Malware in hosting

I did not faced any problem like this with my hosting company. Most of the malwares coming to hosting is by using nulled themes and plugins which has been downloaded from unknown sources and may contain malwares and viruses. To remove viruses and malware site you have to audit your site with malware scanner. Just get in touch with your hosting company.

The malware is not coming from your hosting company. It's coming from one of the plugins that you are using.

The reason I know this is because I had the same problem. The hosting company I was using had to shut my site down because one of the plugin was remotely sending out emails from my hosted account. The hosting company new that it was not me doing it be they needed me to find the plugin and uninstall it before they could allow me to resume the service.

I did not know how to find which plugin was causing the problem, so eventually I unintstalled all the plugins that I had never used before and one of those plugins was the problem.

So...You will need to find the plugin that is causing the problem and not blame the hosting company. It's not in their best interest to have malware in your hosting. That's simply bad for business.

Check your plugins 1st!

They are generally going to be your culprit.

You'd be hard pressed to find a host that gave you malware.

Patrick

Who are you using for hosting? I never have. Not when I am paying for something No

If you're using WP, then you're easily vulnerable to malware. However the same can go for other coded websites. Themes, plugins etc can contain malicious code that can overwrite your htaccess files, theme headers, grant access for back logins, use xmlrpc.php to perform brute force attacks, etc. If you already have the malware, then check your folders and all files to see if anything looks fishy. Sometimes you'll notice strange named files, forums or other wordpress installations that you did not do or create yourself. Check all your files via FTP or your file manager. Check your header to see if any malicious code is there. Usually this is one of the first areas you'll notice malicious code. Note that by simply removing the code may not remove the malware altogether. It will usually reappear if your wordpress has been fully compromised.

You will have to find the root, and this not only means checking the directory of your current infected site but also checking ALL of your sites folders / files that are hosting on the same server. If you cannot locate the malicious code / files then it might be best to perform a fresh install of WP or reinstall from a backup version when there was no malware.

To avoid future incidents, you should get yourself a few security plugins. Some of my favorites are Sucuri, WordFence and Anti Malware gotmls. You should also find a plugin that will change your backend login so your login is not from wp-login.php. Last but not least, change your passwords, change your usernames to anything other than "admin", hide the author and hide your meta info - login link etc. The author name usually results in being the username and the meta info will bring people to your login screen even if you hide it. Malware sometimes starts with brute force attacks guessing your username / password combinations, sometimes 500 or more combinations at the same time via xmlrpc.php. Make sure yours is hard to guess.

Hope this helps.

Make sure you're always using the latest version of wordpress and always keep your plugins updated. Wordpress is very popular software, and it's often targeted by hackers.

I had a site get hacked back in 2008. It's not fun. I couldn't tell where the corruption was, so I had to back up the database, hire somebody to clean it, and then completely wipe the wordpress installation and start over. Needless to say, I now take steps to make sure that never happens again because I remember what a royal pain it was. I lost days of time and revenue, not to mention my userbase for that particular site were really upset.