My website was hacked recently… After loading any page of the site, the browser redirects you to spam pages, and antivirus detects a trojan “JS/Agent.OLF”.
My first move was restoring the backup version of the whole site. It helped. I took extra security precautions for the future, like updated everything, installed your plugin, etc.
BUT in 24 hours I got hacked again. This time simple backup didn’t save me, the virus stayed for good. I started to compare the scripts between the two backups and found suspicious files like “plugin/WP-strong”, “public/WP-xmlrpc” that were absent two weeks ago. In “public/.htacces” I found newly added usernames under the following emails: inurypar76@gmail.com trainwordpressai@site.com.
Thank God, I tried to google those emails, otherwise, I wouldn’t be able to find your article on this matter.
So I recovered the oldest version of the website possible, deleted The Plus Elementor plugin in the c-panel… and nothing. There is still malware on the website. Wordfence can not detect it. I checked all of the files that were altered recently. Nothing. I’m trying to solve this whole week and no results. Could you help me troubleshoot this? You are my last hope.