Wordpress site is very slow after being attacked by malwares

Question

I have been developing this website and we had to use Gravity Form plugin.

There was a time when it went very vulnerable and the website was attacked (a massive crash occurred to the site) ever since the website has never been normal every again. It is extremely slow to download sometimes there are some error messages 503 We have securely monitoring the website, have the wordpress and every plugin updated to the latest version or even delete the one without the recent updates but it seems not enough because if you access the website now you will feel that it's extremely slow.

Is there anybody who has experienced this kind of attacked? (especially, from when you got attacked via Gravity Form plugin)

I would really appreciate you answer. Scott

Answer 1

As Ed Cottrell mentioned you must rebuild your site.

1. Make a backup of files and database
2. Write down which plugins you use
3. Delete everything (leave only wp-content/uploads)
4. Install clean WP - it will be best if you use the same version you used
5. Install all the plugins - the data is still in DB, so you won't have configure them again
6. If you bought a theme - just download it again and install it. If someone made it for you - check it for some strange eval or some js files you dont's know. When you are sure it's clean put it back on the server.
7. When everything is done, change user passwords and ftp password.

Use https://wordpress.org/plugins/gotmls/ - it will help to find some nasty code.