked?</a>

<a href="https://www.hostinger.com/tutorials/how-to-secure-wordpress" rel="nofollow noopener noreferrer" target="_blank">Keeping your WordPress website safe</a>

- <a href="https://support.hostinger.com/en/articles/1583390-what-to-do-if-your-account-or-site-has-been-hacked">What to do if your account or site has been hacked?</a>
- <a href="https://www.hostinger.com/tutorials/how-to-secure-wordpress" rel="nofollow noopener noreferrer" target="_blank">Keeping your WordPress website safe</a>