Cannot delete malware files from shared webhosting account

[webc]

Cannot delete some php malware files for the websites with a shared webhosting account, using a FTP client. What could be the reason for the same?

 

[webc]

Almost all the php files in a shared webhosting account have got malware injected in them. How did the hacker accomplish this? Is there any easy way to remove the malware from all the files in the shared webhosting account, instead of deleting manually.

 

[RDO Servers]

Open a support ticket with your host. They should be able to remove the infected files for you.

 

[Hostlumina]

@webc Do you have a previous backup prior to the injection? If you don't check with your host.

The easiest way is to restore the uncompromised files. Other then that your host should be able to run a command to scan and remove the inject code.

Couple others steps I highly recommend you take:

• Check your PC for any virus/keyloger
• Update your password for your hosting account and if the same password is used for other things such as e-mail I would also highly recommend you update them.
• check your httpaccess file for injection also
• Change the password if any script installed such as WordPress
• If using WordPress make sure you have harden your install.