Issue: WordPress site is not loading properly. Styles are not loading in the page. All requested are redirecting to an external URL ch.trainresistor.cc
Cause: This is due to a vulnerabilty in a the wordpress plugin – “PublishPress Capabilities – User Role Access, Editor Permissions, Admin” More info on this here
Resolution: This malware affects files and database. Search for trainresistor in your PHP files contents. Replace it with your site URL.
Open the database using phpMyAdmin from your server control panel. Select your site database and then select wp_options table.
Update the fields siteurl and admin_email to your website url and admin email. See below image
After this open your site. It should work.
Remove unused plugins and update all plugins which are in use. Restore files and database if you have backup.
