Ecommerce Shopify WordPress Discussion

best way to track down and remove malware from the wordpress website?

I have a few websites from clients which got infected with those promo ads malware which displays unwanted ads to visitors, like for example on this site https://tk63.tennis/ there is this ads promo which appears inline, I tried to check the templates and also dynamic files in theme folder and was not successful, I've read on other questions that also vulnerable plugins can be infected, so I checked this tribe event plugin but was not successful in finding this malicious code, the same thing is with this wordpress site https://www.polyglot-language-academy.com/ where it's not clear which plugin has a vulnerable point as sucuri tells me there is a script which see's that there is some script which checks from where I accessed the page and redirects me to some ad as well. Is there any good approach to track down the code or any files which mostly get infected?
Our products

The help you need, when you need it

App by Turbo Engine

3 apps • 5.0 average rating

Turbosify Speed Booster

5.0 (7)
Get better conversions by optimizing shopify store Google page speed Installed

Turbosify Translator for Wordpress Woocommerce

5.0 (74) Free Wordpress Woocommerce Plugin
Translate your wordpress website to multiple language within 1 click, no configuration needed, no No technical required

Grow your business here

Whether you want to sell products down the street or around the world, we have all the tools you need.