My website has been infected by a malware that spamming my traffic. This is what was happened to my website:
- Traffic from France with Agent named contains
- Bandwidth is up to 1.7 GB a day
- Some weird folders have been appeared automatically like:
- Malware code has been added to
Follow these steps to remove them from your website.
Block traffic from Ahrefs.com
I’m using CloudFlare for my website. So it is easily to block traffic with User-Agent contains
Detect and remove all infected files
Use terminal/ssh, login to your website’s root. Then you can find infected files using
grep -r eval.*base64_decode
A list of files should be appeared. You can delete the infected files then.