Title: Malware Attack…Help!! Last modified: November 2, 2018 --- # Malware Attack…Help!! * [Crewey](https://wordpress.org/support/users/crewey/) * (@crewey) * [7 years, 7 months ago](https://wordpress.org/support/topic/malware-attack-help/) * Hi, I wonder if anybody could help me, my sites recently suffered a Malware attack. I desperately need to salvage one of them. I have managed to remove anything that looked like malicious code, dleted a plug in (Super Cache) and I have installed Wordfence, however when I now try to load up the site I just get an empty page and I can’t log in (as this is a blank page too). Any help/advice would be greatly appreciated. All of the files are still visible in my Cpanel. Thanks Dave * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fmalware-attack-help%2F%3Foutput_format%3Dmd&locale=en_US) to see the link]_ Viewing 3 replies - 1 through 3 (of 3 total) * Moderator [Steven Stern (sterndata)](https://wordpress.org/support/users/sterndata/) * (@sterndata) * Volunteer Forum Moderator * [7 years, 7 months ago](https://wordpress.org/support/topic/malware-attack-help/#post-10841944) * Get a fresh cup of coffee, take a deep breath and carefully follow [this guide](https://codex.wordpress.org/FAQ_My_site_was_hacked). When you’re done, you may want to implement some (if not all) of [the recommended security measures](https://codex.wordpress.org/Hardening_WordPress). * If you’re unable to clean your site(s) successfully, there are reputable organizations that can clean your sites for you. Sucuri and Wordfence are a couple. * [cleancoded](https://wordpress.org/support/users/cleancoded/) * (@cleancoded) * [7 years, 7 months ago](https://wordpress.org/support/topic/malware-attack-help/#post-10841947) * It sounds like you may have already pursued some steps to resolving the malware issue, but I’d recommend carefully following [this guide](https://codex.wordpress.org/FAQ_My_site_was_hacked). When you’re done, you may want to implement some (if not all) of [the recommended security measures](https://codex.wordpress.org/Hardening_WordPress). * Is the blank page you’re seeing a 500-server error? * Internal server errors (error 500) are often caused by plugin or theme function conflicts, so if you have access to your admin panel, try deactivating all plugins. If you don’t have access to your admin panel, try [manually resetting your plugins](https://codex.wordpress.org/FAQ_Troubleshooting#How_to_deactivate_all_plugins_when_not_able_to_access_the_administrative_menus.3F)( no Dashboard access required). If that resolves the issue, reactivate each one individually until you find the cause. * If that does not resolve the issue, try switching to the default theme for your version of WordPress to rule-out a theme-specific issue. If you don’t have access to your admin panel, access your server via [SFTP or FTP](https://codex.wordpress.org/FTP_Clients), or a file manager in your hosting account’s control panel, navigate to `/wp-content/ themes/` and rename the directory of your currently active theme. This will force the default theme to activate and hopefully rule-out a theme-specific issue. * If that does not resolve the issue, it’s possible that a `.htaccess` rule could be the source of the problem. To check for this, access your server via SFTP or FTP, or a file manager in your hosting account’s control panel, and rename the `.htaccess` file. If you can’t find a `.htaccess` file, make sure that you have set your SFTP or FTP client to view invisible files. * If you weren’t able to resolve the issue by either resetting your plugins and theme or renaming your .htaccess file, we may be able to help, but we’ll need a more detailed error message. Internal server errors are usually described in more detail in the server error log. If you have access to your server error log, generate the error again, note the date and time, then immediately check your server error log for any errors that occurred during that time period. If you don’t have access to your server error log, ask your hosting provider to look for you. * Thread Starter [Crewey](https://wordpress.org/support/users/crewey/) * (@crewey) * [7 years, 7 months ago](https://wordpress.org/support/topic/malware-attack-help/#post-10841993) * Thanks, there is no error message, just a blank page? I do have CPanel access. I don’t know how to deactivate a plug in via Cpanel? I have changed the theme name, but to no avail. What should I rename the htaccess file to? * Thanks Viewing 3 replies - 1 through 3 (of 3 total) The topic ‘Malware Attack…Help!!’ is closed to new replies. * In: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/) * 3 replies * 3 participants * Last reply from: [Crewey](https://wordpress.org/support/users/crewey/) * Last activity: [7 years, 7 months ago](https://wordpress.org/support/topic/malware-attack-help/#post-10841993) * Status: not resolved ## Topics ### Topics with no replies ### Non-support topics ### Resolved topics ### Unresolved topics ### All topics