Malware and Viruses in WordPress Themes Functions.php

Get a fresh cup of coffee, take a deep breath and carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

If you’re unable to clean your site(s) successfully, there are reputable organizations that can clean your sites for you. Sucuri and Wordfence are a couple.

hi, i only have one site, and the site was deleted, new database new wordpress and they blocked it so then wordpress original files are hacked from your site

>> wordpress original files are hacked from your site <<

No, they’re not.

>> the site was deleted, <<

Did your host delete your site? Do you have a backup of the site from before the hack?

Hi Steve,
The site was a staging site, we had data using the wordpress files, I downloaded from wordpress.com.
YES THEY WERE !
As soon as I uploaded the wordpress files to my host server, they started blocking because they said the functions.php had malware.

I deleted everything in the site, and the database made all new, redownloaded wordpress and the same thing happens

I have now deleted all the main wordpress themes.. but this is a problem.
If you want you can talk to my host security team, they are one of the largest hosting providers in the world, they said is not false positive!

Please ask your host’s security team to contact the WP security team. See https://make.www.ads-software.com/core/handbook/testing/reporting-security-vulnerabilities/

However, if you downloaded to your PC then uploaded, it’s likely that the malware (if there was really any) was introduced on your PC.