What is Malware?

Malicious Software or commonly referred to as Malware, is software or applications created with the aim of damaging applications, computers, networks and others.

Malware is very dangerous because it can be misused for illegal purposes such as data theft, DDoS, brute force and other actions that are against the law. Hostinger strictly prohibits all users from spreading malware and will suspend a hosting account if any malware would be detected in it.

Why is my website or hosting attacked by Malware?

Many things can cause a website to be attacked by malware, usually the most common reasons are listed below: 

  1. Outdated scripts - outdated or old scripts are often targeted by malware because of a security hole in the script. For example, Content Management System (CMS) such as WordPress always updates the core, plugins and themes to patch the security holes.

  2. Scripts from untrustworthy or pirated sources - never use scripts that can be illegally accessed or pirated, because most of them have malware inside. So when they are used on a website or hosting, the malware will immediately spread on other websites and hosting accounts. 

  3. Vulnerable scripts or plugins / themes - many scripts on the internet are poorly written, because of that there are security holes in them. In order to avoid that, make sure to look at the reviews, that are written by the users, who have already tested the script, before using it on your website.Also, keep a mental note that some scripts, that are custom written for a specific hosting provider may not work elsewhere.

How to Prevent and Clean Malware

If you do find any malicious content on your account, here are the steps that you should take in order to clean the malware:

1. Update all scripts to the latest version

The first thing that you should do, is to make sure that all of your scripts are always up to date. If you use WordPress, then you should check if there are any new updates in your website’s Admin and plugins/themes section.

Also, make sure you enable the auto update feature, so that your WordPress is always automatically updated to the latest version.


2. Activate Kill Mode on Proactive Defense Imunify360

You are strongly advised to activate the Kill Mode if you are using Proactive Defense Imunify360 software, which can immediately stop the script, shortly after Imunify360 detects arbitrary and dangerous code in any of the files or scripts. This is important, so that when Imunify360 runs to scan websites, the scripts that you have are always clean from malicious code or malware. Keep in mind, in order to ensure that your account is well protected, we would recommend that you scan your website once a week. Or at least once in half a month.

1. Login to your Hostinger’s account. 

2. Click Hosting > Manage:

3. Select Go to cPanel:

4. On the cPanel tab, under Security section select Imunify360:


5. To activate it, click the Proactive Defense menu on your Imunify360 dashboard:

6. There are 3 modes in the menu. Select Kill Mode

7. After success, you will get a notification like below


3. Delete the Dangerous Files on the Imunify360 Dashboard

1. Login to your Hostinger’s account. 

2. Click Hosting > Manage:

3. Select Go to cPanel:

4. On the cPanel tab, under Security section select Imunify360:

5. On the Imunify360 dashboard you will immediately find the dangerous file

6. Then, you can delete the malicious file by clicking on the broom icon under Actions section

7. Click Yes, Clean Up to delete the file.


8. You will get a notification like below in the upper right corner of the Imunify dashboard if the file is successfully deleted.


9. If there are several dangerous files, you can use Clean Up All to delete all files at one time.



  • Be sure to double check your website after activating Kill Mode on Proactive Defense Imunify360.

  • Perform malware cleanup again to ensure the website is not problematic and is fully clean

Did this answer your question?