If a page you do not remember creating is registered in Google Search Console, it is possible that your WordPress site was infected with malware and generated a malicious page.

How can I determine if this malformed index registration page is due to a malware infection?

To determine if this malicious index registration page is the result of a malware infection, check for the following characteristics.
If any of these characteristics are true, there is a very high probability that the site is infected with malware.

1 Folder or file names with random and unintelligible strings of characters. Or, HTML files with hyphenated English keywords are registered.

Examples

English-word-English-word-English-word.html

2 When accessing a page, a page that I do not remember is displayed or I am redirected to another site.

3 When I search for this page and jump to it from Google search results, a page I don’t remember appears or I am redirected to another site.

4 When I access the site’s folder on the server via FTP, this folder is actually there and there are a lot of HTML files in the folder.

5 The incorrect page is registered in the sitemap even if there is no file.
There is a high possibility that the sitemap has been tampered with.

Example of sitemap URL

https://your WP site URL/sitemap.xml
https://your WP site URL/wp-sitemap.xml

6 This page is registered in the submission (database)
*It is rare for the database to be tampered with

What to do if an invalid page is hosted on the server

If a malicious page is hosted on your server, you can prevent users from being directed to the malicious page via Google search results by accessing the server with FTP software and deleting the file.

However, the vulnerability or malware (backdoor) that could have generated the data for such a malicious page on the server is often not gone, and the hacker could quickly revert to a similar situation.

We recommend that you perform a malware scan and removal of all files on all sites on the server.
Free WordPress:Malware Scan & Security Plugin [Malware and Virus Detection and Removal].

It is also necessary to close any vulnerabilities that allowed hackers to enter the site and to improve the security of the site.

Related Posts:

  1. WordPress, dealing with spam indexing, where pages you don’t remember creating get caught in search results.
    We will explain how to deal with spam indexing, a common symptom of recent WordPress tampering, in which pages that you do not remember creating are caught in the search results....
  2. What if the search console warns me of a large number of non-existent noindexed search result pages on my WordPress site?
    Here is what to do if your WordPress site is being warned by Search Console of a large number of noindexes on non-existent WordPress search results pages....
  3. Will WordPress malware removal restore contaminated search results?
    There is a type of WordPress malware that registers fraudulent e-commerce site pages in Google search results without permission. We will explain whether (and when) such malicious search results disappear after the malware is removed....
  4. Sitemap Injection, which registers incorrect pages in Google’s search results without permission, and how to deal with it.
    Learn about sitemap injection, which can register incorrect pages from your WordPress site in Google’s search results without your permission, and how to deal with it....
  5. What to do if there is a user 123@abc.com in WordPress that you don’t remember creating.
    User 123@abc.com, which you don’t remember creating in WordPress, is an admin user that hackers add illegally....
  6. Type of malware that hooks search results of site search in WordPress to search engines.
    We have been consulted about a new type of malware that hooks the search results of site searches in WordPress to search engines, and here is a case study of it....